{"id":"CVE-2005-0238","details":"The International Domain Name (IDN) support in Epiphany allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, which facilitates phishing attacks.","modified":"2026-04-10T03:36:55.054868Z","published":"2005-05-02T04:00:00Z","references":[{"type":"ADVISORY","url":"http://lists.grok.org.uk/pipermail/full-disclosure/2005-February/031459.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/12461"},{"type":"ADVISORY","url":"http://www.shmoo.com/idn"},{"type":"ADVISORY","url":"http://www.shmoo.com/idn/homograph.txt"},{"type":"ADVISORY","url":"https://bugzilla.redhat.com/beta/show_bug.cgi?id=147399"},{"type":"ADVISORY","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/19236"},{"type":"EVIDENCE","url":"http://lists.grok.org.uk/pipermail/full-disclosure/2005-February/031459.html"},{"type":"EVIDENCE","url":"http://www.shmoo.com/idn"},{"type":"EVIDENCE","url":"http://www.shmoo.com/idn/homograph.txt"},{"type":"FIX","url":"https://bugzilla.redhat.com/beta/show_bug.cgi?id=147399"},{"type":"REPORT","url":"https://bugzilla.redhat.com/beta/show_bug.cgi?id=147399"},{"type":"WEB","url":"http://www.securityfocus.com/bid/12461"},{"type":"WEB","url":"http://www.shmoo.com/idn"},{"type":"WEB","url":"http://www.shmoo.com/idn/homograph.txt"}],"schema_version":"1.7.5"}