The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages.

Denial of service in Windows NT Local Security Authority (LSA) through a malformed LSA request.

The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users.

The Guile plugin for the Gnumeric spreadsheet package allows attackers to execute arbitrary code.

IBM GINA, when used for OS/2 domain authentication of Windows NT users, allows local users to gain administrator privileges by changing the GroupMapping registry key.

A remote attacker can disable the virus warning mechanism in Microsoft Excel 97.

Buffer overflow in Windows NT 4.0 help file utility via a malformed help file.

Buffer overflow in Remote Access Service (RAS) client allows an attacker to execute commands or cause a denial of service via a malformed phonebook entry.

Vulnerability in Compaq Tru64 UNIX edauth command.

The dtlogin program in Compaq Tru64 UNIX allows local users to gain root privileges.

A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable.

The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root.

The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to other systems.

Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field.

The default FTP configuration in HP Visualize Conference allows conference users to send a file to other participants without authorization.

Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH environmental variables.

Buffer overflow in INN inews program.

Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-utils package and others.

OpenBSD, BSDI, and other Unix operating systems allow users to set chflags and fchflags on character and block devices.

Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavorites" vulnerability.