A race condition in the BackWeb Polite Agent Protocol allows an attacker to spoof a BackWeb server.

DPEC Online Courseware allows an attacker to change another user's password without knowing the original password.

Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers.

Buffer overflow in Thomas Boutell's cgic library version up to 1.05.

The cryptographic challenge of SMB authentication in Windows 95 and Windows 98 can be reused, allowing an attacker to replay the response and impersonate a user.

Buffer overflow in Dosemu Slang library in Linux.

Buffer overflow in the bootp server in the Debian Linux netstd package.

DataLynx suGuard trusts the PATH environment variable to execute the ps command, allowing local users to execute commands as root.

A legacy credential caching mechanism used in Windows 95 and Windows 98 systems allows attackers to read plaintext network passwords.

Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on the server by using a nonstandard URL.

The LDAP bind function in Exchange 5.5 has a buffer overflow that allows a remote attacker to conduct a denial of service or execute commands.

The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content.

ACC Tigris allows public access without a login.

The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated privileges.

super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access.

SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a user's Finger File to point to the target file, then running finger on the user.

Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting.

InterScan VirusWall for Solaris doesn't scan files for viruses when a single HTTP request includes two GET commands.

Process table attack in Unix systems allows a remote attacker to perform a denial of service by filling a machine's process tables through multiple connections to network services.

Local users in Windows NT can obtain administrator privileges by changing the KnownDLLs list to reference malicious programs.