New issue
Advanced search Search tips

Issue 788427 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Nov 2017
Components:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: 3
Type: ----



Sign in to add a comment

Abuse of permissions

Reported by lukasz.j...@gmail.com, Nov 24 2017 
Dear Sir or Madam,
I am writing to you, because I have found the vulnerability that is probably an error in accessing unauthorized access. By going to a shared mail (i.e. students shared mail) with access to connected phones, you can use options that are assigned only to the owner of the phone, such as calling the phone, locking the phone, erasing the data or trolling the tones without information or origin. This unauthorized access threatens the safety of users, violates their rights and leaves no information about pairing. I look forward to your reply.

Yours faithfully,
Łukasz Jagódka
Abuse of permissions.png
193 KB View Download
Aop2.png
1.0 MB View Download

Comment 1 by lukasz.j...@gmail.com, Nov 24 2017 

PS. The above features do not leave a trace on the victim's phone.

Comment 2 by battre@chromium.org, Nov 24 2017

Status: WontFix (was: Untriaged)
This is an interesting observation. Unfortunately, we cannot help you here, as you have reached the Chrome team. Please file your bug here https://source.android.com/setup/report-bugs.

I will try to forward this to some people who work on Android but I think the proper way is to use the Android bug tracker.

Comment 3 by lukasz.j...@gmail.com, Nov 24 2017 

Ok, thank you for answer. I will send it there.

Sign in to add a comment