Buffer overflow in AIX ftpd in the libc library.

Arkiea nlservd allows remote attackers to conduct a denial of service.

The SSH authentication agent follows symlinks via a UNIX domain socket.

The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.

The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file.

Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.

FreeBSD allows local users to conduct a denial of service by creating a hard link from a device special file to a file on an NFS file system.

KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable.

KDE allows local users to execute arbitrary commands by setting the KDEDIR environmental variable to modify the search path that KDE uses to locate its executables.

KDE klock allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file.

Denial of service in HP-UX SharedX recserv program.

Buffer overflow in Xi Graphics Accelerated-X server allows local users to gain root access via a long display or query parameter.

IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have "No Access" permissions.

Alibaba HTTP server allows remote attackers to read files via a .. (dot dot) attack.

Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list.

Buffer overflows in Mars NetWare Emulation (NWE, mars_nwe) package via long directory names.

Buffer overflow in Solaris lpset program allows local users to gain root access.

Denial of service in Compaq Management Agents and the Compaq Survey Utility via a long string sent to port 2301.

The web components of Compaq Management Agents and the Compaq Survey Utility allow a remote attacker to read arbitrary files via a .. (dot dot) attack.

Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service via a large number of connection attempts to unresponsive systems.