Endpoint Vulnerability

Homograph domain spoofing in .com, .net and .name

Description

Security researcher 3ric Johanson reported in discussions with Richard Newman and Holt Sorenson that Verisign's prevention measures for homograph attacks using Internationalized Domain Names (IDN) were insufficiently rigorous, and this led to a limited possibility for domain spoofing in Firefox.

Affected Products

SeaMonkey

References

CVE-2013-1699,