CVE-1999-0084 — CVSS 8.4 (high): Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0.
CVE-1999-0166 — CVSS 5.0 (medium): NFS allows users to use a "cd .." command to access other directories besides the exported file system.