New issue
Advanced search Search tips

Issue 650765 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Sep 2016
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: ----
Type: Bug-Security



Sign in to add a comment

Security: Logout issue when accessing 2 accounts on the same browser

Reported by heenag...@gmail.com, Sep 27 2016 
Below are the required mail. 

VULNERABILITY DETAILS
Login to one Gmail Account and access the same on 2 tabs (Tab1 & Tab2), say abc@gmail.com. 
Logout from the account, abc@gmail.com, using one of the 2 tabs, say Tab1.
Login in another Gmail Account on Tab1, say xyz@gmail.com.

Issue 1: Use Tab2 and access abc@gmail.com. Able to access 2-3 mails of logged out account.

 Issue 2 : Go to Tab 1. Not able to access logged in account xyz@gmail.com. (Says, System encountered error on Firefox & signed out in Chrome)

VERSION
Chrome Version: [53.0.2785.116] + [stable]
Firefox Version: 48.0.2
Operating System: Mac

REPRODUCTION CASE
Screen recording attached.

Thanks
Heena Ghai
GmailBug.mp4
28.5 MB Download

Comment 1 by kenrb@chromium.org, Sep 27 2016

Status: WontFix (was: Unconfirmed)

Thank you for the report.

The behavior you are observing is a result of Gmail caching email content for efficiency. The same can be observed if you lose your network connection with an active Gmail session, and find you still have some limited access to your email. Gmail doesn't know that its session has been logged out until it attempts to fetch more content, which is not always immediate.

We don't consider this a security problem, and accordingly I am closing this bug. It is a local attack (see Chrome Security FAQ: https://www.chromium.org/Home/chromium-security/security-faq#TOC-Why-aren-t-physically-local-attacks-in-Chrome-s-threat-model-), in that exposure only occurs when you have left open a browser session and somebody else can use the computer. It is not substantively different then an attacker flipping over to the tab and seeing the names of people who have sent you emails along with the email subject lines (which requires no ability to open cached emails).

Comment 2 by heenag...@gmail.com, Sep 28 2016 

I understood that Issue 1 explained is the behavior implemented by Google.
Could you please let me know why is the user logged out from the second account he logged into, though it's not related to security.

Thanks
Heena Ghai
Project Member

Comment 3 by sheriffbot@chromium.org, Jan 4 2017

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment