Closed Bug 1813212 Opened 1 year ago Closed 1 year ago

Potential origin spoofing because address bar truncates "facebook.com.evil.com" to "facebook.com..." instead of "...evil.com"

Categories

(Fenix :: Toolbar, defect)

Product:
Fenix
Component:
Toolbar
Platform:
All
Android
Type:
defect

Tracking

(Not tracked)

Status:
RESOLVED DUPLICATE of bug 1670725

People

(Reporter: boek, Unassigned)

Details

From github: https://github.com/mozilla-mobile/fenix/issues/6762.

Steps to reproduce

  1. Open http://facebook.com.facebook.com.evil.com/
  2. Look at the portion of the URL visible in the address bar.

I originally filed this bug against desktop Firefox. On desktop, Firefox, Chrome, Edge, and Safari all do the wrong thing (show "facebook.com"):

https://bugzilla.mozilla.org/show_bug.cgi?id=1598175

Expected behavior

The URL standard says:

When the full host cannot be rendered, browsers should elide domain labels starting from the lowest-level domain label. For example, examplecorp.com.evil.com should be elided as ...com.evil.com, not examplecorp.com...`.

Fennec and Chrome on Android do the right thing: they show ...ook.com.facebook.com.evil.com and facebook.com.evil.com, respectively.

Actual behavior

Fenix shows http://facebook.com.facebook... without showing evil.com.

Device information

  • Android device: Moto G5
  • Fenix version: 2.3.0

┆Issue is synchronized with this Jira Task

Change performed by the Move to Bugzilla add-on.

Status: NEW → RESOLVED
Closed: 1 year ago
Duplicate of bug: 1598175
Resolution: --- → DUPLICATE
Duplicate of bug: 1670725
No longer duplicate of bug: 1598175
You need to log in before you can comment on or make changes to this bug.