Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: International Domain Name [IDN] support in modern browsers allows attackers to spoof domain name URLs + SSL certs.
From: Jerome ATHIAS <jerome.athias@xxxxxxx>
Date: 8 Feb 2005 14:47:24 -0000

In-Reply-To: <20050208043921.17342.qmail@xxxxxxxxxxxxxxxxxxxxx>

Verified under Windows XP SP2 with Firefox 1.0 (MOOX M3)

SpoofStick (http://www.corestreet.com/spoofstick/) is also tricked (what about netcraft...?).

Regards,
Jerome

Prev by Date: [SECURITY] [DSA 670-1] New emacs20 packages fix arbitrary code execution
Next by Date: [SECURITY] [DSA 671-1] New xemacs21 packages fix arbitrary code execution
Previous by thread: [SECURITY] [DSA 670-1] New emacs20 packages fix arbitrary code execution
Next by thread: [SECURITY] [DSA 671-1] New xemacs21 packages fix arbitrary code execution
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux