Home

CVE-2005-0234

Description

The International Domain Name (IDN) support in Safari 1.2.5 allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.

Risk Information

Base Score
4.8
MODERATE
Vector
AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.495

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Apple Safari 1.2.5Windows
Multiple Vulnerabilities are affected in Apple Safari 1.2.5Mac
Multiple Vulnerabilities are affected in Apple Safari for MAC 1.2.5Mac

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-611604Apple Safari for MAC (MacOS Sonoma) (18.6)
PATCH-611604Apple Safari for MAC (MacOS Sonoma) (18.6)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234