It's possible to inject newlines into /etc/passwd
vulners.com/securityvulns/securityvulns:doc:25751
vulners.com/securityvulns/securityvulns:doc:25752