Altova Diffdog 2011 is a file comparison and merging application. Altova Diffdog 2011 is exposed to an issue that lets attackers execute arbitrary code. The issue arises because the application searches for the "dwmapi.dll" Dynamic Link Library file in the current working directory. The issue can be exploited by placing both a specially crafted library file and a file that is associated with the vulnerable application in an attacker-controlled location.

Ref: http://blog.metasploit.com/2010/08/exploiting-dll-hijacking-flaws.html

10.50.7 - CVE: Not Available
Platform: Third Party Windows Apps