Share article

Enter the domain name below of the social network or other service on which you want to share this article.


ex.: twitter.com, oexchange-facebook.appspot.com, addtoany.com

Item to share

Firefox vulnerable to Extended Validation spoof
Security researcher Jeroen van der Gun reported that if RSS or Atom XML invalid content is loaded over HTTPS, the addressbar updates to display the new location of the loaded resource, including SSL indicators, while the main window still displays the previously loaded content. This allows for phishing attacks where a malicious page can spoof the identify of another seemingly secure site. …
http://jeroenvandergun.nl/blog/2012/firefox-vulnerable-to-extended-validation-spoof