SECURITY: 2.14.0 Installer vulnerable to DLL Hijacking
Windows visual diff and merge for files and directories
Brought to you by:
christianlist,
grimmdp
The WinMerge 2.14.0 installer is vulnerable to a DLL hijacking attack of dwmapi.dll, allowing attacker-supplied code to run in the elevated context of the WinMerge installer.
https://textplain.wordpress.com/2015/12/18/dll-hijacking-just-wont-die/
I think the problem was fixed in 2.15.2 installer which was created by latest inno setup