N/A

Default fonts on OS X display some Tibetan characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only affects OS X operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 54, Firefox ESR < 52.2, and Thunderbird < 52.2.

N/A

N/A

Mozilla Firefox和Firefox ESR for OS X 安全漏洞

Mozilla Firefox for OS X是美国Mozilla基金会的一款基于OS X平台的开源Web浏览器。Firefox ESR for OS X是Firefox的一个基于OS X平台的延长支持版本。 基于OS X平台的Mozilla Firefox 54之前的版本和Firefox ESR 52.2之前的版本中存在安全漏洞。攻击者可利用该漏洞实施域名欺骗攻击。

N/A

N/A