CVE-2013-3133

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 2.0 SP2, 3.5, 3.5.1, 4, and 4.5

Description The issue is related to improper permission checks for objects using reflection, allowing remote attackers to execute arbitrary code. This can be achieved through a crafted XAML browser application (XBAP) or a crafted .NET Framework application. An elevation of privilege vulnerability exists in the way that the .NET Framework validates permissions for objects involved with reflection.

Recommendations For Microsoft .NET Framework versions 2.0 SP2, 3.5, 3.5.1, 4, and 4.5, consider restricting the use of reflection to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.