Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service.

Windows NT TCP/IP processes fragmented IP packets improperly, causing a denial of service.

Windows NT 4.0 allows remote attackers to cause a denial of service via a malformed SMB logon request in which the actual data size does not match the specified size.

Denial of service in Windows NT messenger service through a long username.

Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry.

Denial of service in Cisco IOS web server allows attackers to reboot the router using a long URL.

Denial of service of Ascend routers through port 150 (remote administration).

Attackers can do a denial of service of IRC by crashing the server.

Buffer overflow in FTP Serv-U 2.5 allows remote authenticated users to cause a denial of service (crash) via a long (1) CWD or (2) LS (list) command.

Livingston portmaster machines could be rebooted via a series of commands.

Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems.

Denial of service of inetd on Linux through SYN and RST packets.

Routed allows attackers to append data to files.

Denial of service by sending forged ICMP unreachable packets.

libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind.

Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server.

Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone.

Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters.

The SunView (SunTools) selection_svc facility allows remote users to read files.

rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.