Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function which looks up the SID, aka "Malformed Security Identifier Request."

Cisco Cache Engine allows an attacker to replace content in the cache.

The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics.

Cisco Cache Engine allows a remote attacker to gain access via a null username and password.

Buffer overflow in the POP server POProxy for the Norton Anti-Virus protection NAV2000 program via a large USER command.

classifieds.cgi allows remote attackers to read arbitrary files via shell metacharacters.

classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form.

Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.

An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.

daynad program in Intel InBusiness E-mail Station does not require authentication, which allows remote attackers to modify its configuration, delete files, or read mail.

The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.

Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.

War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections.

Buffer overflow in VDO Live Player allows remote attackers to execute commands on the VDO client via a malformed .vdo file.

The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL.

The Disney Go Express Search allows remote attackers to access and modify search information for users by connecting to an HTTP server on the user's system.

The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.

Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request.

Buffer overflow in Xshipwars xsw program.

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.