TinyPDF Installer DLL Hijacking / Unsafe Temp Directory

Hi @ll, the executable installer "InstallTinyPDF.exe", available from , is surprise.- vulnerable: 1. DLL hijacking this is well-known and well-documented; see , , , and "InstallTinyPDF.exe" loads and executes UXTheme.dll and/or DWMAPI.dll from its "application directory" instead Windows' "system...