CVE-2011-3055

The browser native UI in Google Chrome before 17.0.963.83 does not require user confirmation before an unpacked extension installation, which allows user-assisted remote attackers to have an unspecified impact via a crafted extension.

Date published : 2012-03-22

http://www.securityfocus.com/bid/52674

http://code.google.com/p/chromium/issues/detail?id=117736