CVE-2005-0233

Currently unrated

Key Information:

Vendor: Opera Software
Status: Opera Web Browser; Firefox; Camino; Omniweb
Vendor: CVE Published:; 8 February 2005

Summary

The International Domain Name (IDN) support in Firefox 1.0, Camino .8.5, and Mozilla before 1.7.6 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.

References

http://www.shmoo.com/idn/homograph.txt

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/19236

vdb-entryx_refsource_XF

http://lists.grok.org.uk/pipermail/full-disclosure/2005-F...

mailing-listx_refsource_FULLDISC

EPSS Score

72% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 8, 2005
Vulnerability Reserved
Feb 7, 2005