source: http://www.securityfocus.com/bid/9974/info

Multiple locally and remotely exploitable buffer overrun and format strings were reported in emil. This could permit execution of arbitrary code in the context of the software.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/23881.tar.gz