Buffer overflow in FreeBSD fts library routines allows local user to modify arbitrary files via the periodic program.

The undocumented semconfig system call in BSD freezes the state of semaphores, which allows local users to cause a denial of service of the semaphore system by using the semconfig call.

ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets.

Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults.

IP fragmentation denial of service in FreeBSD allows a remote attacker to cause a crash.

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

Buffer overflow of rlogin program using TERM environmental variable.

Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.