The browser native UI in Google Chrome prior to 17.0.963.83 does not require user confirmation before an unpacked extension installation, which allows user-assisted remote malicious users to have an unspecified impact via a crafted extension.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google chrome |
||
opensuse opensuse 12.1 |