CVE-2004-1469

Format string vulnerability in the log function in SUS 2.0.2, and other versions before 2.0.6, allows local users to execute arbitrary code via format string specifiers in a command line argument that is passed directly to syslog.

Date published : 2005-02-13

http://www.securityfocus.com/bid/11176

http://marc.info/?l=bugtraq&m=109517782910407&w=2