Multiple Vendor Locale Subsystem Format String Vulnerability
For an in depth conversation of this problem with example code included please see the attched 'Credit' messages.
Warning3@nsfocus.com has contributed an exploit for Solaris machines (he exploited eject) on sparc architecture.
Mariusz Woloszyn <email@example.com> submitted an exploit against su that bypasses Stackguard.
Guido Bakker <firstname.lastname@example.org> has submitted an additional exploit.
zenith parsec <email@example.com> submitted an exploit as well.
Warning3 <firstname.lastname@example.org> submitted an exploit against Solaris 2.6/7 Sparc systems with the no-exec stack patch installed.
Doing <email@example.com> submitted an exploit for RedHat 6.1/6.2/SuSE 6.2.