FTP PASV "Pizza Thief" denial of service and unauthorized data access. Attackers can steal data by connecting to a port that was intended for use by a client.

Race condition in the db_loader program in ClearCase gives local users root access by setting SUID bits.

IIS ASP caching problem releases sensitive information when two virtual servers share the same physical directory.

CGI PHP mlog script allows an attacker to read any file on the target server.

Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.

A malicious Palace server can force a client to execute arbitrary programs.

Linux PAM modules allow local users to gain root access using temporary files.

Vulnerability in HP-UX mediainit program.

HP ypbind allows attackers with root privileges to modify NIS data.

HP-UX gwind program allows users to modify arbitrary files.

The system configuration control (sysctl) facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not properly restrict source routed packets even when the...

Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.

All records in a WINS database can be deleted through SNMP for a denial of service.

Denial of service through Winpopup using large user names.

The WinGate telnet proxy allows remote attackers to cause a denial of service via a large number of connections to localhost.

The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL.

The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service (process termination) via invalid UDP frames to port 137 (NETBIOS Name Service), as demonstr...

Denial of service in IIS using long URLs.

In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.

Denial of service in Windows NT DNS servers by flooding port 53 with too many characters.

Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made.

Denial of service through Solaris 2.5.1 telnet by sending ^D characters.

Denial of service in Slmail v2.5 through the POP3 port.

Progressive Networks Real Video server (pnserver) can be crashed remotely.