Mailing-List: contact bugtraq-jp-help@securityfocus.com; run by ezmlm
Precedence: bulk
Date: Tue, 20 Nov 2001 23:28:47 +0900
From: KAGEYAMA Tetsuya <t.kageym@lac.co.jp>
To: bugtraq-jp@securityfocus.com
Subject: SecurityFocus.com Newsletter #119 2001-11-12->2001-11-16
Message-Id: <20011120232659.4694.T.KAGEYM@lac.co.jp>
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-2022-JP"
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

$B1F;3(B@$B%i%C%/$G$9!#(B

SecurityFocus.com Newsletter $BBh(B 119 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

- ---------------------------------------------------------------------------
SecurityFocus.com Newsletter $B$K4X$9$k(BFAQ:
http://www.securityfocus.com/popups/forums/securityfocusnews/intro.shtml
BugTraq-JP $B$K4X$9$k(B FAQ:
http://www.securityfocus.com/popups/forums/bugtraq-jp/faq.shtml
- ---------------------------------------------------------------------------
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B Security-Focus.com $B$N5v2D$r3t<02q<R%i%C%/$,F@$?>e$G9T$o(B
  $B$l$F$$$^$9!#(B
$B!&(BSecurityFocus.com Newsletter $B$NOBLu$r(B Netnews, Mailinglist,
  World Wide Web, $B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$N(B
  $BA4J80zMQ$r$*4j$$$7$^$9!#(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;(B
  $B$s$,=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurity-Focus.com $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+(B
  $B$J$k7A<0$N%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://www.securityfocus.com/archive/79
- ---------------------------------------------------------------------------
- ---------------------------------------------------------------------------
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02q<R%i%C%/$O@UG$$rIi$o$J$$$b$N$H$7$^(B
  $B$9!#(B
- ---------------------------------------------------------------------------
- ---------------------------------------------------------------------------
$BLu<T$+$i$N$*CN$i$;(B:
$B!&$b$7!"(Btypo $B$d8mLu$,8+$D$+$C$?>l9g!"(BBUGTRAQ-JP $B$X(B Errata $B$H$7$F=$@5(B
  $BHG$r$4Ej9FD:$/$+!"Lu<T$K$*CN$i$;$/$@$5$$!#(B
  $B8e<T$N>l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
- ---------------------------------------------------------------------------
- ---------------------------------------------------------------------------
$B86HG(B:
Date: Mon, 19 Nov 2001 10:11:38 -0700 (MST)
Message-ID: <Pine.GSO.4.30.0111191010540.29200-100000@mail.securityfocus.com>


SecurityFocus.com Newsletter #119
- ---------------------------------

Sponsored by VeriSign - The Internet Trust Company

I. FRONT AND CENTER($BF|K\8lLu$J$7(B)
     1. Advertising Information
     2. The Evolution of Intrusion Detection Systems
     3. Authentication as the Foundation for eBusiness
     4. Episode Twelve: The Serpent's Tooth
     5. Overview of LIDS, Part Three
II. BUGTRAQ SUMMARY
     1. Microsoft Windows Terminal Services False IP Address Vulnerability
     2. Cisco 12000 Outgoing ACL Fragmented Packet Vulnerability
     3. Cisco Fragment Keyword Outgoing Access Control Vulnerability
     4. Cisco 12000 Series Turbo ACL Fragment Bypass Vulnerability
     5. Cisco 12000 Series Internet Router Denial Of Service Vulnerability
     6. Cisco Access Control List Fragment Non-blocking Vulnerability
     7. Cisco Outbound Access Control List Bypass Vulnerability
     8. Cisco 12000 Series Internet Router ACL Failure To Drop Packets...
     9. RedHat Linux Korean Installation Insecure Default UMask...
     10. Acme THTTPD/Mini_HTTPD File Disclosure Vulnerability
     11. Cistron RADIUS Digest Calculation Buffer Overflow Vulnerability
     12. Microsoft Windows 2000 RunAs User Credentials Exposure...
     13. Microsoft Windows 2000 RunAs Service Named Pipe Hijacking...
     14. Microsoft Windows 2000 RunAs Service Denial of Services...
     15. Rational ClearCase DB Loader TERM Environment Variable...
     16. Horde IMP Session Hijacking Vulnerability
     17. Microsoft Internet Explorer Cookie Disclosure/Modification...
III. SECURITYFOCUS NEWS ARTICLES
     1. Lawmakers Briefed on Buggy Code
     2. ICANN Ponders Domain Woes
     3. Lawmakers To Quiz Industry On Cybersecurity
     4. Researchers Probe Dark and Murky Net
IV.SECURITYFOCUS TOP 6 TOOLS
     1. RC-Crypt v1.1
     2. gpgsig v1.0
     3. skin v0.1.1
     4. GNU Transport Layer Security Library v0.2.1
     5. SpamAssassin v1.4
     6. myNetWatchman Perl Agent v1.10.0.18 (Development)


I. FRONT AND CENTER($BF|K\8lLu$J$7(B)
- ---------------------------------

II. BUGTRAQ SUMMARY
- -------------------
1. Microsoft Windows Terminal Services False IP Address Vulnerability
BugTraq ID: 3541
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 15, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3541
$B$^$H$a(B:

Microsoft Windows $B$N0l5!G=$G$"$k(B Terminal Service $B$K$O%f!<%6$,56$N(B IP
$B%"%I%l%9$r5-O?2DG=$J7g4Y$,$"$k!#%/%i%$%"%s%H$+$i$N@\B3$,9T$o$l$k:]!"(B
$B%/%i%$%"%s%H$N%[%9%HL>$H%M%C%H%o!<%/%"%I%l%9$O!"%/%i%$%"%s%H$+$i%5!<%P(B
$B$X(B Remote Desktop Protocol $B$N0lIt$H$7$FEAC#$5$l$k!#%5!<%P$O%/%i%$%"%s%H(B
$B$N@\B3>uBV$K4X$9$k%m%0$r:N<h$9$k:]!"(BOS $B$KHw$o$k(B TCP/IP $B$N<BAu$r2p$7$?%/(B
$B%i%$%"%s%H$N<B:]$N%M%C%H%o!<%/%"%I%l%9$NF~<j$KBe$($F!"$3$3$GEAC#$5$l$?(B
$B>pJs$r5-O?$7$F$7$^$&$N$G$"$k!#(B

2. Cisco 12000 Outgoing ACL Fragmented Packet Vulnerability
BugTraq ID: 3538
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 14, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3538
$B$^$H$a(B:

Cisco IOS $B$O(B Cisco Systems $B$K$h$C$FDs6!$5$l!"MM!9$J5!4o72$GMxMQ$5$l$F(B
$B$$$k%k!<%?MQ$N%U%!!<%`%&%'%"$G$"$k!#(B

Engine 2 $B7ONs$N%+!<%I$rEk:\$7$?(B Cisco 12000 $B%7%j!<%:%k!<%?$KMxMQ$5$l$F(B
$B$$$k(B IOS $B$O!"BP30J}8~(B (outgoing) $B$X$N(B ACL $B$NE,MQ$r;n$_$k%H%i%U%#%C%/$N(B
$BM^;_$r<:GT$7$F$7$^$&$N$G$"$k!#(B
$BBP30J}8~$X$N(B ACL $B%j%9%H$O%-!<%o!<%I(B 'fragment' $B$r%5%]!<%H$7$F$$$J$$$?$a!"(B
$B$b$7$3$N%-!<%o!<%I$,5-=R$5$l$F$$$?>l9g$K$O!"L5;k$5$l$F$7$^$&$N$G$"$k!#(B
$B$^$?!"$3$N%-!<%o!<%I$,(B ACL $BFb$KB8:_$9$k>l9g!"%U%i%0%a%s%H2=$5$l$?%Q%1%C(B
$B%H$O4XO"IU$1$i$l$?%k!<%k$H$N:FI>2ABP>]$H$O$J$i$:!"@x:_E*$K%;%-%e%j%F%#(B
$B@_Dj$r1*2s$7$F$7$^$&2DG=@-$,$"$k!#(B

3. Cisco Fragment Keyword Outgoing Access Control Vulnerability
BugTraq ID: 3539
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 14, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3539
$B$^$H$a(B:

IOS $B$O(B Cisco Internet Operating System $B$N;v$G$"$j!"MM!9$J(B Cisco $B@=%M%C(B
$B%H%o!<%/5!4o72$KF1:-$5$l!"G[I[$5$l$F$$$k!#(B

12000 $B%7%j!<%:$N(B Cisco $B@=%k!<%?$KMxMQ$5$l$F$$$k(B IOS $B$K$O!"%j%b!<%H%f!<(B
$B%6$,IT@5$J%H%i%U%#%C%/$rJ]8n$5$l$?%M%C%H%o!<%/$KBP$7!"Aw?.2DG=$J>uBV$K(B
$B4Y$i$;$k;v$r2DG=$K$9$k@x:_E*$JLdBj$,B8:_$7$F$$$k!#(B
$B$3$NAuCV8~$1$N(B IOS $B$K$O!"BP30J}8~(B (outgoing) $B$N%H%i%U%#%C%/Fb$N%U%i%0%a(B
$B%s%H2=$5$l$?%Q%1%C%H$r%U%#%k%?2DG=$K$9$k5!G=$N$_$,4{$KIU$12C$($i$l$F$$(B
$B$k!#(B
$B$3$N5!G=$,IU$12C$($i$l$F$$$J$$%P!<%8%g%s$NBP30J}8~$N(B ACL $BFb$K!"%-!<%o!<(B
$B%I(B 'fragment' $B$r4^$`%k!<%k$,4^$^$l$F$$$k>l9g!"967b<T$O3:Ev$9$k(B ACL $B$KBP(B
$B$9$k967b$,2DG=$K$J$j!"J]8n$5$l$?%M%C%H%o!<%/$X%U%i%0%a%s%H2=$5$l$?%Q%1%C(B
$B%H$rAw?.2DG=$K$J$k;v$,?d;!$5$l$k!#(B

$B$3$NLdBj$O967b<T$J$$$7$=$NB>$N%f!<%6$,!"%k!<%?$N%;%-%e%j%F%#@_Dj$r2sHr(B
$B2DG=$K$J$k7k2L$r>7$/2DG=@-$,$"$k!#(B

4. Cisco 12000 Series Turbo ACL Fragment Bypass Vulnerability
BugTraq ID: 3540
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 14, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3540
$B$^$H$a(B:

Cisco IOS $B$O(B Cisco Systems $B@=$NMM!9$J5!4o$K4^$^$l$F$$$k%k!<%?MQ%U%!!<%`(B
$B%&%'%"$G$"$k!#(B

$B%3%s%Q%$%k:Q$N(B (turbo) ACL $BFb$N%-!<%o!<%I(B 'fragment' $B$O!"%k!<%?$=$NJ*$K(B
$BBP$7$FAw$i$l$?%Q%1%C%H$rI>2A$9$k:]$K$OL5;k$5$l$F$7$^$&$N$G$"$k!#(B

Cisco $B$O$3$NLdBj$r(B Vulnerability CSCdu57417 $B$H$7$F3d$jEv$F$F$$$k!#(B

5. Cisco 12000 Series Internet Router Denial Of Service Vulnerability
BugTraq ID: 3534
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 14, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3534
$B$^$H$a(B:

Cisco 12000 Series Internet Router $B$O(B DoS $B>uBV$K4Y$k5?$$$,$"$k!#(B
$B1F6A$r<u$1$k(B IOS $B$rEk:\$7$?%k!<%?$,!"BgNL$N(B ICMP Unreachable $B%Q%1%C%H(B
$B$rAw?.$9$k>uBV$G$O!"(BCPU $B;q8;$O>CHq$7?T$/$5$l$F$7$^$$!"$5$i$K5!G=Dd;_$K(B
$B4Y$k>u67$,A[Dj$5$l$k!#(B
$B$3$NLdBj$rMxMQ$9$k967b$,@.8y$7$?>l9g!"%k!<%?$N%Q%1%C%HEAAw$NDd;_$,?d;!(B
$B$5$l$k!#(B

$B$3$N>u67$X$O%k!<%?$,!V%V%i%C%/%[!<%k!W(B($BLuCm(B: $B3:Ev%M%C%H%o!<%/Fb$X%Q%1%C(B
$B%H$,F~$C$?$^$^$G=P$F$3$J$/$J$k>uBV(B) $BBP:v$N%U%#%k%?%j%s%0$r9T$C$F$$$k:](B
$B$K4Y$k;v$,A[Dj$5$l$k!#(B

$B$J$*!"$3$NLdBj$O(B Cisco 12000 Series Internet Router $B$KBP$7$F$N$_1F6A$r(B
$B5Z$\$7!"B>$N%k!<%?@=IJ$X1F6A$r5Z$\$9$H9M$($i$l$k$Y$-$G$O$J$$E@$K$D$$$F(B
$BCm5-$5$l$k$Y$-$G$"$k!#(B

Cisco $B$O$3$NLdBj$r(B Vulnerability CSCdr46528$B!"(BVulnerability CSCds36541
Vulnerability CSCdt66560 $B$H$7$F3d$jEv$F$F$$$k!#(B

6. Cisco Access Control List Fragment Non-blocking Vulnerability
BugTraq ID: 3535
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 14, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3535
$B$^$H$a(B:

Cisco IOS $B$O(B Cisco Systems $B@=$NMM!9$J5!4o$K4^$^$l$F$$$k%k!<%?MQ%U%!!<%`(B
$B%&%'%"$G$"$k!#(B

Engine 2 $B7ONs$N%+!<%I$rEk:\$7$?(B Cisco 12000 $B%7%j!<%:%k!<%?$KMxMQ$5$l$F(B
$B$$$k(B IOS $B$O!"%"%/%;%9%3%s%H%m!<%k%j%9%HFb$G@_Dj$5$l$F$$$k%U%i%0%a%s%H2=(B
$B$5$l$?%Q%1%C%H$X$N%U%#%k%?%j%s%0$rE,@Z$K9T$o$J$$!#(B
$B%U%i%0%a%s%H2=$5$l$?:G=i$NItJ,0J30$N%Q%1%C%H$,!"J]8nBP>]$N%[%9%H$XAw$i$l(B
$B$?:]!"$3$l$i$N%Q%1%C%H$O(B ACL $B$r2sHr$7$F$7$^$&$N$G$"$k!#(B

$B$3$NLdBj$K$h$j!"%f!<%6$OJ]8n$5$l$?%[%9%H72$H$NDL?.!"%;%-%e%j%F%#@_Dj$N2s(B
$BHr$,2DG=$G$"$k!#(B

7. Cisco Outbound Access Control List Bypass Vulnerability
BugTraq ID: 3537
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 14, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3537
$B$^$H$a(B:

Cisco IOS $B$O(B Cisco Systems $B@=$NMM!9$J5!4o$K4^$^$l$F$$$k%k!<%?MQ%U%!!<%`(B
$B%&%'%"$G$"$k!#(B

Engine 2 $B7ONs$N%+!<%I$rEk:\$7$?(B Cisco 12000 $B%7%j!<%:%k!<%?$KMxMQ$5$l$F(B
$B$$$k(B IOS $B$O!"BP30J}8~(B (outgoing) $B$X$N(B ACL $B$NE,MQ$r;n$_$k%H%i%U%#%C%/$N(B
$BM^;_$r<:GT$7$F$7$^$&$N$G$"$k!#$3$N>u67$OFbItJ}8~(B (input) $B$XE,MQ$5$l$k(B
ACL $B$,!"A4$F$N%$%s%?!<%U%'!<%9$G$O$J$/!"$"$k$$$/$D$+$N%$%s%?%U%'!<%9$K(B
$B@_Dj$5$l$F$$$k:]$K@8$8$k$H9M$($i$l$F$$$k!#(B
$B$3$NLdBj$O860x$H$J$k%Q%1%C%H$,!"%$%s%0%l%9%]!<%H>e$NFbItB&$KBP$7$F@_Dj(B
$B$5$l$k(B (inbound) ACL $B$K$h$j!"M^;_$5$l$J$$:]$K@8$8$k!#(B

$B$J$*!"FbIt$X$N%Q%1%C%H$XE,MQ$5$l$k(B ACL $B$O$3$N>u67$K$*$$$F$b!"$J$*4|BT$5(B
$B$l$k5sF0$r<($9$H9M$($i$l$k!#(B

8. Cisco 12000 Series Internet Router ACL Failure To Drop Packets...
BugTraq ID: 3536
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 14, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3536
$B$^$H$a(B:

Engine 2 $B7ONs$N%i%$%s%+!<%I$rEk:\$7$?(B Cisco 12000 $B%7%j!<%:%k!<%?$KMxMQ(B
$B$5$l$F$$$k(B IOS $B$O!"%Q%1%C%H$N%I%m%C%W$,ITG=$K$J$k;v$,A[Dj$5$l$k$H8@$&!"(B
$BDL>o$"$jF@$J$$LdBj$rJz$($k5?$$$,$"$k!#(B

$B$3$NLdBj$OBP30J}8~(B (outgoing) $B$X$N(B Access Control List (ACL) $B$,@5$K(B 448
$B9T@_Dj$5$l!":G=*9T$N5-=RFbMF$,L@3N$K(B "deny ip any any" $B$N%k!<%k$G@_Dj$5(B
$B$l$F$$$J$$:]$K@8$8$k!#(B

$B$3$NLdBj$N7k2L!"$"$kDxEY$N%Q%1%C%H$O%I%m%C%W$5$l$:!"BP>]%M%C%H%o!<%/$X(B
$B8BDj$5$l$F$O$$$k$b$N$N!"%H%i%U%#%C%/$NEAAw$,@x:_E*$K2DG=$K$J$k!#(B

Cisco $B$O$3$NLdBj$r(B Vulnerability CSCdu03323 $B$K3d$jEv$F$F$$$k!#(B

9. RedHat Linux Korean Installation Insecure Default UMask Vulnerability
BugTraq ID: 3527
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Nov 13, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3527
$B$^$H$a(B:

RedHat Linux $B$O(B UNIX $B$N%/%m!<%s(B OS $B$G$"$j!"(BRedHat $B$K$h$C$FDs6!$5$l$F$$(B
$B$k!#$3$N%=%U%H%&%'%"$O%U%j!<$G$"$j!"$^$?!"%*!<%W%s%=!<%9$G$"$k!#(B

$B$3$N(B OS $B$K$O!"$"$k>u672<$K$*$$$F!"%m!<%+%k%f!<%6$,L$G'>Z$N>uBV$G8"8B$r(B
$BC%<h2DG=$K$J$kLdBj$,H/8+$5$l$F$$$k!#LdBj$O$$$/$D$+$N%$%s%9%H!<%k%W%m%0(B
$B%i%`$K$h$k(B umask $B$N@_Dj$KM3Mh$9$k!#$3$N(B OS $B$N4Z9q8lHG$N%$%s%9%H!<%k%W%m(B
$B%0%i%`$O%G%U%)%k%H>uBV$N(B umask $B$r(B 000 $B$K@_Dj$9$k$?$a!"%7%9%F%`$K$h$C$F(B
$B:n@.$5$l$?A4$F$N%U%!%$%k$N%U%!%$%k%b!<%I$O!"%G%U%)%k%H$G(B 777 $B$K@_Dj$5$l(B
$B$k!#(B

$B$3$NLdBj$K$h$j!"%m!<%+%k%f!<%6$O$h$j9b$$8"8B$NC%<h!"@x:_E*$K$O4IM}<T8"(B
$B8B$NC%<h$,2DG=$H$J$k!#(B

10. Acme THTTPD/Mini_HTTPD File Disclosure Vulnerability
BugTraq ID: 3528
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 13, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3528
$B$^$H$a(B:

Acme THTTPD $B$*$h$S(B Mini_HTTPD $B$O$$$:$l$b7ZNL$J(B Web $B%5!<%P$G$"$j!"(BFreeBSD$B!"(B
SunOS$B!"(BSolaris$B!"(BLinux $B$d$=$NB>$N(B UNIX $B7ONs$N(B OS $B>e$GF0:n$9$k!#(B
$B$3$l$i%=%U%H%&%'%"$O%U%j!<$GF~<j2DG=$G!"(BAcme Laboratories $B$K$h$C$FJ]<i(B
$B$5$l$F$$$k!#(B

$B$3$l$i%W%m%0%i%`$O!"$I$A$i$KBP$7$F$b!"%j%b!<%H$N967b<T$,967bBP>]$N%3%s(B
$B%T%e!<%?>e$KB8:_$7$F$$$kG$0U$N%U%!%$%k$rI=<($5$;$kF/$-$r;}$D!"FCJL$KAH(B
$B$_N)$F$i$l$?(B HTTP $B%j%/%(%9%H$,2DG=$H$J$kLdBj$rJz$($k5?$$$,$"$k!#(B
$B$3$NLdBj$O967b<T$,4{B8$N%U%!%$%k$X$N%j%/%(%9%H$X(B '/' $B$rIU$12C$($?:]$K(B
$BH/@8$9$k$H9M$($i$l!"$3$NJ}K!$rMQ$$$k;v$GJ]8n$5$l$?%G%#%l%/%H%jFb$N%U%!(B
$B%$%k$d!"(BHTTP $B%l%9%]%s%9(B 403 $B$rJV$9MM$K@_Dj$5$l$?(B ($B$7$+$7<B:]$K$O$$$+$J(B
$B$k%f!<%6$G$"$C$F$bFI$_=P$72DG=$J%U%!%$%k%b!<%I$,@_Dj$5$l$F$$$k(B) $B%U%!%$(B
$B%k$bFI$_<h$j2DG=$G$"$k$H?d;!$5$l$F$$$k!#(B
$B$3$NLdBj$K$h$j!"(B.htpasswd $B%U%!%$%k$NF~<j$rM-Mx$K9T$($kMM$K$J$k2DG=@-$,(B
$B$"$k!#(B

$B$J$*!"(BTHTTPD Secure Webserver $B$O(B 'chroot' $B%*%W%7%g%s$,M-8z$K$J$C$F$$$k(B
$B:]$K$N$_$3$NLdBj$N1F6A$r<u$1$k$H?d;!$5$l$kE@$OCm5-$5$l$M$P$J$i$J$$!#(B
$B$^$?!"(BMini_HTTPD $B$O@_Dj$NG!2?$K$h$i$:!"$3$NLdBj$N1F6A$r<u$1$k!#(B

$B%Y%s%@$O4{$KLdBj$G$"$k;v$r3NG'$7%Q%C%A$rDs6!$7$F$$$k$,!"$3$NLdBj$O$$$/(B
$B$D$+$N4D6-$K$*$$$F$O!"1F6A$r5Z$\$5$J$$;v$,?d;!$5$l$k$HJs9p$5$l$F$$$k!#(B
$BNc$($P!"(BFreeBSD $B>e!"$*$h$S$$$/$D$+$N(B Linux $B%G%#%9%H%j%S%e!<%7%g%s>e$G(B
Acme thttpd 2.20b $B$r<B9T$7$F$$$k%7%9%F%`$,$=$l$G$"$k!#(B

11. Cistron RADIUS Digest Calculation Buffer Overflow Vulnerability
BugTraq ID: 3530
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 13, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3530
$B$^$H$a(B:

Cistron $B$OCxL>$J(B RADIUS $B%5!<%P$N<BAu$G$"$k!#$3$N%=%U%H%&%'%"$K$O%a%C%;!<(B
$B%8%@%$%8%'%9%H$N1i;;$KMxMQ$5$l$k4X?t$K!"%P%C%U%!%*!<%P!<%U%m!<$rH/@8$9$k(B
$BLdBj$,$"$k!#(B

$B$3$NLdBj$OG$0U$N%3!<%I$r<B9T$9$k$?$a$KMxMQ2DG=$G$"$k$H$O9M$($i$l$F$O$$(B
$B$J$$$,!"%;%0%a%s%F!<%7%g%s%U%)!<%k%H$,@8$8$k2DG=@-$,$"$k!#$3$NLdBj$O%5!<(B
$B%P$r%/%i%C%7%e$5$;!"%j%b!<%H$+$i$N(B DoS $B967b$r>7$/!#(B

Cistron $B$N%=!<%9%3!<%I$KM3Mh$9$kB>$N%5!<%P$bF1MM$NLdBj$rJz$($F$$$k$H?d;!(B
$B2DG=$G$"$k!#(B

12. Microsoft Windows 2000 RunAs User Credentials Exposure Vulnerability
BugTraq ID: 3184
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Nov 12, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3184
$B$^$H$a(B:

Windows 2000 $B$GDs6!$5$l$F$$$k!VJL$N%f!<%6!<$H$7$F<B9T!W%5!<%S%9$O!"%"%W(B
$B%j%1!<%7%g%s$"$k$$$O%5!<%S%9$r0[$J$k%f!<%68"8B$G<B9T2DG=$K$9$k%5!<%S%9(B
$B$G$"$k!#(B
$B$3$N%5!<%S%9$N5!G=$O%3%s%F%-%9%H%a%K%e!<$+$i%7%U%H%-!<$r2!$7$J$,$i!"%^(B
$B%&%9$N1&%\%?%s$G%"%$%3%s$r%/%j%C%/$7!"<!$$$G!VJL$N%f!<%6!<$H$7$F<B9T!W(B
$B$rA*Br$9$k;v$G8F$S=P$72DG=$G$"$k!#(B

$B!VJL$N%f!<%6!<$H$7$F<B9T!W5!G=$rMxMQ$7$F%3%^%s%I$,<B9T$5$l$k:]!"%f!<%6(B
$B$O%f!<%6L>$H%Q%9%o!<%I$r=hM}$r4J7i$5$;$k$?$a$KF~NO$7$J$1$l$P$J$i$J$$!#(B
$B$7$+$7!"!VJL$N%f!<%6!<$H$7$F<B9T!W%f!<%F%#%j%F%#$N<B9T$,=*N;8e$b!"%3%^(B
$B%s%I<B9T$N$?$a$KF~NO$5$l$?%f!<%6$NG'>Z>pJs$O%a%b%jFb$K(B ($BJ?J8$G(B) $B3JG<$5(B
$B$l$?$^$^$J$N$G$"$k!#(B

$B$3$l$i>pJs$O!"!VJL$N%f!<%6!<$H$7$F<B9T!W$N%$%s%9%?%s%9$,4{$K;HMQ$7$F$$(B
$B$?%Z!<%8$K4XO"IU$1$i$l$?!"B>$N%W%m%;%9$K$h$C$F<hF@$5$l$k;v$,?dB,$5$l$k!#(B

Microsoft $B$O$3$N5sF0$r:F8!>Z$9$k;v$OIT2DG=$G$"$C$?$H8xI=$7$?!#$7$+$7%W(B
$B%m%;%9$,=*N;$9$kA0$K!"3:Ev%"%W%j%1!<%7%g%s$,MxMQ$7$?J*M}%a%b%j$r%<%m$G(B
$B>C5n$7$F$$$J$+$C$?>l9g!"%a%b%j%Z!<%8$NFbMF$O<jIU$+$:$N$^$^$G8F$S=P$5$l(B
$B$k$O$:$G$"$k!#(B

13. Microsoft Windows 2000 RunAs Service Named Pipe Hijacking...
BugTraq ID: 3185
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Nov 12, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3185
$B$^$H$a(B:

Windows 2000 $B$GDs6!$5$l$F$$$k!VJL$N%f!<%6!<$H$7$F<B9T!W%5!<%S%9$O!"%"%W(B
$B%j%1!<%7%g%s$"$k$$$O%5!<%S%9$r0[$J$k%f!<%68"8B$G<B9T2DG=$K$9$k%5!<%S%9(B
$B$G$"$k!#(B
$B$3$N5!G=$O%3%s%F%-%9%H%a%K%e!<$+$i%7%U%H%-!<$r2!$7$J$,$i!"%^%&%9$N1&%\(B
$B%?%s$G%"%$%3%s$r%/%j%C%/$7!"<!$$$G!VJL$N%f!<%6!<$H$7$F<B9T!W$rA*Br$9$k(B
$B;v$G8F$S=P$72DG=$G$"$k!#(B

$B$3$N5!G=$,8F$S=P$5$l$k:]!"%/%i%$%"%s%H$KBP$7$FL>A0IU$-%Q%$%W$r(B ($BJ?J8$G(B)
$B%f!<%6$NG'>Z>pJs$N$d$j<h$j$r9T$&$?$a$K:n@.$9$k!#(B

$B!VJL$N%f!<%6!<$H$7$F<B9T!W%5!<%S%9$,Dd;_$5$l$?>l9g!"L>A0IU$-%Q%$%W$rB>(B
$B$N%f!<%6$,<B9T$r;n$_$k:]$K!"967b<T$O%f!<%6$NG'>Z>pJs$,$d$j<h$j$5$l$kMM(B
$B$JF10l$NL>>N$NL>A0IU$-%Q%$%W$r:n@.2DG=$J$N$G$"$k!#(B

14. Microsoft Windows 2000 RunAs Service Denial of Services Vulnerability
BugTraq ID: 3291
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 12, 2001
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/3291
$B$^$H$a(B:

Windows 2000 $B$GDs6!$5$l$F$$$k!VJL$N%f!<%6!<$H$7$F<B9T!W%5!<%S%9$O!"%"(B
$B%W%j%1!<%7%g%s$"$k$$$O%5!<%S%9$r0[$J$k%f!<%68"8B$G<B9T2DG=$K$9$k%5!<%S(B
$B%9$G$"$k!#(B
$B$3$N5!G=$O%3%s%F%-%9%H%a%K%e!<$+$i%7%U%H%-!<$r2!$7$J$,$i!"%^%&%9$N1&%\(B
$B%?%s$G%"%$%3%s$r%/%j%C%/$7!"<!$$$G!VJL$N%f!<%6!<$H$7$F<B9T!W$rA*Br$9$k(B
$B;v$G8F$S=P$72DG=$G$"$k!#(B

$B$3$N%5!<%S%9$,8F$S=P$5$l$k:]!"%5!<%S%9$OG'>ZMQ$N>pJs$N$d$j<h$j$r9T$&$?(B
$B$a$NL>A0IU$-%Q%$%W$N%;%C%7%g%s$r!";XDj$5$l$?%5!<%P$H$N4V$G:n@.$9$k!#(B
$B$3$N%5!<%S%9$O0lDj$N4|4V!"$3$N%;%C%7%g%s$NM#0l$N%$%s%9%?%s%9$N$_$r5v2D(B
$B$7$F$$$k!#$3$N$?$a!"$$$+$J$k%5!<%S%9$r8F$S=P$9;v$J$/!"%/%i%$%"%s%H$,%5!<(B
$B%P>e$GL>A0IU$-%Q%$%W$r@8@.$7$?>l9g!"B>$N%/%i%$%"%s%H$O$3$N%5!<%S%9$X$O(B
$B@\B3ITG=$K$J$C$F$7$^$&$N$G$"$k!#(B

15. Rational ClearCase DB Loader TERM Environment Variable Buffer...
BugTraq ID: 3523
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Nov 09, 2001
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/3523
$B$^$H$a(B:

ClearCase$B$O>&6HMxMQ2DG=$J!"%=%U%H%&%'%"$N3+H/9)Dx$K$*$1$kJQ99E@$N4IM}$r(B
$B9T$&%Q%C%1!<%8$G$"$k!#$3$N%=%U%H%&%'%"$O(B Rational $B$K$h$j!"J]<i!"G[I[$,(B
$B9T$o$l$F$$$k!#(B

$B$3$N%Q%C%1!<%8$K$O%m!<%+%k%f!<%6$,$5$i$K9b$$8"8B$rC%<h$G$-$F$7$^$&LdBj(B
$B$,B8:_$9$k!#$3$NLdBj$O!"(Bdb_loader $B$K$h$k4D6-JQ?t$N<h$j07$$$r9T$&ItJ,$K(B
$BM3Mh$7$F$$$k!#(Bdb_loader $B$O%f!<%6$N(B TERM $B4D6-JQ?t$+$i$NF~NO$r@5$7$/<h$j(B
$B07$($J$$$?$a!"(BTERM $BJQ?t$K(B 550 $B%P%$%H$N%G!<%?$,;XDj$5$l$?:]!"%m!<%+%k%f!<(B
$B%6$OG$0U$N%W%m%0%i%`$N<B9T$,2DG=$G$"$k!#(B

db_loader $B%W%m%0%i%`$O(B setuid root $B$H$7$F%$%s%9%H!<%k$5$l$F$$$k!#$3$N$?(B
$B$a!"%m!<%+%k%f!<%6$K$h$kLdBj$rJz$($k%7%9%F%`>e$G$N4IM}<T8"8B$NC%<h$,2D(B
$BG=$H$J$k7k2L$r>7$$$F$7$^$&!#(B

16. Horde IMP Session Hijacking Vulnerability
BugTraq ID: 3525
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 09, 2001
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/3525
$B$^$H$a(B:

IMP $B$O!"(BHorde $B%W%m%8%'%/%H$N0l0w$K$h$j3+H/$5$l$?!"6/NO$J(B Web $B%Y!<%9$N%a(B
$B!<%k%$%s%?!<%U%'%$%9$G$"$j%/%i%$%"%s%H$G$"$k!#(B

$B$3$N%=%U%H%&%'%"$K$O%(%s%3!<%I$5$l$?(B HTML $B%?%0$,!"(Bstatus.php3 $B$XM?$($i(B
$B$l$?%j%/%(%9%HFb$+$i=|5n$5$l$J$$LdBj$,B8:_$9$k!#$3$N$?$a!"%j%b!<%H$N96(B
$B7b<T$O!"(BHorde IMP $B$r2TF0$7$F$k%5%$%H$N<B9T8"8B$G!"2?$bCN$i$J$$%f!<%6$,(B
$B%/%j%C%/$7$?:]$K%V%i%&%6>e$GG$0U$N%W%m%0%i%`$,<B9T$5$l$kMM$K;E8~$1$i$l(B
$B$k%j%s%/$r:n@.2DG=$G$"$k!#(B

$B7k2L!"$3$NLdBj$O%/%C%-!<$rMxMQ$7$?@55,%f!<%6$G$"$k$3$H$rG'>Z$9$k$?$a$N(B
$B>ZL@=q$rEp$_=P$9$?$a$KMxMQ2DG=$G$"$j!"%f!<%6$N(B Web $B%a!<%k$N%"%+%&%s%H$K(B
$BIT@5%"%/%;%92DG=$G$"$k$3$H$,<($5$l$?!#(B

17. Microsoft Internet Explorer Cookie Disclosure/Modification...
BugTraq ID: 3513
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 09, 2001
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/3513
$B$^$H$a(B:

Internet Explorer $B$K$O!"967b<T$KG$0U$N(B Web $B%5%$%H$N%/%C%-!<>pJs$rI=<(!"(B
$B$"$k$$$O2~$6$s$9$k(B URL $B$r@8@.$5$l$k2DG=@-$,$"$k<eE@$,B8:_$9$k!#(B

URL $B$,(B Web $B%5%$%H$r;2>H$9$k(B about: protocol $B$+$i9=@.$5$l$F$$$k>l9g!"(BURL
$B$KKd$a9~$^$l$?(B JavaScript $B$rMxMQ$7!"(Bdocument.cookie $B7PM3$G(B Web $B%5%$%H$K(B
$B4XO"$7$?$$$+$J$k%/%C%-!<$K$b%"%/%;%92DG=$G$"$k!#(B
$B$3$N:]!"(BJavaScript $B$O(B about:protocol $B$rH<$&(B URL $B$G$N%/%m%9%5%$%H%9%/%j(B
$B%W%F%#%s%0$NLdBj$rH/O*$9$k>r7o$,@0$($i$l$k$?$a$K<B9T$5$l$k!#(B

III. SECURITYFOCUS NEWS AND COMMENTARY
- ------------------------------------------
1. Lawmakers Briefed on Buggy Code
$BCx<T(B: Will Rodger

$B5;=Q;:6H3&$N;XF3<TC#$O!"=i?4<T$N>.0Q0w2q$K%5%$%P!<%;%-%e%j%F%#(B FOIA $B$H(B
$BFH@j6X;_$NHO0O305,Dj$r;Y;}$9$k$h$&$H;X<($7$?!#(B

http://www.securityfocus.com/news/285

2. ICANN Ponders Domain Woes
$BCx<T(B: Kevin Poulsen

$B@lLg2H$O!"%$%s%?!<%M%C%H$N%I%a%$%s%M!<%`%7%9%F%`$O%;%-%e%"$G$J$$$3$H$r(B
$BG'$a$?$,!"(BICANN $B$O2?$,$G$-$k$@$m$&$+(B?

http://www.securityfocus.com/news/284

3. Lawmakers To Quiz Industry On Cybersecurity
$BCx<T(B: David McGuire, Newsbytes

$B5D2q$N0Q0wCD$O!":#=5!"%O%$%F%/;:6H$N;XF3<T$K!"L14VItLg$,%=%U%H%&%'%"$H(B
$B%M%C%H%o!<%/$r%;%-%e%"$K$9$k$?$a$N=tCm0U$K$D$$$F>Z8@$9$k$h$&$K$H8F$S$+(B
$B$1$?!#(B

http://www.securityfocus.com/news/283

4. Researchers Probe Dark and Murky Net
$BCx<T(B: Kevin Poulsen

$B%V%m!<%I%P%s%I$N8\5R$HJF73;v%7%9%F%`$,!"%$%s%?!<%M%C%H$N0lIt$+$i2?2/$b(B
$B$N%[%9%H$,40A4$KE~C#ITG=$K$5$l$F$7$^$&!V0E9u%"%I%l%96u4V!W$H8&5f<T$K$h(B
$B$jYhYi$5$l$k!"%M%C%H%o!<%/>e$N8=>]$N:G$b0lHLE*$J5>@7<T$G$"$k!#(B

http://www.securityfocus.com/news/282


IV.SECURITYFOCUS TOP 6 TOOLS
- -----------------------------
1. RC-Crypt v1.1
$B:n<T(B: Richard Jones
$B4XO"$9$k(B URL:
http://www.ricksoft.co.uk/downloads/rccrypt/rccrypt.htm
$B%W%i%C%H%U%)!<%`(B: Linux
$B$^$H$a(B:

RC-Crypt $B$O!"(BRC5 $B%"%k%4%j%:%`$r;HMQ$7$F%G!<%?$N0E9f2=$dI|9f2=$K;HMQ2DG=(B
$B$G$9!#(B128 $B%S%C%H%G!<%?%V%m%C%/$GF0:n$7$^$9!#I,MW$J>l9g$O%i%s%@%`$JJ8;z(B
$B$G%Q%G%#%s%0$7$^$9!#%o!<%I%5%$%:$O(B 64 $B%S%C%H$G$9!#B??t$NF~=PNO%*%W%7%g(B
$B%s$,$"$j!"%9%/%j%W%H$KKd$a9~$`$?$a$K%=%U%H%&%'%"$KE,$7$?7A$K$G$-B?MM$J(B
$BL\E*$K;HMQ$G$-$^$9!#(B

2. gpgsig v1.0
$B:n<T(B: damien
$B4XO"$9$k(B URL:
http://aplit.org/damien/gpgsig/
$B%W%i%C%H%U%)!<%`(B: N/A
$B$^$H$a(B:

gpgsig $B$O%5!<%P$+$i80$N8!:w!"80$N=pL>!"80$r%5!<%P$XAw?.!"=jM-<T$K=pL>$7(B
$B$?80$r%a!<%kAw?.!"80$N%"%C%W%G!<%H$,2DG=$G$9!#(B

3. skin v0.1.1
$B:n<T(B: Julien Bordet zejames@yahoo.fr
$B4XO"$9$k(B URL:
http://skin.sourceforge.net/
$B%W%i%C%H%U%)!<%`(B: Linux$B!"(BOpenBSD
$B$^$H$a(B:

Skin $B$O(B TCP/UDP $B$N%]!<%H%9%-%c%J$G!"%9%-%c%sBP>]$N%]!<%H$K%P%$%s%I$5$l(B
$B$F<B9T$7$F$$$k%5!<%S%9$N?dB,$r9T$$$^$9!#3F%;%-%e%j%F%#8!::$N$?$a$N8DJL(B
$B%b%8%e!<%k$H$7$F!"%W%i%0%$%s$rMxMQ$7$?%"!<%-%F%/%A%c$r:NMQ$7$F$$$^$9!#(B
$B$^$?!"FCJL$J%M%C%H%o!<%/%i%$%V%i%j$,Hw$($i$l!"%W%i%0%$%s$NDI2C$O4JC1$K(B
$B9T$($^$9!#(B

4. GNU Transport Layer Security Library v0.2.1
$B:n<T(B: Nikos Mavroyanopoulos nmav@hellug.gr
$B4XO"$9$k(B URL:
http://www.gnu.org/software/gnutls
$B%W%i%C%H%U%)!<%`(B: FreeBSD$B!"(BNetBSD$B!"(BOpenBSD$B!"(BSolaris$B!"(BUNIX
$B$^$H$a(B:

GNU Transport Layer Security Library $B$O(B TLS (Transport Layer Security 
$B$NN,$G!"(BSSL $B$N8e7Q$G$9(B) $B$N<BAu$G$9!#8=:_3+H/Cf$G!"%"%k%U%!HG$,MxMQ2DG=(B
$B$G$9!#(B

5. SpamAssassin v1.4
$B:n<T(B: Justin Mason jm@jmason.org
$B4XO"$9$k(B URL:
http://spamassassin.taint.org/
$B%W%i%C%H%U%)!<%`(B: N/A
$B$^$H$a(B:

SpamAssassin $B$O%9%Q%`$r8!CN$9$k$?$a$K!"%a!<%k%X%C%@$dK\J8$N%F%-%9%HFb$r(B
$BBP>]$H$7$?C5::;n83$r!"I}9-$/9T$($k%a!<%k%U%#%k%?$G$9!#0lEY8!CN$9$k$H!"(B
$B%a!<%k$O%*%W%7%g%s$G!"$"$H$G%U%#%k%?%j%s%0$r$9$k$H$-$K8+J,$1$i$l$k$h$&(B
$B$K%?%0$,$D$1$i$l$^$9!#%U%#%k%?%j%s%0$r<B9T$9$k$?$a$N%3%^%s%I%i%$%s%D!<(B
$B%k!"BgNL$N%a!<%k$r%U%#%k%?$9$k$?$a$N%/%i%$%"%s%H%5!<%P%7%9%F%`!"(B
Mail::SpamAssassin$B!"(BMail::Audit plugin0 (SpamAssassin $B$r(B Mail::Audit
$B%U%#%k%?!"%9%Q%`KI8n%W%m%-%7(B POP/IMAP $B%5!<%P!"$=$NB>B??t$NL\E*$G;HMQ$5(B
$B$;$k;v$,2DG=$G$9(B) $B$r<BAu$7$?(B Perl $B$N%b%8%e!<%k%;%C%H$rDs6!$7$^$9!#(B

6. myNetWatchman Perl Agent v1.10.0.18 (Developm
$B:n<T(B: Chad Wagner wagnerch@bellsouth.net
$B4XO"$9$k(B URL:
http://www.mynetwatchman.com/
$B%W%i%C%H%U%)!<%`(B: BSDI$B!"(BFreeBSD$B!"(BLinux$B!"(BSolaris$B!"(BSunOS
$B$^$H$a(B:

myNetWatchman Perl Agent $B$O(B myNetWatchman.com $B$N%/%i%$%"%s%H$G$9!#$3$N(B
$B%W%m%0%i%`$O!"B??t$N%U%!%$%d%&%)!<%k$N%m%0$+$i%j%8%'%/%H$5$l$?%Q%1%C%H(B
$B>pJs$r%-%c%W%A%c$7!"$=$N967b>pJs$r(B myNetWatchman.com $B$K$"$kCf1{$N2r@O%5(B
$B!<%P(B ($B$3$3$G%$%Y%s%H$r2r@O$7!"Aw?.85$N%W%m%P%$%@$KJs9p(B) $B$KAw?.$9$k$?$a(B
$B$K@_7W$5$l$^$7$?!#(B
- --
$BLu(B: $B:d0f=g9T(B(SAKAI Yoriyuki), $B1F;3E0:H(B(KAGEYAMA Tetsuya)
$B4F=$(B: $B:d0f=g9T(B(SAKAI Yoriyuki)
LAC Co., Ltd.
http://www.lac.co.jp/security/

-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Edition 5.5.5J
Comment: KAGEYAMA Tetsuya

iQA/AwUBO/np/c32EXDdoEFfEQIOzACguKpWhOkxIWfCk8Ty1Twi/X1OCRgAn0mh
3gs1UUwENeHtbqotXoT3asNF
=gB3k
-----END PGP SIGNATURE-----