Whitepaper discussing BIZARRELOVETRIANGLE and FULLCLIP – JNLP parameter injection attacks to remote, persistent, multi-os code execution.
You can download it from the following link: https://packetstormsecurity.com/files/download/163280/jnlp-injection.pdf
Source: https://packetstormsecurity.com/files/163280/JNLP-Injection-To-Multi-OS-Code-Execution.html