Anonymous
Not applicable

Is the reason that log4j version 1.2.17 is not vulnerable, because it was not a feature (lookups) before version 2.0?