An implementation of the CVE-2016-4463 exploit.
Xerces 3.1.3 and below exploit. I meant to get this submitted to Exploit-DB, but I do not have a good go-to app to test this against. Java OpenSAML should be vulnerable, but it will take some time to explore this.