Closed Bug 1392193 Opened 7 years ago Closed 7 years ago

disallow "lao" unicode block from IDN domains

Categories

(Firefox :: Address Bar, defect)

Product:
Firefox
Component:
Address Bar
Version:
55 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1370497

People

(Reporter: xisigr, Unassigned)

Details

Attachments

(1 file)

U+0ECD.png
75.74 KB, image/png
Details
Attached image U+0ECD.png 
Firefox should prevent the “lao” unicode block from rendering in domain names with characters from other unicode blocks. This could lead to IDN domain spoofing.

Test on Windows,macOS.

https://www.xn--google-n6u.com (U+0ECD)
Status: UNCONFIRMED → RESOLVED
Closed: 7 years ago
Resolution: --- → DUPLICATE
Group: firefox-core-security
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: