Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2017-7825

Опубликовано: 28 сент. 2017
Источник: redhat
CVSS3: 6.1
EPSS Низкий

Описание

Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6firefoxNot affected
Red Hat Enterprise Linux 6thunderbirdNot affected
Red Hat Enterprise Linux 7firefoxNot affected
Red Hat Enterprise Linux 7thunderbirdNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=1496657Mozilla: OS X fonts render some Tibetan and Arabic unicode characters as spaces (MFSA 2017-22)

EPSS

Процентиль: 82%
0.0171
Низкий

6.1 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2017-7825

CVSS3: 5.3
ubuntu
около 7 лет назад

Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4.

nvd логотип

CVE-2017-7825

CVSS3: 5.3
nvd
около 7 лет назад

Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4.

debian логотип

CVE-2017-7825

CVSS3: 5.3
debian
около 7 лет назад

Several fonts on OS X display some Tibetan and Arabic characters as wh ...

github логотип

GHSA-3mv8-qr3m-89rv

CVSS3: 5.3
github
около 3 лет назад

Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 56, Firefox ESR < 52.4, and Thunderbird < 52.4.

fstec логотип

BDU:2021-00025

CVSS3: 5.3
fstec
почти 8 лет назад

Уязвимость браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная c недостаточной проверкой вводимых данных, позволяющая нарушителю проводить спуфинг-атаки

EPSS

Процентиль: 82%
0.0171
Низкий

6.1 Medium

CVSS3