We have been contacted by a few people that asked how the Hitman Pro LNK Exploit Protection works. Well here it is. Vulnerability The vulnerability is in the Window Shell component shell32.dll. This library is responsible for parsing shortcuts (.LNK files) and their icons (see IExtractIcon). Certain special shortcuts specify that their icon resides in a separate library file and the shell32.dll us