ssl strip and recording of screens and key logging via js exploits
Reported by
gee.alan...@gmail.com,
Sep 25 2016
|
|||
Issue description
Chrome Version : Version 53.0.2785.103 (64-bit)
Platform 8530.81.0 (Official Build) stable-channel winky
Firmware Google_Winky.5216.265.53
URLs (if applicable) :any https
Other browsers tested:
Add OK or FAIL, along with the version, after other browsers where you
have tested this issue:
Safari:
Firefox:
IE:
What steps will reproduce the problem?
(1) someone using JS script from github to strip ssls ( or Kali Linux).. creating a zombie google analytcs ad bot .. injecting steg'd .png, etc.
(2)
(3)
What is the expected result?
Censorship and/or fraud
What happens instead?
You will likely not get this report
Please provide any additional information below. Attach a screenshot if
possible.
,
Nov 15 2016
,
Nov 16 2016
This issue may closed.
,
Nov 16 2016
Please close this (supposed) issue.
,
Nov 16 2016
Closing. There's not much that can be done on the chrome side here.
,
Nov 17 2016
Much thanks!!! |
|||
►
Sign in to add a comment |
|||
Comment 1 by msrchandra@chromium.org
, Sep 27 2016