#VU8625 Domain name spoofing in Mozilla Firefox


Published: 2017-09-28 | Updated: 2017-09-29

Vulnerability identifier: #VU8625

Vulnerability risk: Medium

CVSSv3.1: 5.3 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-7825

CWE-ID: CWE-451

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Mozilla Firefox
Client/Desktop applications / Web browsers

Vendor: Mozilla

Description
The vulnerability allows a remote attacker to perform spoofing attack.

Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks.

Note: This attack only affects OS X operating systems. Other operating systems are unaffected.

Mitigation
Update to version 56.0.

Vulnerable software versions

Mozilla Firefox: 48.0 - 55.0.3

External links
http://www.mozilla.org/en-US/security/advisories/mfsa2017-21/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Gentoo update for Mozilla Thunderbird
SUSE Linux update for MozillaFirefox
SUSE Linux update for MozillaFirefox
OpenSUSE Linux update for MozillaThunderbird
OpenSUSE Linux update for MozillaThunderbird
SUSE Linux update for MozillaFirefox
Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities in Firefox ESR
Multiple vulnerabilities in Mozilla Firefox