source: wwwsecurityfocuscom/bid/902/info
It is possible to execute arbitrary commands with elevated privileges through exploiting the majordomo binary, "resend" A setuid root wrapper program calls resend after setuid()ing and setgid()ing to lowered (but still elevated) privileges which it runs resend with resend contains a call to open( ...