Buffer overflow on large number of -g arguments, on malformed -s argument allow raw socket access.
vulners.com/securityvulns/securityvulns:doc:10392
vulners.com/securityvulns/securityvulns:doc:8965