HTTP: Android Browser URL Parser NULL-byte Handling Same Origin Policy Bypass
This signature detects attempts to exploit a known vulnerability against Google Android Browser. An attacker can exploit this vulnerability by enticing a user to open a web page. Successful exploitation can result in disclosure of information about other web pages opened by the user or stored in the browser cache.
Extended Description
The Android WebView in Android before 4.4 allows remote attackers to bypass the Same Origin Policy via a crafted attribute containing a \u0000 character, as demonstrated by an onclick="window.open('\u0000javascript: sequence to the Android Browser application 4.2.1 or a third-party web browser.
Affected Products
Google android_browser
Short Name
HTTP:STC:NDROID-BROW-SAME-ORIGN
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Android Browser Bypass CVE-2014-6041 Handling NULL-byte Origin Parser Policy Same URL bid:69548
Release Date
09/29/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
CVSS Score
5.8