-
Archives
- November 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- September 2007
- April 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- April 2006
- August 2005
- April 2005
- March 2005
- March 2004
-
Meta
Tag Archives: IDN
Advisory: Certain domain names could allow execution of arbitrary code in Opera
Opera released 10.01 recently, which fixed a memory corruption issue found with Casaba’s IDN/URI fuzzer. http://www.opera.com/support/kb/view/938/
Presenting IDN spoofing threats to ICANN’s security committee
I had the chance to present to the ICANN Security and Stability Advisory Committee during their ICANN Mexico conference. It was an opportunity to give a portion of my upcoming presentation on Exploiting Unicode-enabled Software, focusing just on IDN visual … Continue reading
The current state of IDN homograph spoofing in 2009 – you don’t need a .CN to do it
Aside from the frightening SSL stuff, Moxie Marlinspike stirred up some good interest in Internationalized Domain Names at Black Hat in DC with his domain lookalike attack. Since I’ve been studying the topic for a while, I wanted to point … Continue reading