IDN spoofing vulnerability in Gecko browsers
Cian Duffy
myob87 at gmail.com
Tue Mar 8 10:19:09 MST 2005
If you're using Linux, you'd have heard about this bug by now. It made
the PRINT MEDIA over here, for instance - and I don't mean Linux
Format or PCW - the Sunday Tribune mentioned it
Mailing people with any kind of virus or security issue is
scaremongering, always has been, always will be, Bugtraq style mailing
lists nonwithstanding.
Cian
On Tue, 8 Mar 2005 09:06:14 -0800, Longman, Bill <longman at sharplabs.com> wrote:
> Cian,
>
> I don't think your flippant reply is really called for. YOU might be up on
> all things Mozilla/security related, but if other people on the list are
> still running an older browser, they are vulnerable.
>
> Bill
>
> > Err, last month called, they want their security vunerability back
> >
> > This just seems, to a very angry (with the postal service here, that
> > is) and cynical me as a slightly more technically accurate 'virus
> > scare' email, like the good times one from many years ago; or those
> > mails with scare stories about Glade PlugIn air freshners, etc
> >
> > This bug is fixed in Firefox CVS and possibily even in 1.0 by
> > reverting the domain to punycode - you see the real, 7 bit ASCII
> > domain name in the adress bar
> >
> > Also, with the fonts most of us will be using on YDL, the
> > character-that-looks-like-an-a that they're using is much, much
> > narrower, so it looks differenct
> >
> > Now, I've got to get back to my waiting in an An Post queuing system
> > for all eternity to shout at them.
> >
> > Cian
> _______________________________________________
> yellowdog-general mailing list
> yellowdog-general at lists.terrasoftsolutions.com
> http://lists.terrasoftsolutions.com/mailman/listinfo/yellowdog-general
> HINT: to Google archives, try '<keywords> site:terrasoftsolutions.com'
>
--
---------------------------
"We're busy running out of time"
Bernard Sumner, 1993
More information about the yellowdog-general
mailing list