Funny enought this one doesnt affect IE ;) .... but then as we all knwo once something becomes popular all sorts of possible exploits will emerge.

This is just a heads up no more no less.

According to a paper recently published by Eric Johanson of the Shmoo Group, users on most Mozilla-based browsers (Firefox 1.0, Camino .8.5, Mozilla 1.6, etc), Safari 1.2.5, Opera 7.54, Omniweb 5 are victim to a complex International Domain Name [IDN] spoof.

This new attack allows an attacker/phisher to spoof the domain/URLs of businesses. Every recent gecko/khtml based browser implements IDN (which is just about every browser except for Internet Explorer). The Smoo Group have created a proof of concept where the links are directed at "http://www.pаypal.com/", which the browsers punycode handlers render as www.xn--pypal-4ve.com.


http://www.neowin.net/comments.php?id=26989&category=main

Doesnt affect IE?? lol now there's a new concept!

it will probably be fixed by tomorrow in a nightly .. ;)

see here for more info
http://forums.mozillazine.org/viewtopic.php?t=215221&sid=6773ccca522f31c211531e6235b9df45

Thanks for the info KODO

Once again you are "on the ball" :)

Well, if you're protected against phishing (i.e. read your emails with suspicion if it is "automatic")... wouldn't be a problem :p

But good to know, I'm expecting an update!

i think i want to use FF at school but the admin dosent know much about it's security and dosent wanna do it...but i'll get him to :)

Well, I did a search for a thread relating to this issue. I didn't type it in as it is here, but rather by it's name as I knew it. Sorry for the extra thread on this topic.

New question ? Why is it when I click on the link for the "Firefox Profile Location" given in the post, it comes up "page has been blocked" ?
The link posted by Kodo worked fine, but when I went to read where the workaround gave the link for Firefox's Profile Location. I can't get to it! :-(

Any Ideas ? Point me in the right direction Please...... Thanks CT

New question ? Why is it when I click on the link for the "Firefox Profile Location" given in the post, it comes up "page has been blocked" ?
The link posted by Kodo worked fine, but when I went to read where the workaround gave the link for Firefox's Profile Location. I can't get to it! :-(

Any Ideas ? Point me in the right direction Please...... Thanks CT

Try the link in posts #9 & #10 in this thread. (http://forums.majorgeeks.com/showthread.php?t=54827) if it's the patch you are looking for.

Thanks AbbySue, when I got back to work on this later this evening. I just went ahead and used IE to access the needed links. Had no problem as I shut down SpywareBlaster and Spybot S&D controls on ActiveX.
So I got the info, and now I am going to fix the issue. Thanks Everyone!

Good to know I have ya'll to help me out when I need it. Thanks!
CT