LIDS contains a flaw that allows a local user to gain root privileges. The issue occurs when the administrator disabes LIDS by starting the system with /security=0 or switching off LIDS globally at runtime via -LIDS_GLOBAL. When configured like this, any local unprivileged user is able to execute commands with root privileges.
Upgrade to version 0.9.8 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.