ghostscript before 5.10-16 allows local users to overwrite files of other users via a symlink attack.
Related posts