Java 7 Update — 80 Vulnerabilities [better]

allowed remote attackers to execute arbitrary code via vectors related to image parsing. Even if your browser claims to "ask for permission," these exploits could trigger without user interaction.

Understanding the vulnerabilities associated with Java 7u80 is essential for any administrator still managing older environments. The Legacy Gap: Why Java 7u80 is Risky java 7 update 80 vulnerabilities

Because the version is so old, many of its vulnerabilities have automated exploit modules available in tools like Metasploit allowed remote attackers to execute arbitrary code via

Invoke-Command -ComputerName HOST -ScriptBlock (& java -version) 2>&1 | Out-String &1 | Out-String