wu-ftpd FTP daemon allows any user and password combination.

IIS 2.0 and 3.0 allows remote attackers to read the source code for ASP pages by appending a . (dot) to the end of the URL.

Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.

Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys.

Denial of service in RAS/PPTP on NT systems.

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.

Buffer overflow in SGI IRIX mailx program.

Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood.

Local users can execute commands as other users, and read other users' files, through the filter command in the Elm elm-2.4 mail package using a symlink attack.

RIP v1 is susceptible to spoofing.

Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters.

A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.

Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm.

Sendmail decode alias can be used to overwrite sensitive files.

AIX piodmgrsu command allows local users to gain additional group privileges.

Denial of service in AIX telnet can freeze a system and prevent users from accessing the server.

AIX routed allows remote users to modify sensitive files.

getcwd() file descriptor leak in FTP.

wu-ftp allows files to be overwritten via the rnfr command.

Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports.

Predictable TCP sequence numbers allow spoofing.

Buffer overflow in wu-ftp from PASV command causes a core dump.

PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password.