JNLP may overwrite system properties java.home
java.ext.dirs
user.home
Heap overflow and integer overflow on TrueType fonts parsing, memory corruption on GIF parsing, integer overflow on Pack200 decompression. Multiple sendbox protection bypass vulnerabilities.
vulners.com/securityvulns/securityvulns:doc:20949
vulners.com/securityvulns/securityvulns:doc:20953
vulners.com/securityvulns/securityvulns:doc:20954
vulners.com/securityvulns/securityvulns:doc:20955
vulners.com/securityvulns/securityvulns:doc:20956
vulners.com/securityvulns/securityvulns:doc:20957
vulners.com/securityvulns/securityvulns:doc:20958
vulners.com/securityvulns/securityvulns:doc:20967
vulners.com/securityvulns/securityvulns:doc:21257
vulners.com/securityvulns/securityvulns:doc:21720