Format string vulnerability in OllyDbg 1.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers that are directly provided to the OutputDebugString function call.
https://www.exploit-db.com/exploits/3757
https://exchange.xforce.ibmcloud.com/vulnerabilities/16711
http://www.securityfocus.com/bid/10742
http://marc.info/?l=bugtraq&m=109007978822810&w=2
http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0711.html