nsr_shutdown in Fujitsu Siemens NetWorker 6.0 allows local users to overwrite arbitrary files via a symlink attack on the nsrsh[PID] temporary file.
http://www.securitytracker.com/id?1008801
http://www.securityfocus.com/bid/9446
http://www.securityfocus.com/archive/1/350237/30/21640/threaded