CVE-2005-0235

Name of the Vulnerable Software and Affected Versions Opera version 7.54

Description The issue allows remote attackers to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates. This is done in a way that uses homograph characters from other character sets, which facilitates phishing attacks.

Recommendations For Opera version 7.54, consider disabling the International Domain Name (IDN) support as a temporary workaround until a patch is available. Restrict access to punycode encoded domain names to minimize the risk of exploitation. Avoid using homograph characters from other character sets in URLs and SSL certificates until the issue is resolved.