CVE-2013-0967 Information

Description

CoreTypes in Apple Mac OS X before 10.8.3 includes JNLP files in the list of safe file types which allows remote attackers to bypass a Java plug-in disabled setting and trigger the launch of Java Web Start applications via a crafted web site.

Reference

http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html