Closed Bug 1392193 Opened 6 years ago Closed 6 years ago

disallow "lao" unicode block from IDN domains

Tracking

()

Status:

RESOLVED DUPLICATE of bug 1370497

People

(Reporter: xisigr, Unassigned)

Details

Attachments

(1 file)

U+0ECD.png 6 years ago xisigr 75.74 KB, image/png		Details

xisigr

Reporter

Description

•

6 years ago

Attached image — Details

Firefox should prevent the “lao” unicode block from rendering in domain names with characters from other unicode blocks. This could lead to IDN domain spoofing.

Test on Windows,macOS.

https://www.xn--google-n6u.com (U+0ECD)

Daniel Veditz [:dveditz]

Updated

•

6 years ago

Status: UNCONFIRMED → RESOLVED

Closed: 6 years ago

Resolution: --- → DUPLICATE

Daniel Veditz [:dveditz]

Updated

•

3 years ago

Group: firefox-core-security

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

disallow "lao" unicode block from IDN domains

Categories

(Firefox :: Address Bar, defect)

Tracking

()

People

(Reporter: xisigr, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Updated

Updated