Computer Security Wiki

Uniform Resource Location Spoofing is the utilization of a technology that enables a fake address to be displayed in the address and status bars of the internet browser. This vulnerability is sometimes exploited via scam email.

A user can be tricked into divulging sensitive information or into downloading malicious software, because the website address is fake and the user may think that the webpage being viewed is from a trusted domain In order for this to work, a vulnerable browser must be used. Browsers that do not support Uniform Resource Location Spoofing are not vulnerable to this type of attack.

Vulnerable Browsers[]

A browser that supports Uniform Resource Location Spoofing will display only in the address bar, rather than the full Uniform Resource Location, when the following address is visited using the browser:


The following browsers are vulnerable to this type of attack:

   * Microsoft Internet Explorer