exploitDog

CVE-2007-3742

Опубликовано: 03 авг. 2007

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

WebKit in Apple Safari 3 Beta before Update 3.0.3, and iPhone before 1.0.1, does not properly handle the interaction between International Domain Name (IDN) support and Unicode fonts, which allows remote attackers to create a URL containing "look-alike characters" (homographs) and possibly perform phishing attacks.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:h:apple:iphone:1.0:*:*:*:*:*:*:*

cpe:2.3:a:apple:safari:*:*:windows:*:*:*:*:*

Версия до 3.0.2 (включая)

EPSS

Процентиль: 69%

0.00614

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-16

Связанные уязвимости

GHSA-8vqf-2742-m7gx

github

почти 4 года назад

WebKit in Apple Safari 3 Beta before Update 3.0.3, and iPhone before 1.0.1, does not properly handle the interaction between International Domain Name (IDN) support and Unicode fonts, which allows remote attackers to create a URL containing "look-alike characters" (homographs) and possibly perform phishing attacks.

EPSS

Процентиль: 69%

0.00614

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-16