Format string vulnerability in the printlog function in log2mail before 0.2.5.2 allows local users or remote attackers to execute arbitrary code via format string specifiers in a logfile monitored by log2mail.
https://exchange.xforce.ibmcloud.com/vulnerabilities/16311
http://www.securityfocus.com/bid/10460
http://www.debian.org/security/2004/dsa-513
http://secunia.com/advisories/11769