The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.
CVE-1999-0785
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file.
CVE-1999-0784
Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP.
CVE-1999-0783
FreeBSD allows local users to conduct a denial of service by creating a hard link from a device special file to a file on an NFS file system.
CVE-1999-0782
KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable.
CVE-1999-0781
KDE allows local users to execute arbitrary commands by setting the KDEDIR environmental variable to modify the search path that KDE uses to locate its executables.
CVE-1999-0780
KDE klock allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file.
CVE-1999-0779
Denial of service in HP-UX SharedX recserv program.
CVE-1999-0778
Buffer overflow in Xi Graphics Accelerated-X server allows local users to gain root access via a long display or query parameter.
CVE-1999-0777
IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have "No Access" permissions.