{"id":7114,"date":"2007-02-13T12:32:03","date_gmt":"2007-02-13T11:32:03","guid":{"rendered":"https:\/\/destinationcyber.com\/?p=7114"},"modified":"2007-02-13T12:32:03","modified_gmt":"2007-02-13T11:32:03","slug":"un-simple-slash-supplementaire-saisi-dans-lurl-permet-de-contourner-la-protection-anti-phishing-de-firefox","status":"publish","type":"post","link":"https:\/\/destinationcyber.com\/?p=7114","title":{"rendered":"Un simple \u00ab\u00a0slash\u00a0\u00bb suppl\u00e9mentaire saisi dans l’URL permet de contourner la protection anti-phishing de Firefox"},"content":{"rendered":"

Des chercheurs en s\u00e9curit\u00e9 ont annonc\u00e9 avoir d\u00e9couvert une faille dans le navigateur Firefox permettant aux pirates de d\u00e9sactiver le filtre anti-phishing du navigateur par une simple modification de la syntaxe URL d’un site Web.<\/p>\n

SecuriTeam, un site d’alerte de s\u00e9curit\u00e9 g\u00e9r\u00e9 par Beyond Security, pr\u00e9cise que les pages figurant d\u00e9j\u00e0 dans le registre de sites de phishing connus de Firefox pouvaient \u00e9chapper au logiciel de reconnaissance et appara\u00eetre \u00e0 l’utilisateur comme authentiques.<\/p>\n

Ce chercheur a en effet d\u00e9couvert que le filtre anti-phishing pouvait \u00eatre d\u00e9sactiv\u00e9 en saisissant simplement une seconde barre oblique (\u00ab\u00a0slash\u00a0\u00bb) apr\u00e8s le suffixe du nom de domaine.<\/p>\n

Par exemple : http:\/\/www.latribune.fr\/\/Entreprises-secteurs.html.<\/p>\n

Fanch<\/p>\n","protected":false},"excerpt":{"rendered":"

Des chercheurs en s\u00e9curit\u00e9 ont annonc\u00e9 avoir d\u00e9couvert une faille dans le navigateur Firefox permettant aux pirates de d\u00e9sactiver le filtre anti-phishing du navigateur par une simple modification de la syntaxe URL d’un site Web. SecuriTeam, un site d’alerte de s\u00e9curit\u00e9 g\u00e9r\u00e9 par Beyond Security, pr\u00e9cise que les pages figurant d\u00e9j\u00e0 dans le registre de […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_citadela_custom_class":"","footnotes":""},"categories":[15],"tags":[],"class_list":["post-7114","post","type-post","status-publish","format-standard","hentry","category-securite"],"_links":{"self":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/7114","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7114"}],"version-history":[{"count":0,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/7114\/revisions"}],"wp:attachment":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7114"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7114"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7114"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}