Windows QQ client version 9.7.13 has a remote code execution vulnerability, and the official emergency update fixes it

According to news from this website on August 21, CyberKunlun, a well-known domestic network security company, reported today that the Windows version of Tencent QQ desktop client has a high-risk security vulnerability. It is said that "it is extremely difficult for hackers to exploit and the harm is relatively low." "Big", Tencent has just urgently released version 9.7.15 of QQ to fix the vulnerability.

It is reported that the attacker only needs to construct an extremely simple message link. When the user clicks the message link in a QQ friend or QQ group, QQ will automatically download and open the malicious file.

After inquiry, this site learned that this vulnerability affects the Windows version of QQ 9.7.13 and previous versions. Currently, Tencent has urgently released the Windows version (traditional version) QQ 9.7.15 version, which solves the problem. The small version of this site Friends can download it here.

The QQ NT version is not affected by this vulnerability.

However, considering that the NT version of QQ adopts the Electron architecture, some users are reluctant to use this version of QQ and prefer to use the traditional version of QQ.

Therefore, if these users have not updated to the latest QQ version, they should not click on any unknown network links in the chat window.

Advertising statement: The external jump links (including but not limited to hyperlinks, QR codes, passwords, etc.) contained in the article are used to convey more information and save selection time. The results are for reference only. All articles on this site are Contains this Statement.

The above is the detailed content of Windows QQ client version 9.7.13 has a remote code execution vulnerability, and the official emergency update fixes it. For more information, please follow other related articles on the PHP Chinese website!