• info
• discussion
• exploit
• solution
• references

Apple Mac OS X Java Plug-in 'file://' URL Handling Remote Code Execution Vulnerability

An attacker can exploit this issue by enticing an unsuspecting victim to visit a malicious webpage.