CVE CyberSecurity Database News

CVE-2023-4764 - Spoofing the Omnibox in Google Chrome through BFCache Vulnerability

Poster -

A recent vulnerability, CVE-2023-4764, has been discovered in Google Chrome, allowing remote attackers to spoof the Omnibox's (URL bar) content by exploiting incorrect security UI handling in BFCache (Back-Forward Cache). This vulnerability has a high severity rating according to Chromium Security, and it affects Google Chrome versions prior to 116..5845.179.

Code Snippet

An attacker can craft an HTML page with specific code, which would enable them to exploit this vulnerability and affect users of unprotected versions of Chrome. Here's an example of a simple HTML code snippet that could be used for demonstrating the vulnerability:

<!DOCTYPE html>
<html>
<head>
  <title>CVE-2023-4764 - Chrome Omnibox Spoofing</title>
</head>
<body>
  <h1>Malicious Page</h1>
  <script>
    function exploit() {
      history.pushState(null, null, 'https://fake.example.com';);
    }
    setTimeout(exploit, 300);
  </script>
</body>
</html>

In this example, after three seconds (300 milliseconds), the JavaScript function exploit is called, which manipulates the browser's history state and replaces the displayed URL in the Omnibox with the URL of a different site (https://fake.example.com). The actual content of the page, however, remains unchanged.

The vulnerability has been documented and addressed in Chromium's security advisory

- Chromium Issue 1319949: Incorrect security UI in BFCache
- Chromium Security Severity Levels

Exploit Details

An attacker exploiting this vulnerability to spoof the Omnibox can create a convincing phishing page that deceives users into believing they are on a trusted site, while in reality, they are interacting with a malicious page. This could lead to sensitive information being leaked, such as login credentials and personal data. The malware authors could also use this flaw to inject malicious software or scripts into a user's browser session.

Mitigation

Updating Google Chrome to version 116..5845.179 or later will protect users from this vulnerability. As a user, it is essential to keep your browser up-to-date to ensure you are safe from the latest security threats. To check your Chrome version and update it, follow these steps:

Select "Help" and then "About Google Chrome."

4. In the "About" page, your current Chrome version will be displayed, and any available updates will be automatically downloaded and installed.

Conclusion

CVE-2023-4764 is a high-severity vulnerability in Google Chrome that allows attackers to spoof the Omnibox's content by exploiting a flaw in BFCache. Users should update their browsers to version 116..5845.179 or later to remediate this vulnerability and protect their devices from potential exploitation. Remember, keeping your software updated is a fundamental step in maintaining your online security.

Timeline

Published on: 09/05/2023 22:15:00 UTC
Last modified on: 09/08/2023 23:41:00 UTC