Format string vulnerability in x-gw in TIS Firewall Toolkit (FWTK) allows local users to execute arbitrary commands via a malformed display name.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5420
http://archives.neohapsis.com/archives/bugtraq/2000-10/0376.html