CVE-2018-5121

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 58

Description The issue is related to the incorrect rendering of some Tibetan characters in the address bar when using certain fonts on OS X. This can be exploited for domain name spoofing attacks when used as part of an Internationalized Domain Name (IDN). The attack only affects OS X operating systems, with other operating systems being unaffected.

Recommendations For Firefox versions prior to 58, update to version 58 or later to resolve the issue. As a temporary workaround, consider avoiding the use of Tibetan characters in the address bar or restricting access to potentially spoofed domains until the update is applied.