Security Focus Newsletter #13 1999-10-24->1999-11-01

To: BUGTRAQ-JP@SECURITYFOCUS.COM
Subject: Security Focus Newsletter #13 1999-10-24->1999-11-01
From: SAKAI Yoriyuki <sakai@LAC.CO.JP>
Date: Tue, 2 Nov 1999 16:25:10 +0900
Reply-To: SAKAI Yoriyuki <sakai@LAC.CO.JP>
Sender: BUGTRAQ-JP List <BUGTRAQ-JP@SECURITYFOCUS.COM>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

$B:d0f(B@$B%i%C%/$G$9!#(B

	Security Focus Newsletter $BBh(B 13 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

$B$3$N9f$+$i%*%j%8%J%k$N(B Newsletter $B$K9g$o$;!"Js9p$5$l$?http://www.securityfocus.com/forums/sf-news/faq.html>
BugTraq-JP $B$K4X$9$k(B FAQ:
<URL: http://www.securityfocus.com/forums/bugtraq-jp/faq.html>

- ---------------------------------------------------------------------
- ---------------------------------------------------------------------
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B Security Focus $B$N5v2D$r3t<02qe$G9T$o$l$F(B
  $B$$$^$9!#(B
$B!&(BSecurity Focus Newsletter $B$NOBLu$r(B Netnews, Mailinglist,
  World Wide Web, $B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$N(B
  $BA4J80zMQ$r$*4j$$$7$^$9!#(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;(B
  $B$s$,=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurity Focus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k(B
  $B7A<0$N%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) <URL http://www.securityfocus.com/templates/archive.pike?list=79>
- ---------------------------------------------------------------------
- ---------------------------------------------------------------------
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02qe0L(B6$B0L$N%D!<%k(B
    1. Security Focus Pager (NT/98)
    2. ShadowScan (NT/98)
    3. East-Tec Eraser (NT/98)
    4. Evidence Eliminator (NT/98)
    5. Access Sentinel 3.0 (NT/98)
    6. Alot MoniCA 1.1 (NT/98)
IX. $B%9%]%s%5!<>pJs(B($BF|K\8lLu$J$7(B)
X. Security Focus Newsletter $B$N9XFI!&9XFI2r=|>pJs(B


I.   $B=i$a$K(B
- -----------
NT OBJECTives, Inc. <http://www.ntobjectives.com> $B$NDs6!$K$h$k!"(B
Security Focus $B$,$*Aw$j$9$k=54)%K%e!<%:%l%?!<$NBh(B 13 $B9f$X$h$&$3$=!#(B

$B:#9f$G$O(B Security Focus $B$K2C$o$C$?!"?7$7$$Cg4V!"(BEric Schultze $B$r3'MM$K(B
$B$4>R2p$7$^$9!#(B

Eric Schultze $B$O(B Security Focus $B$N(B Microsoft $B$K4X$9$kJ,Ln$N?7$7$$%G%#(B
$B%l%/%?!<$G(B 6 $BG/4V$KEO$j!"(BMicrosoft $B@=IJ$NHNGd!"D4::!"%;%-%e%"2=$K7H$o$C(B
$B$FMh$??MJ*$G!":G=i$K%M%C%H%o!<%/$N:FHN2qo$KCxL>$J(B "Extreme Hacking: Defending YourSite" $B%3!<%9(B $B$N6&F1(B
$BH/5/?M$KL>$rO"$M!"$^$?!"(BBlackhat $B$d(B CSI $B$J$I$N9q:]E*%;%-%e%j%F%#%+%s%U%!(B
$B%l%s%9$K$*$$$F$bNI$/L>$rCN$i$l$k9V;U$G$9!#(B
$B$^$?!"(B"Hacking Exposed: Network Security Secrets and Solutions" $B$K$bCx$rO"$M!"$3$NK\$NFbMF$O(BTIME Magazine$B!"(BInfoworld$B!"(BComputerWorld $B$J(B
$B$I$NJsF;G^BN$K$h$C$FIQHK$K0zMQ$5$l$F$$$^$9!#(B


II.  $B:#=5$N(B BUGTRAQ $B$+$i(B 1999-10-24 $B$+$i(B 199-11-01 $B$^$G(B
- -------------------------------------------------------


1. Pacific Software URL Live! Directory Traversal Vulnerability
BugTraq ID: 746
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-28
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/746
$B$^$H$a(B:

Pacific software $B$,Ds6!$9$k%U%j!<$N(B Web $B%5!<%P!"(BURL Live! $B$K$OAjBP%Q%9(B
$B$rMxMQ$7$?%G%#%l%/%H%j$N;2>H(B ("../") $B$,2DG=$G$"$k!#(B"../"$B$H$$$&J8;zNs$r(B
URL$B$K4^$a$k;v$G!"967b2. Squid Web Proxy Authentication Failure Vulnerability
BugTraq ID: 741
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-25
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/741
$B$^$H$a(B:

National Science Foundation $B$K$h$C$F3+H/$5$l$?(B Squid Web Proxy Cache
$B$NB?$/$N%P!<%8%g%s$K$OZ%W%m%0%i%`$rMQ$$$k>l9g$K$N$_H/@8$9$k!#(B

$B0J2<$O(B BugTraq $B$XEj9F$5$l$?FbMF$+$i$3$NLdBj$K4X$9$k5-;v$r0zMQ$7$?$b$N(B
$B$G$"$j!"$3$N5-;v$O>e$K<($7$?!V4XO"$7$?(BURL$B!W$N(B'Credits' section $B$+$i;2(B
$B>H2DG=$G$"$k!#(B

$B%/%i%$%"%s%H$+$iM?$($i$l$?(B base64 $B$G%(%s%3!<%I$5$l$?(B "user:passwd"$B$NAH(B
$B$+$i(B squid $B$O(B \n $B$"$k$$$O(B \r $B$r=PNO$KEv$?$C$Fl9g!"30It$NG'>Z%W%m%0%i%`$O(B1
$B9T$G$O$J$/!"(B2$B9T$rl9g!"FsAH$N7k2L$rJV$9$3$H$K$J$k!#(B
$B8=:_!"KX$I9M$($i$l$k8B$j$NG'>Z;~$N$d$j3. Zeus Webserver Possible Remote root Compromise
BugTraq ID: 742
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-25
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/742
$B$^$H$a(B:

Zeus Web Server $B$K$OA[(B Web $B%5%$%H$N$?$a$NAH$_9~$_:Q$_$N(B
$B8!:wMQ(B CGI $B%W%m%0%i%`$,Ds6!$5$l$F$$$k$,!"$3$N%W%m%0%i%`$O(B HTML $B$G5-=R$5(B
$B$l$?(B Form $B$NCM$r2p$7$F%5!<%PFb$N%U%!%$%k%7%9%F%`$N%Q%9$r0z?t$H$7$F$C$F8!:w$9$k$?$a$N%Q%i%a!<%?$r2C9)$7$F!"967bl9g!"0U?^E*$J%3!<(B
$B%I$,(B Web $B$rMxMQ$7$?@_DjMQ%$%s%?%U%'!<%9$r2p$7$F(B root $B8"8B$Gl9g$G$"$k(B)

4. Falcon Web Server Directory Traversal Vulnerability
BugTraq ID: 743
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-26
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/743
$B$^$H$a(B:

Falcon Webserver $B$O>/$J$$%Z!<%8?t$rDs6!$9$k$?$a$N8D?MMQ%G%9%/%H%C%W(B Web
$B%5!<%P$G$"$k!#$3$N%=%U%H%&%'%"$N$$$/$D$+$N%P!<%8%g%s$K$O%f!<%6$,;XDj$7(B
$B$?(B URL $B$rE,@Z$KH$G$-(B
$B$F$7$^$&!#(B

$B$^$?!"M=Dj$5$l$?(B URL $B$h$j$bD9$$(B URL $B$,M?$($i$l$?>l9g!"%5!<%P$,H/$9$k%((B
$B%i!<%a%C%;!<%8$K%k!<%H%G%#%l%/%H%j$N0LCV$r<($7$F$7$^$&JL$NLdBj$b$"$k!#(B

5. AIX Filtering Vulnerability
BugTraq ID: 744
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-26
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/744
$B$^$H$a(B:
AIX 4.3.2 $B$K4^$^$l$k%U%#%k%?%j%s%0%b%8%e!<%k$K$O(B 32767 $B$h$j9b$$%]!<%HHV(B
$B9f$KBP$9$k%U%#%k%?%j%s%0$,$G$-$J$$LdBj$,$"$k!#(B
$B0J2<$NNc$O$3$NLdBj$K$D$$$F(B BugTraq $B$KEj9F$5$l$?FbMF$+$i$N0zMQ$G$"$k!#(B
($BLuCm(B:$B0J2<$NNc$O(B 1 $B9T$NFbMF$r(B \ $B$G@^$jJV$7$F(B 2 $B9T$K2C9)$7$F$"$j$^$9(B)

 genfilt -v 4 -a D -s 0.0.0.0 -m 0.0.0.0 -d 0.0.0.0 -M 0.0.0.0 \
 -c udp -o any -O eq -P 123 -l n -w I -i all

 $B0J>e$K4X$7$F$OF0:n$9$k$,!"(B

 genfilt -v 4 -a D -s 0.0.0.0 -m 0.0.0.0 -d 0.0.0.0 -M 0.0.0.0 -c udp \
 -o any -O eq -P 32768 -l n -w I -i all

 $B0J>e$N@_Dj$G$O2<5-$N%a%C%;!<%8$r=P$7!"<:GT$7$F$7$^$&!#(B
 Bad destination port/ICMP type "32768"

$B$3$l$O%]!<%HHV9f$r;XDj$9$k$?$a$N0z?t$KITE,@Z$J7?(B(short int)$B$r;HMQ$7$F$$(B
$B$k7k2L$G$"$k!#=>$C$F!"(B 32767 $B$h$j9b$$HV9f$G(B listen $B>uBV$K$"$k%5!<%S%9$K(B
$BBP$7$FLdBj$,@8$8$k!#(B

6. MacOS 9 Console Lock Bypass Vulnerability
BugTraq ID: 745
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 1999-10-26
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/745
$B$^$H$a(B:

MacOS 9 $B$K$O%3%s%=!<%k$r%"%$%I%k>uBV$+$iI|5l$5$;$k;v$,2DG=$J%m%C%/5!G=(B
$B$,$"$k!#$3$l$OB>$N(B OS $B$N%Q%9%o!<%IIU$-%9%/%j!<%s%;%$%P!<$K;w$F$$$k!#(B
$B%f!<%6$,$7$P$i$/$N4V%3%s%=!<%k$r;HMQ$7$F$$$J$$>l9g!"%Q%9%o!<%IF~NO$r5a(B
$B$a$k%@%$%"%m!<%0%\%C%/%9$,I=<($5$l$k!#$=$N8e%f!<%6$,!V(BOK$B!W%\%?%s$r%/%j%C(B
$B%/$9$k$H!"%Q%9%o!<%IF~NO$9$k$+!"8=:_$N%f!<%6$+$i%m%0%"%&%H$9$k$+$NA*Br(B
$B%*%W%7%g%s$,8=$l$k!#$b$7$b!V%m%0%"%&%H!W%*%W%7%g%s$rA*Br$7$?$J$i$P!"$9(B
$B$Y$F$NF0:nCf$N%W%m%0%i%`$O%7%c%C%H%@%&%sF0:n$r3+;O$9$k!#$3$3$GB?$/$N%W(B
$B%m%0%i%`$G$O%7%c%C%H%@%&%s$N:GCf$K%@%$%"%m!<%0$rI=<($9$k!#(B
($BNc$($P!VJ]B8$;$:$K=*N;$7$^$9$+(B? OK/Cancel$B!WEy(B)
$B$b$7$b%f!<%6$,!V(BCancel$B!W$rA*Br$7$?>l9g!"%7%c%C%H%@%&%sF0:n$OCfCG$5$l!"(B
$B%f!<%6$O%Q%9%o!<%I$rF~NO$9$k$3$H$J$/%+%l%s%H%;%C%7%g%s$KI|5"$G$-$F$7$^(B
$B$&$N$G$"$k!#(B

7. WFTPD Remote Buffer Overflow Vulnerability
BugTraq ID: 747
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-28
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/747
$B$^$H$a(B:

WFTPD $B$N(B 2.34 $B$H(B 2.40 $B$G$O%j%b!<%H$+$i$N%P%C%U%!%*!<%P!<%U%m!<$,l9g$K@8$8$k!#$3$N;~!"%P%C%U%!$N%*!<%P!<%i%s$,@8$8!"(B
$BBP>]$H$J$C$?%[%9%H$G0U?^E*$J%3!<%I$,8. Netscape Messaging Server RCPT TO DoS Vulnerability
BugTraq ID: 748
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-29
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/748
$B$^$H$a(B:

Netscape Messaging Server $B$OpJs$r3JG<$7$?8e(B
$B$K%a%b%j$N2rJ|$r9T$o$J$$!#=>$C$FD9Bg$J(B RCPT TO $B%"%I%l%9$r;XDj$9$k$3$H$G!"(B
$B967bBP>]$H$J$C$?%7%9%F%`$X$9$Y$F$NMxMQ2DG=$J%a%b%j$r?)$$$D$V$5$;!"7k2L(B
$B$H$7$F;HMQITG=967b$r0z$-5/$3$5$;$i$l$k!#(B

9. Celtech ExpressFS USER Buffer Overflow Vulnerability
BugTraq ID: 749
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-29
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/749
$B$^$H$a(B:

Celtech$Bl9g!"7$/!#(B

10. NT Services Denial of Service
BugTraq ID: 754
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-10-31
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/754
$B$^$H$a(B:

$BFCJL$K2C9)$5$l$?%Q%1%C%H$,(B Windows NT 4.0 $B$,F0:n$7$F$$$k%3%s%T%e!<%?>e(B
$B$G%m!<%+%k$N4IM}$H%M%C%H%o!<%/$r2p$7$?DL?.$r;HMQITG=$K$7!"e$NL>A0IU$-%Q%$%W7PM3$NF0:n$rAK32$9$k$3$H$G!"!V%5!<(B
$B%S%9!W$N$N967b$HJ;MQ$5$l$?>l9g!"%?!<%2%C%H>e$N%G%P%C(B
$B%,(B($B$9$J$o$A!V%o%H%=%sGn;N!W%W%m%0%i%`(B)$B$X=hM}$r0z$-EO$;$k2DG=@-$,$"$j!"(B
$B$b$7$b$9$G$K%H%m%$$NLZGO$,%G%P%C%,$K;E3]$1$i$l$F$$$?>l9g!"0U?^E*$J%3!<(B
$B%I$,BP>]$H$J$k%[%9%H>e$GF0:n2DG=$K$J$C$F$7$^$&!#(B

11. FreeBSD Amanda 'amandad' Symlink Vulnerability
BugTraq ID: 752
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 1999-11-01
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/752
$B$^$H$a(B:

Amanda $B$O(B Free $B$N(B UNIX $B>N$N%U%!%$%k$NM-L5$r%A%'%C%/$;$::n$i$l$F(B
$B$7$^$&;v$K860x$,$"$k!#(B
amandad $B$O(B suid $B>uBV!"(Bsgid $B>uBV$G$OF0:n$7$J$$$?$a!"$3$N967b7k2L$H$7$F!"(B
amandad $B$,=jM-$9$k(B UID $B$K$h$C$FB>$N%U%!%$%k$r=jM-$7$F$7$^$&2DG=@-$,9b$$!#(B
$B$3$N>uBV$,H/@8$7$?$3$H$r5-O?$+$iC)$k;v$d(B amandad $B$,:n@.$9$k%G%P%C%0%m%0(B
$B$+$iC)$k;v$OIT2DG=$G$"$k!#(B

12. Multiple Vendor Linux NIS Vulnerabilities
BugTraq ID: 753
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 1999-11-01
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/753
$B$^$H$a(B:

$B%P!<%8%g%s(B 1.3.9 $B0JA0$N(B ypserv $B$K$O(B 2 $B$D$N0[$J$k$N%f!<%6$N(B GECOS $B%U%#!<%k%I$d%m%0%$%s%7%'%k$rJQ99$G$-$F$7(B
$B$^$&LdBj$G$"$k!#B>$NLdBj$O(B 1.3.6.92 $B0JA0$N(B rpc.yppasswd $B$K$O(B md5 $B%O%C(B
$B%7%e$r@8@.$9$k%3!<%I$KE57?E*$J%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$kLdBj$G(B
$B$"$k!#(B

13. aVirt Mail Server Buffer Overflow
BugTraq ID: 755
$B%j%b!<%H$+$i$N:F8=@-(B: $BL$>\(B
$B8xI=F|(B: 1999-10-31
$B4X78$9$k(BURL:
http://www.securityfocus.com/bid/755
$B$^$H$a(B:

aVirt Mail Server 3.3a $B$H(B 3.5 $B$N%Q%C%1!<%8$K$O%j%b!<%H$+$i%P%C%U%!%*!<(B
$B%P!<%U%m!<$r0z$-5/$3$;$i$l$k$H$$$&http://support.zeus.co.uk/news/exploit.html
$BBP1~$9$khttp://www.securityfocus.com/bid/742

2. $B%Y%s%@(B: National Science Foundation
$B@=IJ(B: Squid Web Proxy
$B%Q%C%A$NF~http://squid.nlanr.net/Versions/v2/2.2/bugs/squid-2.2.stable5-newlines_in_auth.patch
$BBP1~$9$khttp://www.securityfocus.com/bid/741
 http://squid.nlanr.net/Doc/Users-Guide/
 http://squid.nlanr.net/

3. $B%Y%s%@(B: Blueface Software
$B@=IJ(B: Falcon Webserver
$B%Q%C%A$NF~http://www.blueface.com/products.html#fws
$BBP1~$9$khttp://www.securityfocus.com/bid/743

4. $B%Y%s%@(B: Debian, Redhat, SuSE
$B@=IJ(B: ypserv/NIS package
$B%Q%C%A$NF~ftp://updates.redhat.com/4.2/i386/ypserv-1.3.9-0.4.2.i386.rpm
 ftp://updates.redhat.com/4.2/alpha/ypserv-1.3.9-0.4.2.alpha.rpm
 ftp://updates.redhat.com/4.2/sparc/ypserv-1.3.9-0.4.2.sparc.rpm
 ftp://updates.redhat.com/4.2/SRPMS/ypserv-1.3.9-0.4.2.src.rpm

 Red Hat Linux 5.x:
 ftp://updates.redhat.com/5.2/i386/ypserv-1.3.9-0.5.2.i386.rpm
 ftp://updates.redhat.com/5.2/alpha/ypserv-1.3.9-0.5.2.alpha.rpm
 ftp://updates.redhat.com/5.2/sparc/ypserv-1.3.9-0.5.2.sparc.rpm
 ftp://updates.redhat.com/5.2/SRPMS/ypserv-1.3.9-0.5.2.src.rpm

 Red Hat Linux 6.x:
 ftp://updates.redhat.com/6.1/i386/ypserv-1.3.9-1.i386.rpm
 ftp://updates.redhat.com/6.0/alpha/ypserv-1.3.9-1.alpha.rpm
 ftp://updates.redhat.com/6.0/sparc/ypserv-1.3.9-1.sparc.rpm
 ftp://updates.redhat.com/6.1/SRPMS/ypserv-1.3.9-1.src.rpm

 -SuSE patches:
 ftp://ftp.suse.com/pub/suse/i386/update/6.1/n1/ypserv-1.3.9-0.i386.rpm
 ftp://ftp.suse.com/pub/suse/axp/update/6.1/n1/ypserv-1.3.9-0.alpha.rpm
 ftp://ftp.suse.com/pub/suse/i386/update/6.2/n1/ypserv-1.3.9-0.i386.rpm

 -Debian patches:
 Source archives:
 http://security.debian.org/dists/stable/updates/source/nis_3.5-2.diff.gz
 http://security.debian.org/dists/stable/updates/source/nis_3.5-2.dsc
 http://security.debian.org/dists/stable/updates/source/nis_3.5.orig.tar.gz

 Architecture-specific binaries:
 http://security.debian.org/dists/stable/updates/binary-alpha/nis_3.5-2_alpha.deb
 http://security.debian.org/dists/stable/updates/binary-i386/nis_3.5-2_i386.deb
 http://security.debian.org/dists/stable/updates/binary-m68k/nis_3.5-2_m68k.deb
 http://security.debian.org/dists/stable/updates/binary-sparc/nis_3.5-2_sparc.deb

 $B0J>e$G<($5$l$F$$$k%Q%C%A$O0J2<$N(B URL $B$K0\F0M=Dj$G$"$k!#(B
 ftp://ftp.debian.org/debian/dists/stable/*/binary-$arch/

 $B8=:_%Q%C%A$,Ds6!$5$l$F$$$J$$%"!<%-%F%/%A%c$KBP$7$F$O0J2<$N(B URL $B$r?o(B
 $B;~;2>H$5$l$?$$!#(B
 ftp://ftp.debian.org/debian/dists/sid/binary-$arch/.

$BBP1~$9$khttp://www.securityfocus.com/bid/753

$B:#=5$N(B INCIDENTS $B$+$i(B 1999-10-24 $B$+$i(B 199-11-01 $B$^$G(B
- ----------------------------------------------------

1. Repeated FTP Connections (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=75&date=1999-10-22&msg=Pine.LNX.4.10.9910251654160.20244-100000@ns.doomsday.com

2. Re: Default Trojan Port list (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=75&date=1999-10-22&msg=19991025150329.55777.qmail@hotmail.com

3. SMB Port scanning (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=75&date=1999-10-22&msg=19991026132728267.AAA391@paragon3.paragontech.com@dennisdcomp

4. Re: More Log Sharing (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=75&date=1999-10-22&msg=3816096E.F75578CA@cert.org

5. Re: ICP (Internet Cache Protocol) problems... (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=75&date=1999-10-22&msg=Pine.LNX.4.10.9910280257540.492-100000@mad.unix.kg


V. $B:#=5$N(B VULN-DEV RESEARCH LIST $B$+$i(B 1999-10-24 $B$+$i(B 199-11-01 $B$^$G(B
- --------------------------------------------------------------------

1. Re: IE 5.0 vulnerability (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=000201bf1e48$65a2cd30$021d85d1@youwant.to

2. Re: possible gnome remote overflow (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=38135F5B.3A2B2369@cse.ogi.edu

3. Re: Need help cracking wwwboard passwd.txt (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=199910240555.PAA28579@rockhampton-psvr.qld.hotkey.net.au

4. ICQ 2000 (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=19991025114035.J5069@securityfocus.com

5. Re: forged packets? (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=001a01bf1f1c$86c8dfc0$021d85d1@youwant.to

6. Accessing IE/Netscape incomming data (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=2321.991026@infinet.com

7. linux userland ip spoofing vulnerability (Thread)
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=Pine.LNX.4.10.9910270708380.638-200000@yahoo.com

8. FreeBSD listen()
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=3701.991027@SECURITY.NNOV.RU

9. stealth executables
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=199910270223.MAA09528@rockhampton-psvr.qld.hotkey.net.au

10. AIM 3.0
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=19991028172023.18236.qmail@securityfocus.com

11. Possibly exploitable overflow in Alibaba 2.0
$B4X78$9$k(BURL:
http://www.securityfocus.com/templates/archive.pike?list=82&date=1999-10-22&msg=199910281536.RAA18018@mail1.cityweb.de

VI.  $B5a?M0FFb(B($BF|K\8lLu$J$7(B) 1999-10-24 $B$+$i(B 199-11-01 $B$^$G(B
- ----------------------------------------------------------

VII.  $B%;%-%e%j%F%#D4::(B 1999-10-24 $B$+$i(B 199-11-01 $B$^$G(B
- -----------------------------------------------------

1999-10-24 $B$+$i(B 199-11-01 $B$^$G$NCO$,$"$k$3$H$G(B
   $B>/$J$/$H$bD7$M=|$1$?$$$H9M$($F$$$k$+$i(B
	47% / 33 $BI<(B
4. $B%;%-%e%j%F%#$H$$$&$b$N$O$D$`$86J$,$j$K8~$$$F$$$k$b$N$@$+$i(B
	43% / 30 $BI<(B

$BA4EjIe0L(B6$B0L$N%D!<%k(B
       1999-10-24 $B$+$i(B 199-11-01 $B$^$G(B
- ------------------------------------------

1. Security Focus Pager
$BCxhttp://www.securityfocus.com/pager

$B$3$N%W%m%0%i%`$O%f!<%6$N3'MM$K%V%i%&%6$r3+$-!"%3%s%F%s%DFbMF$r3NG'$9$k(B
$B$3$H$J$7$K(B Security Focus $B$,Ds6!$9$k(B Web $B%5%$%H$KDI2C$5$l$?9`L\$r3NG'(B
$B$G$-$k4D6-$rDs6!$7$^$9!#(B
$B%P%C%/%0%i%&%s%I$G95$($J$,$i!"%f!<%6$,;XDj$7$?<~4|$G%3%s%F%s%D$r3NG'$7!"(B
$B%7%9%F%`%H%l%$Fb$NE@LG$9$k%"%$%3%s!"%]%C%W%"%C%W%a%C%;!<%8!"$3$l$i$NN>(B
$BJ}$GJQ99$r$*CN$i$;$7$^$9!#(B($BDLCNJ}K!$O@_Dj2DG=$G$9(B)

2. ShadowScan
$BCxhttp://www.securityfocus.com/data/tools/auditing/ShadowScan.zip

Shadow Advantis Administrator Tools $B$K$O(B Ping (SSPing)$B!"(BPort Scanner$B!"(B
IP Scanner$B!"BP>]$H$J$k%[%9%H$G5/F0$5$l$F$$$k%5!<%S%9$r:G$b9bB.$K8+$D$1(B
$B=P$;$k(B Site Info$B!"(BNetwork Port Scaner$B!"(BTracert$B!"(BTelnet$B!"(Bnslookup$B!"(B
Finger$B!"(BEcho$B!"(BTime$B!"(BUPD $B%F%9%H!"%U%!%$%k>pJs!"%U%!%$%kHf3S!"(Bnetstat$B!"(B
SysInfo$B!"(BCrypt$B!"%U%!%$%k$N(BCRC$B!"(BDBF $B$N;2>H$*$h$SJT=8!"(BDiskInfo$B!"(B
NTprocess$B!"(BKeyboard$B;n83!"(BDNS info$B$,4^$^$l$F$$$^$9!#(B
Shadow Hack and Crack $B$K$O(B WinNuke$B!"(BMail Bomber$B!"(BPOP3$B!"(BHTTP$B!"(BSOCKS$B!"(B
FTP Crack ($BC5::J}K!$K$h$C$F%Q%9%o!<%I$r?dDj(B)$B!"(BUnix password Crack$B!"(B
Finger over SendMail$B!"(BBuffer Overlow$B!"(BSmb Password Check$B!"(BCRK Files$B$,(B
$B4^$^$l$F$$$^$9!#(B
ShadowPortGuard $B$K$OFCDj$N%]!<%H$G$N%3%M%/%7%g%s$rH/8+$9$k$?$a$N%3!<%I(B
$B$,4^$^$l$F$$$^$9!#(B
Shadow Novell NetWare Crack $B$K$O(B Novell $B$N%3!<%I(B
$B$rGK2u$9$k$?$a$N%3!<%I$,4^$^$l$F$$$^$9!#(B

3. East-Tec Eraser
$BCxhttp://www.securityfocus.com/data/tools/eerase20.zip

East-Tec Eraser $B$O%3%s%T%e!<%?$+$i5!L)@-$,$"$k%G!<%?$r40A4$K:o=|$9$k$?$a(B
$B$K@_7W$5$l$?@h?JE*$J%;%-%e%j%F%#%"%W%j%1!<%7%g%s$G$9!#(B
$B$3$N%W%m%0%i%`$O(B Windows 95/98/NT $B$N!V$4$_H"$KC5n$7!"%U%!%$%kL>$r1#JC$7$F$+$i%G%#%9%/$+$i>C5n$9$k;v$K$J(B
$B$k$N$G$9!#$b$7!"%j%+%P%j!<$G$-$J$$MM$K%U%!%$%k$d%U%)%k%@$r>C5n$7$?$$>l9g!"(B
$B%W%m%0%i%`$K%U%!%$%k$N0lMw$rM?$($k$H%W%m%0%i%`$O>C5n$9$k$+?R$M$F$-$^$9!#(B
$B%W%m%0%i%`$O(B Windows $B$N%7%'%k$H7k$S$D$$$F$$$k$?$a!"%(%/%9%W%m!<%i$+$i%I(B
$B%i%C%0$7!"%W%m%0%i%`$X%I%m%C%W$G$-$^$9!#$^$?!"%(%/%9%W%m!<%i$N%3%s%F%-%9(B
$B%H%a%K%e!<$+$i!"(B"Erase beyond recovery"$B$rA*Br$7$FD>@\:o=|$,2DG=$G$9!#(B

4. Evidence Eliminator
$BCxhttp://www.securityfocus.com/data/tools/eelm202.zip

$B$3$N%;%-%e%j%F%#%D!<%k$O%3%s%T%e!<%?$+$i%7%s%0%k%/%j%C%/2DG=$J5!2q$r$9$Y(B
$B$F;HMQITG=$K$7$^$9!#;n83$G$O!"D4::41$dK!L341$K$h$C$F;H$o$l$k!VK!DnMQ2r@O!W(B
$B$r9T$&$?$a$N%=%U%H%&%'%"$rBG$AIi$+$7$F$$$^$9!#(B

5. Access Sentinel 3.0
$BCxhttp://www.securityfocus.com/data/tools/accsntl.zip

$B$3$N%=%U%H%&%'%"$O(B Windows 95/98 $B$N%U%!%$%k$H%U%)%k%@$rJ]8n$G$-$k%+!<(B
$B%M%k%b!<%I$GF0:n$7$F$$$k%;%-%e%j%F%#3HD%%W%m%0%i%`$G$9!#(B
Windows $B%7%'%k$H7k$S$D$-!"$3$N%=%U%H%&%'%"$O%U%!%$%k$d%U%)%k%@$N1#JC!"(B
$B%b%K%?%j%s%0!"%"%/%;%9Dd;_$r(B Windows $B$N%(%/%9%W%m!<%i$N%U%!%$%k$N%W%m%Q(B
$B%F%#%@%$%"%m%0$r;H$&$3$H$J$7$K@_Dj2DG=$G$9!#$7$+$b!"%O!<%I%G%#%9%/Fb$N(B
$B$9$Y$F$N3hF0$r%j%"%k%?%$%`$G3NG'2DG=$G$9!#;H$$J}$O4JC1$G@_Dj$O:GDc8B$G(B
$B$9!#(B

6. Alot MoniCA 1.1
$BCxhttp://www.securityfocus.com/data/tools/amnset11.zip

MoniCA $B$O%/%i%$%"%s%H%"%W%j%1!<%7%g%s%b%K%?$G$9!#(B
$B$J$<(B MoniCA $B$r;H$&$N$G$7$g$&$+(B? MoniCA $B$r;H$C$F!"$$$D$G$bCN$j$?$$;~$K!"(B
$B$4<+?H$N%9%?%s%I%"%m%s$H%M%C%H%o!<%/$K@\B3$5$l$?%3%s%T%e!<%?$GC/$,!"$$(B
$B$D!"2?$r$7$F$$$k$+$r!"Nc$($P$I$N$/$i$$FCDj$N%W%m%0%i%`$,F0:n$7$F$$$k$+!"(B
$B$$$D;E;v0J30$K;H$o$l$F$$$k$N$+!"$"$J$?$,2H$K$$$J$$4V$K2HB2$,$I$N0L%3%s(B
$B%T%e!<%?$r;H$C$?$N$+!"C/$,$4<+?H$N%U%!%$%k$rFI$s$G$7$^$C$?$N$+!"$4<+?H(B
$B$N;E;v>l$GE}7W2r@O$K%3%s%T%e!<%?$NG=NO$r:G$b3d$jEv$F$?$$J}K!$rC5$kJ}K!(B
$BEy$K$D$$$F4Q;!2DG=$G$9!#(B
MoniCA$B$O(BLAN$B>e$N%3%s%T%e!<%?$G$b!"%9%?%s%I%"%m%s$N>uBV$N%3%s%T%e!<%?$G$b(B
$B$I$A$i$G$bF0:n$7$^$9!#(B

IX. $B%9%]%s%5!<>pJs(B($BF|K\8lLu$J$7(B)
- --------------------------------

XI. Security Focus Newsletter $B$N9XFI!&9XFI2r=|>pJs(B
- --------------------------------------------------

$BLuCm(B:$BF|K\8lHG(B Security Focus Newsletter $B$O(B BugTraq-JP $B$GG[Aw$5$l$^$9!#(B
$BF|K\8lHG$@$1$N9XFI!&9XFI2r=|J}K!$ODs6!$5$l$F$$$^$;$s!#(B
$B0J2<$NFbMF$O1Q8lHG(B Security Focus Newsletter $B$N9XFI!&9XFI2r=|J}K!$G$9!#(B
$B$J$*(B BugTraq-JP $B$N(B FAQ $B$O$3$A$i$N(B URL $B$r$4;2>H$/$@$5$$!#(B
http://www.securityfocus.com/forums/bugtraq-jp/faq.html

1. $B;22C$NJ}K!$r65$($F$/$@$5$$!#(B

  LISTSERV@SECURITYFOCUS.COM $B$X0J2<$NK\J8$N%a!<%k$rAw$C$F$/$@$5$$!#(B

  SUBSCRIBE SF-NEWS $B;a(B($B%m!<%^;z$G(B), $BL>(B($B%m!<%^;z$G(B)

  $B$=$N8e9XFI$r3NG'$9$k%a%C%;!<%8$,FO$-$^$9!#9XFI=hM}$rB3$1$k>l9g$K$O3N(B
  $BG'%a!<%k$KJV;v$r=P$7$F$/$@$5$$!#(B

2.  $B9XFI2r=|J}K!$r65$($F$/$@$5$$!#(B

  LISTSERV@SECURITYFOCUS.COM $B$X0J2<$NK\J8$N%a!<%k$r9XFI@h$K;XDj$7$?%"(B
  $B%I%l%9$+$iAw$C$F$/$@$5$$!#(B

  UNSUBSCRIBE SF-NEWS

  $B$b$7$b%"%I%l%9$,$9$G$KJQ99$5$l$F$$$k>l9g$K$O1Q8l$G(B
  aleph1@securityfocus.com $B$K:o=|$7$?$$;]$r$*CN$i$;$/$@$5$$!#(B

3.  $B0l;~E*$KG[Aw$rDd;_2DG=$G$9$+(B?

  $B0l;~E*$KG[Aw$rDd;_$5$;$k$?$a$K$O0J2<$N(B LISTSERV $B%3%^%s%I$r(B
  LISTSERV@SECURITYFOCUS.COM $B$XAw$C$F$/$@$5$$!#(B

  SET SF-NEWS NOMAIL

  $BG[Aw$rI|5l$5$;$k>l9g$O0J2<$N%3%^%s%I$rAw$C$F$/$@$5$$!#(B

  SET SF-NEWS MAIL

4.  $B$^$H$aAw$j$O2DG=$G$9$+(B?

  $B0lF|0l2s!"$^$H$aAw$jHG$,AwIU$5$l$^$9!#(B

5.  $B$^$H$aAw$jHG$N9XFI$O$I$N$h$&$K$9$k$N$G$9$+(B?

  $B$3$N>pJs$N(B1$B9`L\$K<($7$?MM$KDL>oDL$j%j%9%H$X;22C$7$F$/$@$5$$!#(B
  $B$=$7$F!"(BLISTSERV@SECURITYFOCUS.COM $B$X0J2<$N%3%^%s%I$r%a!<%k$NK\J8$K(B
  $B=q$$$FAw$C$F$/$@$5$$!#(B

  SET SF-NEWS DIGEST

6. $B$^$H$aAw$jHG$NC&B`$O$I$N$h$&$K$9$k$N$G$9$+(B?

  $B0J2<$N%3%^%s%I$r(B

  SET SF-NEWS NODIGEST LISTSERV@SECURITYFOCUS.COM $B$XAw$j!"$^$H$aAw$j$r(B
  $B2r=|$7$F$/$@$5$$!#oDL$j9XFI:o=|=hM}$r9T$C(B
  $B$F$/$@$5$$!#(B

7. $BC&B`$G$-$J$$$N$G$9$,!"2?$,5/$-$F$$$k$N$G$7$g$&$+(B?
  $BC&B`%3%^%s%I$rAw$C$F$$$k%"%I%l%9$H%a!<%k$NG[Aw@h$,0[$J$C$F$$$k$N$@$H(B
  $B;W$$$^$9!#@5$7$$%"%I%l%9$+$i%3%^%s%I$rAw$k$+!"%b%G%l!<%?$KO"Mm$rhttp://www.lac.co.jp/>

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.5.3i for non-commercial use <http://www.pgpi.com>

iQA/AwUBOB4TR5QwtHQKfXtrEQIxTwCfWfQ9yBZk8XubNs58oiGMPB/l268An3rP
DdeZZx6FmdRScsVi44+Kgz8e
=j87S
-----END PGP SIGNATURE-----