The vulnerability in 1.2pre1, 1.2pre3 and 1.2pre3 is a remotely exploitable buffer overflow, the result of a sprintf() in the log xfer() routine in src/log.c. The vulnerability in -> 1.2pre4 <- is a mkdir overflow.