Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.

swinstall and swmodify commands in SD-UX package in HP-UX systems allow local users to create or overwrite arbitrary files to gain root access.

SGI IRIX buffer overflow in xterm and Xaw allows root access.

Buffer overflow in SGI IRIX mailx program.

Vulnerabilities in UMN gopher and gopher+ versions 1.12 and 2.0x allow an intruder to read any files that can be accessed by the gopher daemon.

Race condition in Linux mailx command allows local users to read user files.

Buffer overflow in AIX lchangelv gives root access.

Buffer overflow in dtaction command gives root access.

Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root.

Windows NT 4.0 beta allows users to read and delete shares.

AIX infod allows local users to gain root access through an X display.

AIX passwd allows local users to gain root access.

Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood.

AIX bugfiler program allows local users to gain root access.

Local users can execute commands as other users, and read other users' files, through the filter command in the Elm elm-2.4 mail package using a symlink attack.

Some implementations of rlogin allow root access if given a -froot parameter.

Buffer overflow in AIX dtterm program for the CDE.

RIP v1 is susceptible to spoofing.

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0315. Reason: This candidate's original description had a typo that delayed it from being detected as a duplicate of CVE-1999-0315. Notes: All CVE users should reference CVE-1999-0315 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

Buffer overflow in ffbconfig in Solaris 2.5.1.