A vulnerability has been reported in Red Hat Enterprise Linux, which can be exploited by malicious, local users to gain escalated privileges.
The vulnerability is caused due to a missing "nosuid" option in the default autofs configuration file for "/net" mounts. This can be exploited by a malicious, local user to execute arbitrary suid binaries via a malicious NFS server.
http://www.linuxlinks.com/portal/news/article.php?story=20071212155152706