This template is ONLY for reporting security bugs. If you are reporting a
Download Protection Bypass bug, please use the "Security - Download
Protection" template. For all other reports, please use a different
template.

Please READ THIS FAQ before filing a bug: https://www.chromium.org/Home
/chromium-security/security-faq

Please see the following link for instructions on filing security bugs:
http://www.chromium.org/Home/chromium-security/reporting-security-bugs

NOTE: Security bugs are normally made public once a fix has been widely
deployed.

VULNERABILITY DETAILS
The accounts can be hacked while recovering any password with questions,however when we know approximately when an account was created we can fill the question 'When did you create this Google Account?' with the exact year when the account was created and the approximation of the month and this details can be find on 'Hangouts' for example,if the account there have an older photo where he/she had uploaded in YYYY/MM then the account can be successfully hacked.

VERSION
Chrome Version: [56.0.2924.87] + [Official Build(64-bit)]
Operating System: [Windows 10 PRO,Version:1607,Build:14393.693]

REPRODUCTION CASE
Please include a demonstration of the security bug, such as an attached
HTML or binary file that reproduces the bug when loaded in Chrome. PLEASE
make the file as small as possible and remove any content not required to
demonstrate the bug.

FOR CRASHES, PLEASE INCLUDE THE FOLLOWING ADDITIONAL INFORMATION
Type of crash: [tab, browser, etc.]
Crash State: [see link above: stack trace, registers, exception record]
Client ID (if relevant): [see link above]