Issue metadata
Sign in to add a comment
|
Security: IDN domain spoof with unicode thai character
Reported by
xis...@gmail.com,
Aug 18 2017
|
||||||||||||||||||||||||||
Issue descriptionVULNERABILITY DETAILS Chrome IDN domain spoofing with unicode thai character VULNERABILITY DETAILS Chrome Version: 60.0.3112.101 stable , 62.0.3189.0 canary Operating System: Windows REPRODUCTION CASE https://www.xn--google-8cu.com (U+0E3A) https://www.xn--google-1fu.com (U+0E48) https://www.xn--google-gbu.com (U+0E31) https://www.xn--google-ucu.com (U+0E38) https://www.xn--google-1bu.com (U+0E34) https://www.xn--google-1cu.com (U+0E39) https://www.xn--google-8gu.com (U+0E4E) https://www.xn--google-1gu.com (U+0E4D) https://www.xn--google-ugu.com (U+0E4C) https://www.xn--google-ngu.com (U+0E4B) https://www.xn--google-ggu.com (U+0E4A) https://www.xn--google-8fu.com (U+0E49)
,
Aug 22 2017
nick@, would you be the right person to fix this?
,
Aug 23 2017
,
Aug 23 2017
,
Aug 23 2017
,
Aug 23 2017
Issue 756977 has been merged into this issue.
,
Aug 23 2017
Issue 756947 has been merged into this issue.
,
Aug 23 2017
Issue 756893 has been merged into this issue.
,
Aug 23 2017
,
Aug 23 2017
Issue 757180 has been merged into this issue.
,
Aug 25 2017
I think the summary should be changed to “URL spoofing using combining marks”. Then thai/lao/malayalam/mongoian/tibetan are not the only problematic script system, they seem like the tip of the iceberg.
,
Aug 29 2017
Update a IDN spoofing in Malayalam using (U+0D1F),(U+0D20) . Real site: https://www.so.com spoof site: https://www.ടഠ.com/
,
Aug 29 2017
Issue 759995 has been merged into this issue.
,
Sep 2 2017
nick: Uh oh! This issue still open and hasn't been updated in the last 14 days. This is a serious vulnerability, and we want to ensure that there's progress. Could you please leave an update with the current status and any potential blockers? If you're not the right owner for this issue, could you please remove yourself as soon as possible or help us find the right one? If the issue is fixed or you can't reproduce it, please close the bug. If you've started working on a fix, please set the status to Started. Thanks for your time! To disable nags, add the Disable-Nags label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Sep 16 2017
nick: Uh oh! This issue still open and hasn't been updated in the last 28 days. This is a serious vulnerability, and we want to ensure that there's progress. Could you please leave an update with the current status and any potential blockers? If you're not the right owner for this issue, could you please remove yourself as soon as possible or help us find the right one? If the issue is fixed or you can't reproduce it, please close the bug. If you've started working on a fix, please set the status to Started. Thanks for your time! To disable nags, add the Disable-Nags label. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 18 2017
,
Nov 8 2017
nick, jshin: Ping. Can you please take a look or reassign? Thanks.
,
Nov 9 2017
Not sure why this was assigned to nick@. jshin@, can you take a look?
,
Nov 10 2017
,
Nov 14 2017
Fixed in bug 726950
,
Nov 14 2017
re: comment 12 > Update a IDN spoofing in Malayalam using (U+0D1F),(U+0D20) . > Real site: https://www.so.com > spoof site: https://www.ടഠ.com/ This has to be dealt with in a separate bug. There's no script mixing. U+0D1F and U+0D20 look like Latin 's' and 'o', respectively. Unicode util web site is down at the moment and I haven't checked if U+0D1F and U+0D20 are considered confusable with 's' and 'o' (I guess they're). If they're and 'so.com' is in the top domain list, it'd be blocked. bug 726950 took care of mixing Latin + a non-Latin script.
,
Feb 20 2018
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 19
|
|||||||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||||||
Comment 1 by elawrence@chromium.org
, Aug 18 2017Components: UI>Browser>Omnibox UI>Internationalization