Security Advisory
CVE-2012-3693
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Incomplete blacklist vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to spoof domain names in URLs, and possibly conduct phishing attacks, by leveraging the availability of IDN support and Unicode fonts to construct unspecified homoglyphs.