Buffer overflow in ffbconfig in Solaris 2.5.1.

The printers program in IRIX has a buffer overflow that gives root access to local users.

Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters.

Finger redirection allows finger bombs.

finger allows recursive searches by using a long string of @ symbols.

A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.

Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm.

Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line.

Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names.

Remote access in AIX innd 1.5.1, using control messages.

Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.

Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide activities.

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

Sendmail decode alias can be used to overwrite sensitive files.

The debug command in Sendmail is enabled, allowing attackers to execute commands as root.

AIX piodmgrsu command allows local users to gain additional group privileges.

AIX nslookup command allows local users to obtain root access by not dropping privileges correctly.

Various vulnerabilities in the AIX portmir command allows local users to obtain root access.

Buffer overflow in AIX writesrv command allows local users to obtain root access.

Buffer overflow in AIX rcp command allows local users to obtain root access.