The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages.

Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing.

Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet.

The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts.