CVE-2007-0737
The Login Window in Apple Mac OS X 10.3.9 through 10.4.9 does not properly check certain environment variables, which allows local users to gain privileges via unspecified vectors.
Date published : 2007-04-24
http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html