CVE-2009-0652

2009-02-2019:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2009-0652

internationalized domain names

idn blacklist

mozilla firefox

thunderbird

seamonkey

spoofing

phishing

homoglyphs

url spoofing

9.2 High

AI Score

Confidence

High

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

0.009 Low

EPSS

Percentile

82.7%

JSON

The Internationalized Domain Names (IDN) blacklist in Mozilla Firefox 3.0.6 and other versions before 3.0.9; Thunderbird before 2.0.0.21; and SeaMonkey before 1.1.15 does not include box-drawing characters, which allows remote attackers to spoof URLs and conduct phishing attacks, as demonstrated by homoglyphs of the / (slash) and ? (question mark) characters in a subdomain of a .cn domain name, a different vulnerability than CVE-2005-0233. NOTE: some third parties claim that 3.0.6 is not affected, but much older versions perhaps are affected.

CPENameOperatorVersion
mozilla:seamonkeymozilla seamonkeyeq1.1.10
mozilla:seamonkeymozilla seamonkeyeq1.0.3
mozilla:firefoxmozilla firefoxeq2.0.0.12
mozilla:thunderbirdmozilla thunderbirdeq2.0.0.4
mozilla:seamonkeymozilla seamonkeyeq1.1.8
mozilla:seamonkeymozilla seamonkeyeq1.0.1
mozilla:seamonkeymozilla seamonkeyeq1.1.7
mozilla:thunderbirdmozilla thunderbirdeq2.0.0.6
mozilla:seamonkeymozilla seamonkeyeq1.0.6
mozilla:firefoxmozilla firefoxeq1.5.0.6

CPE	Name	Operator	Version
mozilla:seamonkey	mozilla seamonkey	eq	1.1.10
mozilla:seamonkey	mozilla seamonkey	eq	1.0.3
mozilla:firefox	mozilla firefox	eq	2.0.0.12
mozilla:thunderbird	mozilla thunderbird	eq	2.0.0.4
mozilla:seamonkey	mozilla seamonkey	eq	1.1.8
mozilla:seamonkey	mozilla seamonkey	eq	1.0.1
mozilla:seamonkey	mozilla seamonkey	eq	1.1.7
mozilla:thunderbird	mozilla thunderbird	eq	2.0.0.6
mozilla:seamonkey	mozilla seamonkey	eq	1.0.6
mozilla:firefox	mozilla firefox	eq	1.5.0.6