ID 1337DAY-ID-33262 Type zdt Reporter zdt Modified 2019-09-18T00:00:00
Description
---------------------------
To normally view passwords in Chrome, you have to go to the Properties section, click View Passwords, and you are prompted for a users password. This flaw discloses all passwords for the domain without the required authentication step.
---------------------------
Please see https://secureli.com/2019/09/15/password-leak-version-76-0-3809-132-official-build-64-bit/ for all information, including pictures:
When a plain-text password form field is found by Google Chrome, it will reveal all passwords on that primary domain.
For example, take a look at the following code and screenshot:
<input class="form-control secure_password required password fs-hide" data-install-name="secureli" id="ftp_user_pass_new" required="required" aria-required="true" autocomplete="new-password" type="text" name="ftp_user[pass]">
By checking the “Show Password” button, as shown below…
--- screenshot ---
…the auto-complete function in Chrome is activated and clicking on the password field shows a drop-down of all passwords saved on that domain:
--- screenshot ---
# 0day.today [2021-11-03] #
{"id": "1337DAY-ID-33262", "vendorId": null, "type": "zdt", "bulletinFamily": "exploit", "title": "Google Chrome Password Disclosure Vulnerability", "description": "", "published": "2019-09-18T00:00:00", "modified": "2019-09-18T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://0day.today/exploit/description/33262", "reporter": "zdt", "references": [], "cvelist": [], "immutableFields": [], "lastseen": "2021-11-03T04:29:58", "viewCount": 4, "enchantments": {"dependencies": {}, "score": {"value": 0.1, "vector": "NONE"}, "backreferences": {"references": [{"type": "threatpost", "idList": ["THREATPOST:5D5241707AB76ED799696E37D048872A", "THREATPOST:7876640D5EC3E8FE3FE885606BBB1C6D"]}]}, "exploitation": null, "vulnersScore": 0.1}, "sourceHref": "https://0day.today/exploit/33262", "sourceData": "---------------------------\r\nTo normally view passwords in Chrome, you have to go to the Properties section, click View Passwords, and you are prompted for a users password. This flaw discloses all passwords for the domain without the required authentication step.\r\n---------------------------\r\n\r\nPlease see https://secureli.com/2019/09/15/password-leak-version-76-0-3809-132-official-build-64-bit/ for all information, including pictures:\r\n\r\nWhen a plain-text password form field is found by Google Chrome, it will reveal all passwords on that primary domain.\r\n\r\nFor example, take a look at the following code and screenshot:\r\n\r\n<input class=\"form-control secure_password required password fs-hide\" data-install-name=\"secureli\" id=\"ftp_user_pass_new\" required=\"required\" aria-required=\"true\" autocomplete=\"new-password\" type=\"text\" name=\"ftp_user[pass]\">\r\nBy checking the \u201cShow Password\u201d button, as shown below\u2026\r\n\r\n--- screenshot ---\r\n\r\n\u2026the auto-complete function in Chrome is activated and clicking on the password field shows a drop-down of all passwords saved on that domain:\r\n\r\n--- screenshot ---\n\n# 0day.today [2021-11-03] #", "_state": {"dependencies": 1647589307, "score": 0}}
