Buffer overflow on TELNET_IAC ESC-sequence parsing. Directory traversal by creating symlinks with mod_site_misc module.
vulners.com/securityvulns/securityvulns:doc:25122
vulners.com/securityvulns/securityvulns:doc:25123