A router or firewall forwards packets that claim to come from IANA reserved or private addresses, e.g. 10.x.x.x, 127.x.x.x, 217.x.x.x, etc.
CVE-1999-0528
A router or firewall forwards external packets that claim to come from inside the network that the router/firewall is in front of.
CVE-1999-0527
The permissions for system-critical data in an anonymous FTP account are inappropriate. For example, the root directory is writeable by world, a real password file is obtainable, or executable commands such as "ls" can be overwritten.
CVE-1999-0526
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server.
CVE-1999-0525
IP traceroute is allowed from arbitrary hosts.
CVE-1999-0524
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
CVE-1999-0523
ICMP echo (ping) is allowed from arbitrary hosts.
CVE-1999-0522
The permissions for a system-critical NIS+ table (e.g. passwd) are inappropriate.
CVE-1999-0521
An NIS domain name is easily guessable.
CVE-1999-0520
A system-critical NETBIOS/SMB share has inappropriate access control.