Buffer overflow in FreeBSD setlocale in the libc module allows malicious users to execute arbitrary code via a long PATH_LOCALE environment variable.
freebsd freebsd 2.1.6