LogWatch before 2.5 allows local users to execute arbitrary code via a symlink attack on the logwatch temporary directory.
http://www.securityfocus.com/bid/4374
http://www.iss.net/security_center/static/8652.php
http://online.securityfocus.com/archive/82/264233
http://marc.info/?l=bugtraq&m=101724766216872
http://list.kaybee.org/archives/logwatch-announce/2002-March/000002.html