Delegate Reflection Bypass Vulnerability

Delegate Reflection Bypass Vulnerability

CVE-2013-3132 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check the permissions of objects that use reflection, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP) or (2) a crafted .NET Framework application, aka "Delegate Reflection Bypass Vulnerability."

Learn more about our Web Application Penetration Testing UK.