A local attacker with low privileges can perform a privilege escalation with an init script due to a TOCTOU vulnerability.