Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect availability via vectors related to JAXP. (CVE-2016-3425)
Impact
An authenticated attacker can input specially crafted XML that causes Java to use excessive memory.