Closed
Bug 1711546
Opened 3 years ago
Closed 3 years ago
IDN homograph attack
Categories
(Firefox :: Untriaged, defect)
Tracking
()
RESOLVED
DUPLICATE
of bug 1332714
People
(Reporter: nikhil.mittal641, Unassigned)
Details
User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36
Steps to reproduce:
- Goto https://s09.gitlab.io/s/pple.html in Firefox desktop, android browsers
- Click on the mentioned link
- You will see the domain is not displayed in punycodes
POC:
https://drive.google.com/file/d/186YnYBlS6Ig2GEqtuyF0l3qnBGW_7--V/view?usp=sharing
Actual results:
The resulted resolved domain displayed as https://www.аррӏе.com/
instead of punycode
Expected results:
Firefox should display punycode instead
Updated•3 years ago
|
Group: firefox-core-security
Status: UNCONFIRMED → RESOLVED
Closed: 3 years ago
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•