SAP Knowledge Base Article - Preview

3014875 - Reverse Tabnabbing attack in SAP Netweaver AS ABAP and SAP UI5 applications on multiple platforms

Symptom

Reverse Tabnabbing vulnerabilities are attacks, where an page linked from the target page uses the opener browsing context to redirect the target page to a phishing site.

Some well-known impacts of the Reverse Tabnabbing vulnerability are:

  • Phishing attacks
  • Redirect users to untrusted webpages containing malware or similar malicious exploits.


Read more...

Keywords

Unified Rendering, SAPUI5, OpenUI5, UI5, Web Dynpro, Webdynpro, HTMLB, Business Server Pages, BSP, Tabnabbing, Open Redirect, Cross-Site Redirect, Cross-Domain Redirect, Browsing Context, Noopener, Noreferrer, Attack, SAP, Browser, Security, Link, Hyperlink , KBA , BC-WD-UR , Unified Rendering , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.