Forum OpenACS Q&A: Security concerns on AOLserver/3.3.1+ad13
ns_param noticedetail 0
So unless you're using nsext.so for db connections I think you don't need to worry about this issue.
I'm glad to hear about not worrying the format string vuln.
AFAIK, nothing else came of that. It would also be good to check the lastest AOLserver sources , to see if nspd has been fixed, and bring it up on the AOLserver list if not. You might also be interested in Jon Griffin's recent AOLserver Security Audit thread.