CVE-2017-5060

Summary

Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to perform domain spoofing via IDN homographs in a crafted domain name.

Affected Software

VendorProductVersion RangeStatus
n/aGoogle Chrome prior to 58.0.3029.81 for Mac, Windows and Linux, and 58.0.3029.83 for AndroidGoogle Chrome prior to 58.0.3029.81 for Mac, Windows and Linux, and 58.0.3029.83 for Androidaffected

Weaknesses

  • Insufficient Policy Enforcement

ADP Enrichment

CVE Program Container

Additional References

References