N/A

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check the permissions of objects that use reflection, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP) or (2) a crafted .NET Framework application, aka "Anonymous Method Injection Vulnerability."

N/A

N/A

Microsoft .NET Framework 匿名方法注入漏洞

Microsoft .NET Framework是美国微软（Microsoft）公司开发的一种全面且一致的编程模型，也是一个用于构建Windows、Windows Store、Windows Phone、Windows Server和Microsoft Azure的应用程序的开发平台。该平台包括C#和Visual Basic编程语言、公共语言运行库和广泛的类库。Microsoft .NET Framework 2.0 SP2，3.5，3.5.1，4，4.5版本验证反射涉及的对象的权限的方式中存在一个特权提

N/A

N/A