Bug in fts_print function allows to overwrite any file in system, when running /etc/security script (executed from 'daily' scripts). FreeBSD 3.3 and earlier, openbsd, and netbsd are vulnerable.
650425b65c816d3f751be1bb04c52839d2e6e89a854c6241cfa71bf8c5dba913