New issue
Advanced search Search tips

Issue 837382 link

Starred by 2 users
Status: WontFix
Owner: ----
Closed: Apr 2018
Components:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: ----
Type: Bug-Security



Sign in to add a comment

Security: Chrome Extension Rogue

Reported by krutaa...@gmail.com, Apr 26 2018 

VULNERABILITY DETAILS
There is an extension which is rogue ... here it is :
https://chrome.google.com/webstore/detail/ebay-image-and-page-saver/jhhhfgfhbjnkpaoedekoofphhbagpooj?hl=en

FYI:its not showing under my extensions when opened in chrome://extensions/ but it does shows in webstore of google & under my extension.... weird enough ..read next ... see next please 

Go UNINSTALL it and let me know ... its redirecring to third party .... extension not visible anywhere ....

VERSION
Chrome Version: 65.0.3325.181 [x64 bit] official built
Operating System: Win10 fall version

REPRODUCTION CASE
Attached image

For sure a bounty case mate ...! be fair :) thanks ....
krutarth.JPG
44.5 KB View Download

Comment 1 by elawrence@chromium.org, Apr 26 2018

Components: Platform>Extensions
Status: WontFix (was: Unconfirmed)
I've reviewed the code of this extension (Digest 3b2de07401057969f35e00ddf5344c0d61547b8999495ec1f1a5696f17f42e32) which has not been changed in two years; I did not find any malicious code.

When installed from the Chrome Web Store, the extension properly displays in chrome://extensions/. 

Nothing interesting happens when the extension is uninstalled (there's no uninstall handler); the extension is just immediately removed.

If you can supply screenshots showing the extension in your toolbar but not appearing in chrome://extensions, and/or of the "redirecting to third party" page you refer to above, please do update this issue. It's possible that you have native code malware in your operating system that's doing something sneaky, but it's not coming from the extension served by the Chrome Web Store.
Project Member

Comment 2 by sheriffbot@chromium.org, Aug 3

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment