Linux printtool sets the permissions of printer configuration files to be world-readable, which allows local attackers to obtain printer share passwords.

Buffer overflow in ircII 4.4 IRC client allows remote attackers to execute commands via the DCC chat capability.

iPlanet Web Server 4.1 allows remote attackers to cause a denial of service via a large number of GET commands, which consumes memory and causes a kernel panic.

Firewall-1 3.0 and 4.0 leaks packets with private IP address information, which could allow remote attackers to determine the real IP address of the host that is making the connection.

Sojourn search engine allows remote attackers to read arbitrary files via a .. (dot dot) attack.

HP OpenView OmniBack 2.55 allows remote attackers to cause a denial of service via a large number of connections to port 5555.

ServerIron switches by Foundry Networks have predictable TCP/IP sequence numbers, which allows remote attackers to spoof or hijack sessions.

DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters.

The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by requesting a URL for a directory or file that does not exist.

Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command.

StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.

Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.

The mtr program only uses a seteuid call when attempting to drop privileges, which could allow local users to gain root privileges.

atsadc in the atsar package for Linux does not properly check the permissions of an output file, which allows local users to gain root privileges.

Buffer overflow in the man program in Linux allows local users to gain privileges via the MANPAGER environmental variable.

Batch files in the Oracle web listener ows-bin directory allow remote attackers to execute commands via a malformed URL that includes '?&'.

Microsoft Windows 9x operating systems allow an attacker to cause a denial of service via a pathname that includes file device names, aka the "DOS Device in Path Name" vulnerability.

IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup directory.

Buffer overflow in the InterAccess telnet server TelnetD allows remote attackers to execute commands via a long login name.

The Delegate application proxy has several buffer overflows which allow a remote attacker to execute commands.