[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Apple Safari: idn urlbar spoofing

To: Larry Seltzer <Larry@xxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
From: Michal Zalewski <lcamtuf@xxxxxxxxxxxx>
Date: Mon, 25 Jun 2007 23:22:34 +0200 (CEST)

On Mon, 25 Jun 2007, Larry Seltzer wrote:

> It looks different on my system: http://www.larryseltzer.com/safe2.png
> Safari 3.0.2 on XPSP2

Looks simply like a difference in system fonts used on your machines. The
attack relies on padding the hostname with Unicode characters that, for
the typeface used, are rendered as white spaces.

Whether Safari devs are to blame here exclusively, I'm not sure - IDN
concept is by itself pretty evil, and this can be viewed simply a clever
take on homograph attacks.

/mz

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
  - From: Robert Swiecki

References:
- [Full-disclosure] Apple Safari: cookie stealing
  - From: Robert Swiecki
- Re: [Full-disclosure] Apple Safari: urlbar/window title spoofing
  - From: Robert Swiecki
- Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
  - From: Robert Swiecki
- Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
  - From: Larry Seltzer

Prev by Date: Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
Next by Date: Re: [Full-disclosure] Invitation to connect on LinkedIn
Previous by thread: Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
Next by thread: Re: [Full-disclosure] Apple Safari: idn urlbar spoofing
Index(es):
- Date
- Thread