CVE-2000-0844
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
Date published : 2001-01-22
http://archives.neohapsis.com/archives/bugtraq/2000-10/0427.html