Логотип exploitDog
bind:"CVE-2017-7764"
Консоль
Логотип exploitDog

exploitDog

bind:"CVE-2017-7764"

Количество 11

Количество 11

ubuntu логотип

CVE-2017-7764

около 7 лет назад

Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts.". This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

CVSS3: 5.3
EPSS: Низкий
redhat логотип

CVE-2017-7764

около 8 лет назад

Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts.". This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

CVSS3: 5.3
EPSS: Низкий
nvd логотип

CVE-2017-7764

около 7 лет назад

Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts.". This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

CVSS3: 5.3
EPSS: Низкий
debian логотип

CVE-2017-7764

около 7 лет назад

Characters from the "Canadian Syllabics" unicode block can be mixed wi ...

CVSS3: 5.3
EPSS: Низкий
github логотип

GHSA-mc3w-fw7x-qrw7

около 3 лет назад

Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts.". This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

CVSS3: 5.3
EPSS: Низкий
fstec логотип

BDU:2021-00028

около 8 лет назад

Уязвимость браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная cо смешением символов из блока «Canadian Syllabics» с символами из других блоков, позволяющая нарушителю проводить спуфинг-атаки

CVSS3: 5.3
EPSS: Низкий
oracle-oval логотип

ELSA-2017-1561

около 8 лет назад

ELSA-2017-1561: thunderbird security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2017-1440

около 8 лет назад

ELSA-2017-1440: firefox security update (CRITICAL)

EPSS: Низкий
suse-cvrf логотип

openSUSE-SU-2017:1620-1

около 8 лет назад

Security update for Mozilla based packages

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2017:1669-1

около 8 лет назад

Security update for MozillaFirefox, MozillaFirefox-branding-SLE

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2017:2235-1

почти 8 лет назад

Security update for MozillaFirefox, MozillaFirefox-branding-SLED, firefox-gcc5, mozilla-nss

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
ubuntu логотип
CVE-2017-7764

Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts.". This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

CVSS3: 5.3
1%
Низкий
около 7 лет назад
redhat логотип
CVE-2017-7764

Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts.". This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

CVSS3: 5.3
1%
Низкий
около 8 лет назад
nvd логотип
CVE-2017-7764

Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts.". This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

CVSS3: 5.3
1%
Низкий
около 7 лет назад
debian логотип
CVE-2017-7764

Characters from the "Canadian Syllabics" unicode block can be mixed wi ...

CVSS3: 5.3
1%
Низкий
около 7 лет назад
github логотип
GHSA-mc3w-fw7x-qrw7

Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unicode blocks in the addressbar instead of being rendered as their raw "punycode" form, allowing for domain name spoofing attacks through character confusion. The current Unicode standard allows characters from "Aspirational Use Scripts" such as Canadian Syllabics to be mixed with Latin characters in the "moderately restrictive" IDN profile. We have changed Firefox behavior to match the upcoming Unicode version 10.0 which removes this category and treats them as "Limited Use Scripts.". This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

CVSS3: 5.3
1%
Низкий
около 3 лет назад
fstec логотип
BDU:2021-00028

Уязвимость браузеров Firefox, Firefox ESR и почтового клиента Thunderbird, связанная cо смешением символов из блока «Canadian Syllabics» с символами из других блоков, позволяющая нарушителю проводить спуфинг-атаки

CVSS3: 5.3
1%
Низкий
около 8 лет назад
oracle-oval логотип
ELSA-2017-1561

ELSA-2017-1561: thunderbird security update (IMPORTANT)

около 8 лет назад
oracle-oval логотип
ELSA-2017-1440

ELSA-2017-1440: firefox security update (CRITICAL)

около 8 лет назад
suse-cvrf логотип
openSUSE-SU-2017:1620-1

Security update for Mozilla based packages

около 8 лет назад
suse-cvrf логотип
SUSE-SU-2017:1669-1

Security update for MozillaFirefox, MozillaFirefox-branding-SLE

около 8 лет назад
suse-cvrf логотип
SUSE-SU-2017:2235-1

Security update for MozillaFirefox, MozillaFirefox-branding-SLED, firefox-gcc5, mozilla-nss

почти 8 лет назад

Уязвимостей на страницу