CVE-2017-7833 - log back

CVE-2017-7833 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Content spoofing
Description
+ Some Arabic and Indic vowel marker characters can be combined with Latin characters in a domain name to eclipse the non-Latin character with some font sets on the addressbar of Firefox before 57.0. The non-Latin character will not be visible to most viewers. This allows for domain spoofing attacks because these combined domain names do not display as punycode.
References
+ https://www.mozilla.org/en-US/security/advisories/mfsa2017-24/#CVE-2017-7833
+ https://bugzilla.mozilla.org/show_bug.cgi?id=1370497
Notes