AI Score
Confidence
High
EPSS
Percentile
46.1%
CoreTypes in Apple Mac OS X before 10.8.3 includes JNLP files in the list of safe file types, which allows remote attackers to bypass a Java plug-in disabled setting, and trigger the launch of Java Web Start applications, via a crafted web site.
lists.apple.com/archives/security-announce/2013/Mar/msg00002.html