CVE-2023-34312

HIGH

Tencent QQ <9.7.8.29039 & TIM <3.4.7.22084 - Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2023-34312. PoCs published by vi3t1, lan1oc.

AI-analyzed exploit summary This repository contains a Rust-based PoC for CVE-2023-34312, a local privilege escalation vulnerability in Tencent QQ/TIM's QQProtect.exe. The exploit leverages arbitrary address write vulnerabilities in QQProtect.exe and QQProtectEngine.dll to achieve SYSTEM-level command execution via DLL injection.

Description

In Tencent QQ through 9.7.8.29039 and TIM through 3.4.7.22084, QQProtect.exe and QQProtectEngine.dll do not validate pointers from inter-process communication, which leads to a write-what-where condition.

Exploits (2)

nomisec WORKING POC 421 stars
by vi3t1 · poc
https://github.com/vi3t1/qq-tim-elevation

This repository contains a Rust-based PoC for CVE-2023-34312, a local privilege escalation vulnerability in Tencent QQ/TIM's QQProtect.exe. The exploit leverages arbitrary address write vulnerabilities in QQProtect.exe and QQProtectEngine.dll to achieve SYSTEM-level command execution via DLL injection.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Reliable
Target: Tencent QQ 9.7.1.28940 ~ 9.7.8.29039, TIM 3.4.5.22071 ~ 3.4.7.22084
No auth needed
Prerequisites: Local access to the target system · QQ/TIM installed with vulnerable versions · Ability to place DLLs in the target directory
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 8 stars
by lan1oc · poc
https://github.com/lan1oc/CVE-2023-34312-exp

This repository provides a proof-of-concept exploit for CVE-2023-34312, targeting QQ and TIM applications by leveraging DLL hijacking via QQProtect.exe. The exploit requires placing a malicious DLL in the same directory as QQProtect.exe to achieve arbitrary code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: QQ (9.6.2.27855 ~ 9.7.11.29088) and TIM (3.4.5.22071 ~ 3.4.7.22084)
No auth needed
Prerequisites: QQ or TIM installed · Write access to the directory containing QQProtect.exe
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit, Third Party Advisory
https://github.com/vi3t1/qq-tim-elevation

Scores

CVSS v3 7.8
EPSS 0.0060
EPSS Percentile 43.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-763
Status published
Products (2)
tencent/qq 9.7.1.28940 - 9.7.8.29039
tencent/tim 3.4.5.22071 - 3.4.7.22084
Published Jun 01, 2023
Tracked Since Feb 18, 2026