Vuln. in accounts.google.comエs 2 Step verif. PoC (by Pablo Ximenes)

Thanks to Michal Zalewski for providing "The old seamless switcharoo" that was used to build this PoC.



1) Logout from you Google Account
2) Click the button bellow
3) Profit !

I set the time required for the user to type login+pass to 10 seconds, might vary.