The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack.
HP-UX vgdisplay program gives root access to local users.
The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access.
IRIX startmidi program allows local users to modify arbitrary files via a symlink attack.
Vulnerability in ftpd/kftpd in HP-UX 10.x and 9.x allows local and possibly remote users to gain root privileges.
rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is...
ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot)...
Buffer overflow of rlogin program using TERM environmental variable.
Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT.
Buffer overflow in ffbconfig in Solaris 2.5.1.
Buffer overflow in NLS (Natural Language Service).
ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN.