New issue
Advanced search Search tips

Issue 658588 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Nov 2016
EstimatedDays: ----
NextAction: ----
OS: Linux
Pri: ----
Type: Bug-Security



Sign in to add a comment

Security: Unexpected credential sharing

Reported by gedanken...@gmail.com, Oct 23 2016 
VULNERABILITY DETAILS
Please provide a brief explanation of the security issue.

VERSION
Chrome Version: [54.0.2840.59 (64-bit)] + [stable]
Operating System: [Ubuntu 16.04.1 LTS]

User 1 signs in https://drive.google.com saves the password and logs out afterwards.
User 2 sings in, in chrome and is now able to login in the account of user 1 from everywhere he wants.

reproduced on several different computers/os

Comment 1 by elawrence@chromium.org, Oct 24 2016

Labels: Needs-Feedback OS-Linux
Summary: Security: Unexpected credential sharing (was: Security: account taking over)
Can you please be very specific about how "User 1 signs in" and "User 2 signs in"? Are you referring to logging into the system or into the user profile in Chrome? When you say "User2 signs in, in chrome" how specifically are they doing so?

Different Linux user login accounts should not be sharing credentials in any way in a normal configuration.

Comment 2 by gedanken...@gmail.com, Oct 24 2016 

user 1 uses computer 1 opens chrome , goes to https://drive.google.com/ ands signs in. chrome asks to save the password and user 1 stores it. now he logs out of the website https://drive.google.com/. 

user 2 uses also computer 1 and opens chrome and signs in into the user profile in chrome. he is now able to acess the account from computer 1 and all other computers where he signs into the user profile in Chrome. it doesn matter if it is a linix system, mac osx or windows system.

Comment 3 by ta...@google.com, Oct 31 2016 

> and signs in into the user profile in chrome

Could you clarify a bit more?: User 2 signs into user2's profile or user1's profile?

> he is now able to acess the account from computer 1 and all other computers where he signs into the user profile in Chrome

Did you mean user2 can access user1's drive.google.com account from any other computer?

Thanks

Comment 4 by gedanken...@gmail.com, Oct 31 2016 

User 2 signs into user2's profile.

yes i mean user2 can access user1's drive.google.com account from any other computer

Comment 5 by nparker@chromium.org, Nov 1 2016 

I suspect what's happening is that user 1 is saving their password in the default profile, and then user 2 is using that same profile and enabling syncing, thus syncing user1's saved password to all of user2's other logged-in chrome instances.

To avoid that, each user should have their own account in the OS, and should not share a profile. In general this is WAI.

Comment 6 by gedanken...@gmail.com, Nov 1 2016 

so this is a feature and no security issue?

that sounds like  "to avoid that, each user should have their own computer, and should not share it"  ->   what would be the solution for many security issues.

if this is final. plz close the  issue.

Comment 7 by nparker@chromium.org, Nov 1 2016

Status: WontFix (was: Unconfirmed)
Yes, if you share your OS-login account, all of your local data is accessible to another user.  This includes locally saved passwords.
Project Member

Comment 8 by sheriffbot@chromium.org, Feb 8 2017

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment