Windows 2000 Format String Vulnerabilities – Includes detailed discussion of how format string bugs in fprintf(), vprintf() and sprintf() calls they are created, discovered, and exploited.
You can download it from the following link: https://packetstormsecurity.com/files/download/25672/win32format.doc
Source: https://packetstormsecurity.com/files/25672/win32format.doc.html