Rockstar Games: Stealing Facebook OAuth Code Through Screenshot viewer

ID H1:488269
Type hackerone
Reporter netfuzzer
Modified 2019-03-05T21:37:07


In this report, the researcher demonstrated a way to combine multiple vulnerabilities to potentially allow an attacker to extract Oauth tokens from a victim's session. This was done by taking advantage of an image injection vulnerability in the Screenshot Viewer utility as well as additional vulnerabilities still being resolved. Combining these vulnerabilities allowed for an impact greater than the individual impact of each issue on their own. We have resolved the image injection vulnerability, thereby preventing the potential exfiltration of sensitive authentication tokens.