CVE-2013-3132

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 1.0 SP3 through 4.5

Description The issue arises from improper permission checks of objects using reflection, allowing remote attackers to execute arbitrary code. This can be achieved via a crafted XAML browser application (XBAP) or a crafted .NET Framework application. An elevation of privilege vulnerability exists in the way that .NET Framework validates the permissions of certain objects performing reflection, potentially allowing an attacker to take complete control of an affected system.

Recommendations For Microsoft .NET Framework versions 1.0 SP3 through 4.5, update to a version that properly checks the permissions of objects that use reflection to prevent arbitrary code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.