TIM for Windows suffers from dll hijacking vulnerability
TIM is a multi-platform client application released in November 2016 by Tencent. It supports QQ and WeChat login, and is named "TIM". A dll hijacking vulnerability exists in TIM Windows Edition. An attacker can use this vulnerability to load a malicious dll and execute malicious code...