nviboot boot script in the Debian nvi package allows local users to delete files via malformed entries in vi.recover.