dfire.cgi script in Dragon-Fire IDS allows remote users to execute commands via shell metacharacters.

FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large number of files.

Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.

Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadvertently used by a different user.

Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed Route Pointer" vulnerability.

Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_enter.

sccw allows local users to read arbitrary files.

Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable.

Denial of service in Axent Raptor firewall via malformed zero-length IP options.

Buffer overflow in BFTelnet allows remote attackers to cause a denial of service via a long username.

genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767.

ypserv allows local administrators to modify password tables.

ypserv allows a local user to modify the GECOS and login shells of other users.

Buffer overflow in rpc.yppasswdd allows a local user to gain privileges via MD5 hash generation.

The Windows NT 4.0 print spooler allows a local user to execute arbitrary commands due to inappropriate permissions that allow the user to specify an alternate print provider.

Buffer overflows in Windows NT 4.0 print spooler allow remote attackers to gain privileges or cause a denial of service via a malformed spooler request.

iChat ROOMS Webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack.

Buffer overflow in RealNetworks RealServer administration utility allows remote attackers to execute arbitrary commands via a long username and password.

Firewall-1 does not properly restrict access to LDAP attributes.

Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other terminals.