Google Chrome prior to 11.0.696.57 allows remote malicious users to spoof the URL bar via vectors involving (1) a navigation error or (2) an interrupted load.
google chrome