HP Secure Web Console uses weak encryption.

Buffer overflow in FreeBSD angband allows local users to gain privileges.

A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later use...

Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument.

FreeBSD seyon allows local users to gain privileges by providing a malicious program in the -emulator argument.

FreeBSD seyon allows users to gain privileges via a modified PATH variable for finding the xterm and seyon-emu commands.

NTMail does not disable the VRFY command, even if the administrator has explicitly disabled it.

Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries.

Buffer overflow in Samba smbd program via a malformed message command.

Netscape Communicator 4.x with Javascript enabled does not warn a user of cookie settings, even if they have selected the option to "Only accept cookies originating from the same server as the page be...

Novell NetWare Transaction Tracking System (TTS) in Novell 4.11 and earlier allows remote attackers to cause a denial of service via a large number of requests.

Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.

The GetFile.cfm file in Allaire Forums allows remote attackers to read files through a parameter to GetFile.cfm.

Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file.

ROUTERmate has a default SNMP community name which allows remote attackers to modify its configuration.

Arkiea nlservd allows remote attackers to conduct a denial of service.

The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.

Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.

KDE klock allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file.

Denial of service in HP-UX SharedX recserv program.

Alibaba HTTP server allows remote attackers to read files via a .. (dot dot) attack.

Denial of service in Compaq Management Agents and the Compaq Survey Utility via a long string sent to port 2301.

The web components of Compaq Management Agents and the Compaq Survey Utility allow a remote attacker to read arbitrary files via a .. (dot dot) attack.

NetBSD allows ARP packets to overwrite static ARP entries.