This Metasploit module attempts to exploit a race condition in mail.local with the SUID bit set on: NetBSD 7.0 – 7.0.1 (verified on 7.0.1), NetBSD 6.1 – 6.1.5, and NetBSD 6.0 – 6.0.6. Successful exploitation relies on a crontab job with root privilege, which may take up to 10min to execute.