sdbstarter in SAP MaxDB 7.6.0.37, and possibly other versions, allows local users to execute arbitrary commands by using unspecified environment variables to modify configuration settings.
Exploitability
AV:LAC:MAu:NImpact
C:CI:CA:C6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C