Phase:Format string vulnerability in log_doit function of Slurp NNTP client 1.1.0 allows a malicious news server to execute arbitrary code on the client via format strings in a server response.
ReferencesVULN-DEV:Tuesday, June 04, 2002 SRT Security Advisory (SRT2002-06-04-1011): slurp | URL:http://marc.theaimsgroup.com/?l=vuln-dev&m=102323341407280&w=2 | BUGTRAQ:Tuesday, June 04, 2002 SRT Security Advisory (SRT2002-06-04-1011): slurp | URL:http://archives.neohapsis.com/a
Votes:Proposed (Friday, August 30, 2002)
Comments: ACCEPT(1) Frech | NOOP(3) Wall, Foat, Cole
F7: