UserAgent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.97 Safari/537.36

Steps to reproduce the problem:
0. WARNING: Verify that your Downloads folder does not contain a file named "_html.html". The following steps will cause any such file to be overwritten.

1. Find or create two HTML documents that use UTF-8 character sequences or Unicode entity names in their <title> elements. The two documents need to be different enough that you can tell them apart.

For convenience, a minimal copy-paste:

<!doctype html>
<html>
<head>
<title>123 &#x26A1; abc</title>
</head>
<body>Test</body>
</html>

Perhaps the body of the 2nd document could read "Test 2".

2. Load the first of the two documents. This can be via file:// or a Web server.

3. Go to save the page.

4. Observe that the file picker prompts you with a name of "_html".

5. Hit OK/Enter.

5. Optionally verify Downloads/_html.html contains the contents of the first document.

6. Load the second document.

7. Go to save again.

8. Observe that the file picker again prompts you with a file name of "_html".

9. Hit OK/Enter again AND NOTE THAT YOU ARE NOT SHOWN AN OVERWRITE PROMPT.

10. Observe that "_html.html" contains the contents of the second document, and that the old copy was successfully overwritten with no warning.

What is the expected behavior?
That an appropriate filename is generated for pages containing Unicode character sequences or entity names.

What went wrong?
Two things:

1. It looks like a Unicode conversion process failed somewhere, and punted out some sort of stub string as a result. (Minor quibble)

2. For whatever reason I'm not being given an overwrite prompt, and Chrome is erasing my data without warning as a result. (Fairly critical issue)

Did this work before? No 

Chrome version: 48.0.2564.97  Channel: stable
OS Version: slackware-current
Flash Version: Shockwave Flash 20.0 r0

I've reported this as a Security issue because I believe overwriting files in the filesystem without prompting could potentially be unfairly exploited in certain circumstances or situations.

In my own case, I tend to hit CTRL+S then hit Enter the moment the file picker appears on the screen... meaning that I've had several instances where "_html.html" has been inadvertently and very unintentionally overwritten. At the very least a frustration.

If "Security" is canonically not the correct category (or primary category) for this report I apologize and hope it can be recategorized without too much hassle.