Domain Spoofing Vulnerability in Google Toolbar by Google
CVE-2007-6536

Currently unrated

Key Information:

Vendor: Google
Status: Toolbar
Vendor: CVE Published:; 27 December 2007

Summary

The Custom Button Installer dialog in Google Toolbar versions 4 and 5 beta is susceptible to a domain spoofing vulnerability. It fails to accurately verify domain names before displaying them in the 'Downloaded from' and 'Privacy considerations' sections. This oversight allows remote attackers to present deceptive domain names, tricking users into downloading malicious button XML files. For instance, an attacker could exploit an open redirector, causing the dialog to show a trusted domain like www.google.com even when the content originates from a malicious site, thus increasing the risk of unintended software installations.

References

http://www.securityfocus.com/bid/26923

vdb-entryx_refsource_BID

http://aviv.raffon.net/2007/12/18/GoogleToolbarDialogSpoo...

x_refsource_MISC

http://secunia.com/advisories/28166

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Dec 27, 2007
Vulnerability Reserved
Dec 27, 2007