Full Disclosure: Re: Apple Safari: idn urlbar spoofing

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Apple Safari: idn urlbar spoofing

From: Michal Zalewski <lcamtuf () dione ids pl>
Date: Mon, 25 Jun 2007 23:22:34 +0200 (CEST)

On Mon, 25 Jun 2007, Larry Seltzer wrote:

It looks different on my system: http://www.larryseltzer.com/safe2.png
Safari 3.0.2 on XPSP2


Looks simply like a difference in system fonts used on your machines. The
attack relies on padding the hostname with Unicode characters that, for
the typeface used, are rendered as white spaces.

Whether Safari devs are to blame here exclusively, I'm not sure - IDN
concept is by itself pretty evil, and this can be viewed simply a clever
take on homograph attacks.

/mz

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Re: Apple Safari: cookie stealing, (continued)
- Re: Apple Safari: cookie stealing Michal Zalewski (Jun 13)
- Re: Apple Safari: urlbar/window title spoofing Robert Swiecki (Jun 14)
  - Re: Apple Safari: urlbar/window title spoofing Mark Senior (Jun 15)
  - Re: Apple Safari: idn urlbar spoofing Robert Swiecki (Jun 25)
    - Re: Apple Safari: idn urlbar spoofing Larry Seltzer (Jun 25)
    - Re: Apple Safari: idn urlbar spoofing Michal Zalewski (Jun 25)
    - Re: Apple Safari: idn urlbar spoofing Robert Swiecki (Jun 27)
- Re: Apple Safari: cookie stealing Joey Mengele (Jun 13)