login in Slackware 7.0 allows remote attackers to identify valid users on the system by reporting an encryption error when an account is locked or does not exist.

Buffer overflow in FreeBSD gdc program.

Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file.

Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure.

IBM WebSphere sets permissions that allow a local user to modify a deinstallation script or its data files stored in /usr/bin.

Denial of service in BIND named via naptr.

The default permissions for Endymion MailMan allow local users to read email or modify files.

Denial of service in BIND named via maxdname.

Denial of service in BIND named via consuming more than "fdmax" file descriptors.

Buffer overflow in free internet chess server (FICS) program, xboard.

Denial of service in MDaemon 2.7 via a large number of connection attempts.

Buffer overflow in SCO su program allows local users to gain root access via a long username.

Denial of service in MDaemon WorldClient and WebConfig services via a long URL.

Denial of service in Cisco routers running NAT via a PORT command from an FTP client to a Telnet port.

Symantec Mail-Gear 1.0 web interface server allows remote users to read arbitrary files via a .. (dot dot) attack.

Buffer overflow in CDE mailtool allows local users to gain root privileges via a long MIME Content-Type.

Buffer overflow in CDE dtmail and dtmailpr programs allows local users to gain privileges via a long -f option.

Windows NT Task Scheduler installed with Internet Explorer 5 allows a user to gain privileges by modifying the job after it has been scheduled.

Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command.

Denial of service in BIND by improperly closing TCP sessions via so_linger.