CVE-2009-0652 — Insufficient Visual Distinction of Homoglyphs Presented to User in Mozilla Firefox

CWE-1007 — Insufficient Visual Distinction of Homoglyphs Presented to User9 documents9 sources

Severity

5.8MEDIUMNVD

CNA7.5

EPSS

2.1%

top 15.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mozilla Firefox Mozilla Seamonkey Mozilla Thunderbird

Timeline

PublishedFeb 20

Latest updateMay 2

Description

The Internationalized Domain Names (IDN) blacklist in Mozilla Firefox 3.0.6 and other versions before 3.0.9; Thunderbird before 2.0.0.21; and SeaMonkey before 1.1.15 does not include box-drawing characters, which allows remote attackers to spoof URLs and conduct phishing attacks, as demonstrated by homoglyphs of the / (slash) and ? (question mark) characters in a subdomain of a .cn domain name, a different vulnerability than CVE-2005-0233. NOTE: some third parties claim that 3.0.6 is not affecte…

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages3 packages

▶NVDmozilla/firefox3.0.6+49

▶NVDmozilla/seamonkey1.1.14+23

▶NVDmozilla/thunderbird2.0.0.20+11

🔴Vulnerability Details

GHSA

GHSA-h8qx-x78q-837g: The Internationalized Domain Names (IDN) blacklist in Mozilla Firefox 3↗2022-05-02

▶

CVEList

CVE-2009-0652: The Internationalized Domain Names (IDN) blacklist in Mozilla Firefox 3↗2009-02-20

▶

💥Exploits & PoCs

Exploit-DB

Look n stop - Local Denial of Service↗2011-01-21

▶

📋Vendor Advisories

Ubuntu

Firefox and Xulrunner vulnerabilities↗2009-04-23

▶

Red Hat

firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks)↗2009-02-16

▶

📐Framework References

CWE

Insufficient Visual Distinction of Homoglyphs Presented to User↗

▶

CAPEC

Homograph Attack via Homoglyphs

▶

💬Community

Bugzilla

CVE-2009-0652 firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks)↗2009-02-21

▶