SuSE 8.1’s “gfxmenu” which is configured into GRUB by default on many machines allows the user to pass in additional kernel boot parameters without entering the password, allowing users who can locally reboot the machine to easily spawn a root shell.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/30589/suse.grub.txt
Source: https://packetstormsecurity.com/files/30589/suse.grub.txt.html