5
CVE-2005-0237
- EPSS 1.63%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:10:45
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
The International Domain Name (IDN) support in Konqueror 3.2.1 on KDE 3.2.1 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.63% | 0.732 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://lists.grok.org.uk/pipermail/full-disclosure/2005-February/031459.html
http://www.securityfocus.com/bid/12461
http://www.shmoo.com/idn
http://www.shmoo.com/idn/homograph.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/19236
http://lists.grok.org.uk/pipermail/full-disclosure/2005-February/031460.html
http://secunia.com/advisories/14162
http://www.kde.org/info/security/advisory-20050316-2.txt
http://www.mandriva.com/security/advisories?name=MDKSA-2005:058
http://www.redhat.com/support/errata/RHSA-2005-325.html
http://www.securityfocus.com/archive/1/427976/100/0/threaded
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10671