SecurityFocus Newsletter #163 2002-9-16->2002-9-20

To: bugtraq-jp@securityfocus.com
Subject: SecurityFocus Newsletter #163 2002-9-16->2002-9-20
From: SAKAI Yoriyuki <sakai@lac.co.jp>
Date: Sat, 5 Oct 2002 00:36:12 +0900
Delivered-To: mailing list bugtraq-jp@securityfocus.com
Delivered-To: moderator for bugtraq-jp@securityfocus.com
In-Reply-To: <Pine.LNX.4.43.0209231116560.14851-100000@mail.securityfocus.com>
List-Help: <mailto:bugtraq-jp-help@securityfocus.com>
List-Id: <bugtraq-jp.list-id.securityfocus.com>
List-Post: <mailto:bugtraq-jp@securityfocus.com>
List-Subscribe: <mailto:bugtraq-jp-subscribe@securityfocus.com>
List-Unsubscribe: <mailto:bugtraq-jp-unsubscribe@securityfocus.com>
Mailing-List: contact bugtraq-jp-help@securityfocus.com; run by ezmlm
References: <Pine.LNX.4.43.0209231116560.14851-100000@mail.securityfocus.com>
$B:d0f(B@$B%i%C%/$G$9!#(B

SecurityFocus Newsletter $BBh(B 163 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

---------------------------------------------------------------------------
SecurityFocus Newsletter $B$K4X$9$k(BFAQ($B1Q8l(B):
http://www.securityfocus.com/popups/forums/securityfocusnews/intro.shtml
BugTraq-JP $B$K4X$9$k(B FAQ($BF|K\8l(B):
http://www.securityfocus.com/popups/forums/bugtraq-jp/faq.shtml
$B!&(BSecurityFocus Newsletter $B$NOBLu$O(B BugTraq-JP $B$G0lH$/$@$5$$(B
---------------------------------------------------------------------------
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B SecurityFocus $B$N5v2D$r3t<02qe$G9T$o$l$F$$$^$9!#(B
$B!&(BSecurityFocus Newsletter $B$NOBLu$r(B Netnews, Mailinglist, World Wide Web,
  $B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$NA4J80zMQ$r$*4j$$$7$^$9!#(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;$s$,!"(B
  $B=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurityFocus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k7A<0$N(B
  $B%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://online.securityfocus.com/archive/79
---------------------------------------------------------------------------
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02ql9g!"(BBugTraq-JP $B$X(B Errata $B$H$7$F=$@5(B
  $BHG$r$4Ej9FD:$/$+!"4F=$l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
---------------------------------------------------------------------------
This translation is encoded and posted in ISO-2022-JP.

$B86HG(B:
Date: Mon, 23 Sep 2002 11:25:28 -0600 (MDT)
Message-ID: <Pine.LNX.4.43.0209231116560.14851-100000@mail.securityfocus.com>

SecurityFocus Newsletter #163
-----------------------------

This Issue is Sponsored by: SPI Dynamics

I. FRONT AND CENTER($BF|K\8lLu$J$7(B)
     1. Detecting and Removing Trojans and Malicious Code from Win2K
     2. Who Goes There? An Introduction to On-Access Virus Scanning...
     3. Configuring IPsec and IKE on Solaris, Part Three
     4. Slapped Silly
     5. Privacy Losses Around the World
     6. A Cybersecurity Sleeping Pill
     7. Hackback or the High Road? The question goes beyond Nimda
     8. SecurityFocus DPP Program
     9. IIR's 3G Fraud & Security Forum
II. BUGTRAQ SUMMARY
     1. PlanetWeb Long GET Request Buffer Overflow Vulnerability
     2. Microsoft Netmeeting Local Session Hijacking Vulnerability
     3. Opera Oversized Image Width Denial Of Service Vulnerability
     4. ASMon Kernel Memory File Descriptor Leakage Vulnerability
     5. ASCPU Kernel Memory File Descriptor Leakage Vulnerability
     6. BubbleMon Kernel Memory File Descriptor Leakage Vulnerability
     7. WMMon Memory Character File Open File Descriptor Read...
     8. WMNet2 Kernel Memory File Descriptor Leakage Vulnerability
     9. NetBSD Repeated TIOSCTTY IOCTL Buffer Overflow Vulnerability
     10. KDE Konqueror Oversized Image Width Denial of Service...
     11. DB4Web File Disclosure Vulnerability
     12. NetBSD LibC SetLocale Buffer Overflow Vulnerability
     13. DB4Web Connection Proxy Vulnerability
     14. NetBSD IPv4 Multicast Tools Buffer Overflow Vulnerability
     15. Lycos HTMLGear guestGear CSS HTML Injection Vulnerability
     16. Heimdal Kerberos Forwarding Daemon File Overwriting Vulnerability
     17. Heimdal Kerberos Forwarding Daemon Zero Terminated String...
     18. Joe Text Editor Backup SetUID Executable Editing Permission...
     19. Purity Local Buffer Overflow Vulnerabilities
     20. Enterasys SSR8000 SmartSwitch Port Scan Denial Of Service...
     21. Avaya IP Office Malformed Packets Denial Of Service Vulnerability
     22. Savant Webserver cgitest.exe Denial Of Service Vulnerability
     23. Savant Webserver File Disclosure Vulnerability
     24. Savant Webserver Malformed Content-Length Denial Of Service...
     25. Mac OS X NetInfo Manager Unauthorized Access Vulnerability
     26. BRU XBRU Insecure Temporary File Vulnerability
     27. Microsoft Windows Encrypted RDP Packet Information Leakage...
     28. Microsoft Windows RDP Keystroke Injection Vulnerability
     29. Microsoft Windows XP Professional Remote Desktop Denial Of...
III. SECURITYFOCUS NEWS ARTICLES
     1. Cybersecurity Plan Offends No One
     2. Flaws in Microsoft VM. Fix now
     3. Linux rootkit hacker suspect arrested in UK
     4. White House panel's cybersecurity plan avoids calls for new...
IV.SECURITYFOCUS TOP 6 TOOLS
     1. Server Scan 2002
     2. GFI LANguard Network Security Scanner (N.S.S.) v3.0
     3. archivemail v0.5.1
     4. the Anomy mail sanitizer v1.54
     5. bcrypt v1.1
     6. Demarc PureSecure v1.6

I. FRONT AND CENTER($BF|K\8lLu$J$7(B)
---------------------------------

II. BUGTRAQ SUMMARY
-------------------
1. PlanetWeb Long GET Request Buffer Overflow Vulnerability
BugTraq ID: 5710
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5710
$B$^$H$a(B:

PlanetWeb $B$O>&MQ@=IJ$H$7$F(B PlanetDNS $B$+$iHNGd$5$l$F$$$k(B Web $B%5!<%P$G$"(B
$B$k!#$3$N%=%U%H%&%'%"$O(B Microsoft Windows $B4D6-8~$1HG$,MxMQ2DG=$G$"$k!#(B

PlanetWeb $B$OHs>o$KD9$$(B HTTP $B$N(B GET $B%j%/%(%9%H$re$ND9$5$N(B GET $B%j%/%(%9%H(B
$B$r2. Microsoft Netmeeting Local Session Hijacking Vulnerability
BugTraq ID: 5715
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5715
$B$^$H$a(B:

Microsoft Netmeeting $B$O(B Microsoft Windows $B8~$1$N%j%"%k%?%$%`$G6&F1:n6H(B
$B$d2q5D$r9T$&$?$a$N%/%i%$%"%s%H%=%U%H%&%'%"$G$"$k!#(BNetmeeting $B$K$O!V%j%b!<(B
$B%H%G%9%/%H%C%W6&M-!W(B(RDS; Remote Desktop Sharing)$B$H>N$9$k!"%j%b!<%H$N%f!<(B
$B%6$,%/%i%$%"%s%H$,F0:nCf$N%G%9%/%H%C%W$r%j%b!<%H$+$i$N4IM}MQ%f!<%F%#%j(B
$B%F%#F1MM$KA`:n2DG=$K$J$k5!G=$,Hw$o$C$F$$$k!#(B

Netmeeting $B$O%j%b!<%H%G%9%/%H%C%W6&M-$,$$$:$l$+$NJ}K!$G3d$j9~$^$l$?:]$K(B
$B%Q%9%o!<%I$GJ]8n$5$l$?%9%/%j!<%s%;!<%P!<$rMxMQ$9$k$h$&$K@_Dj2DG=$G$"$k!#(B
$B$^$?!"%j%b!<%H%G%9%/%H%C%W6&M-%;%C%7%g%s$,M-8z$G$"$k:]!"%j%b!<%H%f!<%6(B
$B$K$h$C$F9T$o$l$F$$$k9T0Y$O%[%9%H%7%9%F%`B&$N2hLL$GI=<($5$;$k$3$H$,2DG=(B
$B$G$"$k!#(B

$B%m!<%+%k%f!<%6$O%j%b!<%H%G%9%/%H%C%W6&M-%;%C%7%g%s$,M-8z$G$"$k:]!"$=$3(B
$B$G9T$o$l$F$$$k9T0Y$r4F;k$7!"2?$+$NJ8=q$,%f!<%6$K$h$C$F=q$-49$($i$l$k$N(B
$B$rBT$D$3$H$,2DG=$G$"$k!#$3$N:]!"%m!<%+%k%f!<%6$,(B CTRL-ALT-DEL $B%-!<$NAH(B
$B$_9g$o$;$rBG80$7$?>l9g!"%j%b!<%H%f!<%6$O%j%b!<%H%G%9%/%H%C%W6&M-%;%C%7%g(B
$B%s$r@)8f$G$-$J$/$J$j!"%m!<%+%k%f!<%6$,%7%9%F%`$+$i$N%m%0%*%U!"$"$k$$$O(B
$B%7%9%F%`$N%7%c%C%H%@%&%s%*%W%7%g%s$,MxMQ2DG=$K$J$k!#(B
$B%m!<%+%k%f!<%6$,%m%0%*%U$rA*Br$9$k>l9g!"%7%9%F%`$O%m%0%*%U=hM}$r3+;O$9(B
$B$k$,!"$3$N4V$K=q$-49$(Cf$NJ8=q$rJD$8$k:]!"%7%9%F%`$OJQ99$5$l$?J8=q$rJ](B
$BB8$9$k$+$I$&$+$r%U%!%$%k$N%f!<%6$XLd$$9g$o$;$r9T$C$F$$$k!#(B
$B$3$N:]!"%7%9%F%`$O%f!<%6$,J]B8$+JQ99E@$NGK4~$rA*Br$9$k$^$G=hM}$rBT$A3. Opera Oversized Image Width Denial Of Service Vulnerability
BugTraq ID: 5717
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5717
$B$^$H$a(B:

Opera $B$O(B Opera Software $B$K$h$C$F3+H/$5$l$?(B Web $B%V%i%&%6$G$"$k!#(B
$B$3$N%=%U%H%&%'%"$O(B Windows $B$H(B Linux $B$r4^$`!"MM!9$J(B OS $B$GMxMQ2DG=$G$"$k!#(B

$BJs9p$K$h$k$H!"(BOpera $B$OHs>o$KBg$-$J2hA|%U%!%$%k$rl9g!"0U?^E*$J%3!<%I$,%/%i%$%"(B
$B%s%H$NZ$5$l$F$$$J$$$,!"$3$NLdBj$O$N%P!<%8%g%s$K$D$$$F$bF1MM$KLdBj$rJz$($F$$$k2DG=@-$,$"$k!#(B

4. ASMon Kernel Memory File Descriptor Leakage Vulnerability
BugTraq ID: 5720
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5720
$B$^$H$a(B:

asmon $B$O%U%j!<$K8x3+$5$l$F$$$k!"%*!<%W%s%=!<%9$N(B AfterStep $B%G%9%/%H%C%W(B
$B4D6-8~$1$N%7%9%F%`4F;kMQ%"%W%j%1!<%7%g%s$G$"$k!#$3$N%=%U%H%&%'%"$O(B UNIX
$B$*$h$S(B Linux $B$GF0:n$7!"(BFreeBSD $B$K$*$$$F$O(B setgid mem $B$"$k$$$O(B setgid kmem
$B$H$7$F%$%s%9%H!<%k$5$l$k$N$,%G%U%)%k%H$G$"$k!#(B

asmon $B$O3+$$$F$$$k%U%!%$%k$K$D$$$F$N%U%!%$%k%G%#%9%/%j%W%?$rO31L$7!"%+!<(B
$B%M%k%a%b%j$rK\Mh8"8B$r;}$?$J$$$K$b4X$o$i$:O31L$5$;$k7k2L$r0z$-5/$3$92D(B
$BG=@-$,$"$k!#Js9p$K$h$k$H!"967bh$CpJs$d$=$NB>$N>pJs$rC%l9g!"%7%9%F%`(B
$BA4BN$X$N6<0R$O$^$5$KL\A0$N$b$N$H$J$k$HA[Dj$5$l$kE@$ON10U$5$l$k$Y$-$G$"(B
$B$k!#(B

5. ASCPU Kernel Memory File Descriptor Leakage Vulnerability
BugTraq ID: 5716
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5716
$B$^$H$a(B:

ascpu $B$O%U%j!<$K8x3+$5$l$F$$$k!"%*!<%W%s%=!<%9$N(B AfterStep $B%G%9%/%H%C%W(B
$B4D6-8~$1$N%7%9%F%`4F;kMQ%"%W%j%1!<%7%g%s$G$"$k!#$3$N%=%U%H%&%'%"$O(B UNIX
$B$*$h$S(B Linux $B$GF0:n$7!"(BFreeBSD $B$K$*$$$F$O(B setgid mem $B$"$k$$$O(B setgid kmem
$B$H$7$F%$%s%9%H!<%k$5$l$k$N$,%G%U%)%k%H$G$"$k!#(B

ascpu $B$O3+$$$F$$$k%U%!%$%k$K$D$$$F$N%U%!%$%k%G%#%9%/%j%W%?$rO31L$7!"%+!<(B
$B%M%k%a%b%j$rK\Mh8"8B$r;}$?$J$$$K$b4X$o$i$:O31L$5$;$k7k2L$r0z$-5/$3$92D(B
$BG=@-$,$"$k!#Js9p$K$h$k$H!"967bh$CpJs$d$=$NB>$N>pJs$rC%l9g!"%7%9%F%`(B
$BA4BN$X$N6<0R$O$^$5$KL\A0$N$b$N$H$J$k$HA[Dj$5$l$kE@$ON10U$5$l$k$Y$-$G$"(B
$B$k!#(B

6. BubbleMon Kernel Memory File Descriptor Leakage Vulnerability
BugTraq ID: 5714
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5714
$B$^$H$a(B:

BubbleMon $B$O%U%j!<$K8x3+$5$l$F$$$k!"%*!<%W%s%=!<%9$N(B AfterStep $B%G%9%/%H%C(B
$B%W4D6-8~$1$N%7%9%F%`4F;kMQ%"%W%j%1!<%7%g%s$G$"$k!#$3$N%=%U%H%&%'%"$O(B
UNIX $B$*$h$S(B Linux $B$GF0:n$7!"(BFreeBSD $B$K$*$$$F$O(B setgid mem $B$"$k$$$O(B
setgid kmem $B$H$7$F%$%s%9%H!<%k$5$l$k$N$,%G%U%)%k%H$G$"$k!#(B

BubbleMon $B$O3+$$$F$$$k%U%!%$%k$K$D$$$F$N%U%!%$%k%G%#%9%/%j%W%?$rO31L$7!"(B
$B%+!<%M%k%a%b%j$rK\Mh8"8B$r;}$?$J$$$K$b4X$o$i$:O31L$5$;$k7k2L$r0z$-5/$3(B
$B$92DG=@-$,$"$k!#Js9p$K$h$k$H!"967bh$CpJs$d$=$NB>$N>pJs$rC%l9g!"%7%9%F%`(B
$BA4BN$X$N6<0R$O$^$5$KL\A0$N$b$N$H$J$k$HA[Dj$5$l$kE@$ON10U$5$l$k$Y$-$G$"(B
$B$k!#(B

7. WMMon Memory Character File Open File Descriptor Read Vulnerability
BugTraq ID: 5718
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5718
$B$^$H$a(B:

wmmon $B$O%U%j!<$K8x3+$5$l$F$$$k!"%*!<%W%s%=!<%9$N(B AfterStep $B%G%9%/%H%C%W(B
$B4D6-8~$1$N%7%9%F%`4F;kMQ%"%W%j%1!<%7%g%s$G$"$k!#$3$N%=%U%H%&%'%"$O(B UNIX
$B$*$h$S(B Linux $B$GF0:n$7!"(BFreeBSD $B$K$*$$$F$O(B setgid mem $B$"$k$$$O(B setgid kmem
$B$H$7$F%$%s%9%H!<%k$5$l$k$N$,%G%U%)%k%H$G$"$k!#(B

wmmon $B$O3+$$$F$$$k%U%!%$%k$K$D$$$F$N%U%!%$%k%G%#%9%/%j%W%?$rO31L$7!"%+!<(B
$B%M%k%a%b%j$rK\Mh8"8B$r;}$?$J$$$K$b4X$o$i$:O31L$5$;$k7k2L$r0z$-5/$3$92D(B
$BG=@-$,$"$k!#Js9p$K$h$k$H!"967bh$CpJs$d$=$NB>$N>pJs$rC%l9g!"%7%9%F%`(B
$BA4BN$X$N6<0R$O$^$5$KL\A0$N$b$N$H$J$k$HA[Dj$5$l$kE@$ON10U$5$l$k$Y$-$G$"(B
$B$k!#(B

8. WMNet2 Kernel Memory File Descriptor Leakage Vulnerability
BugTraq ID: 5719
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5719
$B$^$H$a(B:

wmnet2 $B$O%U%j!<$K8x3+$5$l$F$$$k!"%*!<%W%s%=!<%9$N(B AfterStep $B%G%9%/%H%C(B
$B%W4D6-8~$1$N%7%9%F%`4F;kMQ%"%W%j%1!<%7%g%s$G$"$k!#$3$N%=%U%H%&%'%"$O(B
UNIX $B$*$h$S(B Linux $B$GF0:n$7!"(BFreeBSD $B$K$*$$$F$O(B setgid mem $B$"$k$$$O(B
setgid kmem $B$H$7$F%$%s%9%H!<%k$5$l$k$N$,%G%U%)%k%H$G$"$k!#(B

wmnet2 $B$O3+$$$F$$$k%U%!%$%k$K$D$$$F$N%U%!%$%k%G%#%9%/%j%W%?$rO31L$7!"(B
$B%+!<%M%k%a%b%j$rK\Mh8"8B$r;}$?$J$$$K$b4X$o$i$:O31L$5$;$k7k2L$r0z$-5/$3(B
$B$92DG=@-$,$"$k!#Js9p$K$h$k$H!"967bh$CpJs$d$=$NB>$N>pJs$rC%l9g!"%7%9%F%`(B
$BA4BN$X$N6<0R$O$^$5$KL\A0$N$b$N$H$J$k$HA[Dj$5$l$kE@$ON10U$5$l$k$Y$-$G$"(B
$B$k!#(B

9. NetBSD Repeated TIOSCTTY IOCTL Buffer Overflow Vulnerability
BugTraq ID: 5722
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5722
$B$^$H$a(B:

NetBSD $B$KLdBj$,B8:_$9$k$3$H$,Js9p$5$l$F$$$k!#Js9p$K$h$k$H!"LdBj$OF~=PNO(B
$B$r@)8f$9$k%+!<%M%k%3!<%k$G$"$k(B TIOSCTTY (set controlling TTY) $B$KB8:_$9$k!#(B
TIOSCTTY $B$O(B TTY $B$r@)8f$9$k%;%C%7%g%s$r;XDj$9$k$?$a$K;HMQ$5$l$k!#(B

TIOSCTTY $B$N8F$S=P$7$OF10l%;%C%7%g%sFb$N%W%m%;%94V$G6&M-$5$l$?%+!<%M%k9=(B
$BB$BN$N%[!<%k%I%+%&%s%H$rA}2C$5$;$k!#$3$N$?$a!"7+$jJV$7$3$N%7%9%F%`%3!<(B
$B%k$r8F$S=P$9$3$H$K$h$jFbIt%P%C%U%!$rL58B$KA}2C$5$;!"$"$U$l$5$;$k$3$H$,(B
$B2DG=$G$"$k!#$3$NLdBj$K$h$j!"%m!<%+%k$N967b10. KDE Konqueror Oversized Image Width Denial of Service Vulnerability
BugTraq ID: 5721
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5721
$B$^$H$a(B:

Konqueror $B$O(B KDE $B%G%9%/%H%C%W$KIUB0$9$k%*!<%W%s%=!<%9$N(B Web $B%V%i%&%6$G(B
$B$"$k!#(B

$BJs9p$K$h$k$H!"$3$N%=%U%H%&%'%"$OHs>o$KBg$-$J2hA|%U%!%$%k$rCHq$7!"7k2L$H$7$F%/%i%C%7%e(B
$B$7$F$7$^$&!#(B

$B$3$NLdBj$O7k2L$H$7$F!"%a%b%jFbMF$rGK2u$9$k2DG=@-$,$"$k!#%a%b%jFbMF$,96(B
$B7bl9g!"%/%i%$%"%s%H$N11. DB4Web File Disclosure Vulnerability
BugTraq ID: 5723
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5723
$B$^$H$a(B:

DB4Web $B$O(B Web $B$r2p$7$F%j%l!<%7%g%J%k%G!<%?%Y!<%9$*$h$S$=$NB>$N>pJs8;$K(B
$BFI$_=q$-$N%"%/%;%9$,2DG=$J%"%W%j%1!<%7%g%s%5!<%P$G$"$k!#$3$N%"%W%j%1!<(B
$B%7%g%s$O(B Windows$B!"(BLinux$B!"$=$7$FMM!9$J(B UNIX $BM3Mh$N(B OS $B$GMxMQ2DG=$G$"$k!#(B

$B$3$N%"%W%j%1!<%7%g%s$K(B $B%G%#%l%/%H%j$N@)8B$r2sHr$9$kLdBj$,B8:_$9$k!#(B

$BNc$($PId9f2=$5$l$?(B '../' $BJ8;zNs$r4^$`$h$&$J!"0U?^E*$KAH$_N)$F$i$l$?%/%((B
$B%j$r$3$N%"%W%j%1!<%7%g%s$KAw?.$9$k$3$H$K$h$j!"967be$G2TF0$9$k(B Web $B%5!<%P$N(B 'cgi-bin' $B%G%#%l%/(B
$B%H%j$d(B Windows $B$N(B 'scripts' $B%G%#%l%/%H%j$r2p$7$F(B DB4Web $B%"%W%j%1!<%7%g(B
$B%s$N12. NetBSD LibC SetLocale Buffer Overflow Vulnerability
BugTraq ID: 5724
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5724
$B$^$H$a(B:

NetBSD $B%P!<%8%g%s(B 1.5.3 $B0JA0$K%P%C%U%!%*!<%P!<%U%m!<$NLdBj$,H/8+$5$l$?!#(B

$BJs9p$K$h$k$H!"%P%C%U%!%*!<%P!<%U%m!<$O(B libc $B$N(B setlocale() $B4X?t$KB8:_$9(B
$B$k!#(Bsetlocale() $B4X?t$O%W%m%0%i%`$N8=:_$N%m%1!<%k$rMW5a$^$?$O@_Dj$9$k$?(B
$B$a$K;HMQ$5$l$k!#Js9p$K$h$k$H!"$"$kFCDj$N>r7o$,K~$?$5$l$k>l9g$K$3$NLdBj(B
$B$rMxMQ$9$k967b$r9T$&$3$H$,2DG=$G$"$k!#$3$NLdBj$rMxMQ$9$k967b$,@.8y$7$?(B
$B>l9g!"%m!<%+%k$N%f!<%6$K$h$j(B root $B8"8B$G$N%"%/%;%98"$,C%r7o$,K~$?$5$l$k!#(B

$B$3$NLdBj$rMxMQ$9$k967b$,@.8y$9$k$?$a$K$O!"Bh(B 2 $B0z?t$,(B setuid/setgid $B$5(B
$B$l$?%"%W%j%1!<%7%g%s$+$i4D6-JQ?t$d%3%^%s%I%i%$%s$+$i$N0z?t$N$h$&$J30It(B
$B$+$iDs6!$5$l$k%G!<%?$+$iF@$i$l$kI,MW$,$"$k!#(BNetBSD $B$O(B setuid $B$5$l$?%W%m(B
$B%0%i%`(B (xterm) $B$r4^$`(B Xt $B$r;HMQ$9$kBgItJ,$N%"%W%j%1!<%7%g%s$,$3$N>r7o$r(B
$BK~$?$92DG=@-$,$"$k$HH/I=$7$F$$$k!#F1MM$K!"(Bzsh $B%Q%C%1!<%8$b$3$l$i$N>r7o(B
$B$rK~$?$92DG=@-$,$"$k$b$&$R$H$D$N%W%m%0%i%`$G$"$k!#(B

$B%m!<%+%k$N967b13. DB4Web Connection Proxy Vulnerability
BugTraq ID: 5725
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5725
$B$^$H$a(B:

DB4Web $B$O(B Web $B$r2p$7$F%j%l!<%7%g%J%k%G!<%?%Y!<%9$*$h$S$=$NB>$N>pJs8;$K(B
$BFI$_=q$-$N%"%/%;%9$,2DG=$J%"%W%j%1!<%7%g%s%5!<%P$G$"$k!#$3$N%"%W%j%1!<(B
$B%7%g%s$O(B Windows$B!"(BLinux$B!"$=$7$FMM!9$J(B UNIX $BM3Mh$N(B OS $B$GMxMQ2DG=$G$"$k!#(B

$BFCJL$KAH$_N)$F$i$l$?(B URL $B$r%j%/%(%9%H$9$k$3$H$K$h$j!"LdBj$rJz$($k%=%U%H(B
$B%&%'%"$r2TF0$5$;$F$$$k%3%s%T%e!<%?$+$i!"%j%b!<%H$N(B IP $B%"%I%l%9>e$N0U?^(B
$B$9$k%]!<%H$X$N%3%M%/%7%g%s$r3+;O2DG=$G$"$k!#(B

$B$3$N%=%U%H%&%'%"$O%G%P%C%0%(%i!<%Z!<%8Fb$K4^$^$l$k>pJs$r@8@.$9$k$?$a$K!"(B
TCP SYN $B%Q%1%C%H$rAw?.$9$k!#$3$N:]!"(B"connect() ok" $B$"$k$$$O(B "connect()
failed: Connection refused" $B$N$h$&$KI=<($5$l$k7k2L$O;XDj$5$l$?%3%s%T%e!<(B
$B%?>e$N%]!<%H$N>uBV$K4X$9$k>pJs$rH=CG$9$k$?$a$KMxMQ2DG=$G$"$k!#(B

14. NetBSD IPv4 Multicast Tools Buffer Overflow Vulnerability
BugTraq ID: 5727
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5727
$B$^$H$a(B:

NetBSD $B$K$*$$$F!"(Bpppd $B%G!<%b%s$*$h$SF1:-$5$l$F$$$kCf$N$$$/$D$+$N(B IPv4
$B%^%k%A%-%c%9%HMQ%=%U%H%&%'%"$K%P%C%U%!%*!<%P!<%U%m!<$r@8$8$kLdBj$,H/8+(B
$B$5$l$F$$$k!#(Bmrinfo(1)$B!"(Bmtrace(1)$B!"(Bpppd(8) $B$,$3$NLdBj$rJz$($F$$$k!#(B

$B$3$N%P%C%U%!%*!<%P!<%U%m!<$O(B FD_SET() $B$K4X$9$k=hM}$r9T$&:]$K==J,$J6-3&(B
$B%A%'%C%/$,9T$o$l$F$$$J$$$?$a$K@8$8$F$$$k!#967bl9g$N%U%!%$%k%G%#%9%/%j%W(B
$B%??t$N$_$,A[Dj$5$l$F$$$k(B select() $B4X?t$rMxMQ$7$F$$$k$?$a!"$3$l$i%W%m%0(B
$B%i%`$,e8B$+$=$l0J>e$N8D?t$G(B select()
$B$,8F$S=P$5$l$?>l9g!"%P%C%U%!%*!<%P!<%U%m!<$,@8$8$k$N$G$"$k!#(B

$B%^%k%A%-%c%9%H%D!<%k$d(B pppd $B%G!<%b%s$O!"(Bsetuid $B%S%C%H$,N)$F$i$l$?%"%W%j(B
$B%1!<%7%g%s$G$"$k!#$3$NLdBj$rMxMQ$9$k967b$K$h$j!"967b15. Lycos HTMLGear guestGear CSS HTML Injection Vulnerability
BugTraq ID: 5728
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5728
$B$^$H$a(B:

Lycos htmlGEAR $B$O!"(BLycos $B%M%C%H%o!<%/$N%f!<%6$,MxMQ2DG=$J(B Web $B%$%s%?!<%U%'(B
$B%$%9$rHw$($?%"%W%j%1!<%7%g%s$G$"$k!#$7$+$7!"B>$N%5%$%H$G$b;HMQ$9$k$3$H$,(B
$B2DG=$G$"$k!#(BguestGEAR $B$O!"%2%9%H%V%C%/%=%U%H%&%'%"$G$"$k!#(B

$B$3$N%=%U%H%&%'%"$O(B guestbook $B%U%#!<%k%IFb$N(B CSS (Cascading Style-Sheets)
$B%(%l%a%s%H$+$i(B HTML $B$r%U%#%k%?%j%s%0$7$F$$$J$$!#$3$N$?$a!"967bH$7$?%f!<%6$N(B Web $B%/%i%$%"%s%H$G(B
$B2rZMQ>pJs$NEp$_=P$7!"%f!<%6$rB>(B
$B$N%5%$%H$K%j%@%$%l%/%H!"%3%s%F%s%D$N2~JQ!"B>$N967b$KMxMQ$9$k$3$HEy$,2DG=(B
$B$G$"$k$H?d;!$5$l$k!#(B

$B$3$N%=%U%H%&%'%"$NJ#?t$N%P!<%8%g%s$K$*$$$F!"%$%a!<%8%?%0$K(B HTML $B$rCmF~2D(B
$BG=$G$"$k$H$NJs9p$b$"$k!#(B

16. Heimdal Kerberos Forwarding Daemon File Overwriting Vulnerability
BugTraq ID: 5729
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5729
$B$^$H$a(B:

Heimdal Kerberos $B$O(B KTH $BIUB0JBNs%3%s%T%e!<%?%;%s%?!<$K$h$C$FG[I[!"J]e=q$-2DG=$G$"$k!#(B

Heimdal Kerberos Forwarding Daemon $B$O%/%i%$%"%s%H$+$i%5!<%P$XE>Aw$5$l$k(B
$B>pJs$NCf$NFCDj$N$b$N$r==J,$KJ]8n$7$F$$$J$$!#$3$N$?$a!"G'>Z:Q$_$N%f!<%6(B
$B$N(B ID $B$rMxMQ$7$F%"%/%;%92DG=$J%U%!%$%k$K$D$$$F>e=q$-2DG=$K$J$k$H?d;!$5(B
$B$l$k!#$3$N7k2L!"(BDoS $B$d@x:_E*$K$O%G!<%?$N7gB;$r>7$/$3$H$,2DG=$G$"$k!#(B

$B967bBP>]e=q$-$9$k$?$a$K!"$3$NLdBj$r(B
$BMxMQ$9$k967b$,4k$F$i$l$k2DG=@-$,$"$kE@$ON10U$9$Y$-$G$"$k!#(B

$B8=;~E@$K$*$$$F$3$l0J>e$N>\:Y>pJs$OL$8x3+$G$"$k!#(B

17. Heimdal Kerberos Forwarding Daemon Zero Terminated String Passing Buffer Overflow Vulnerability
BugTraq ID: 5731
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5731
$B$^$H$a(B:

Heimdal Kerberos $B$O(B KTH $BIUB0JBNs%3%s%T%e!<%?%;%s%?!<$K$h$C$FG[I[!"J]Aw$5$l$k(B
$B>pJs$NCf$G!"J8;zNs$N=*C<$rE,@Z$K3NG'$7$F$$$J$$!#E>Aw$5$l$k>pJs$OB?$/$N(B
$B>l9g!"$h$j9b0L$N8"8B$GpJs$,0z$-EO$5$l$k@h$N%W%m%0%i%`$N$$$:$l$+$G%P%C%U%!(B
$B%*!<%P!<%U%m!<$r@8$8$5$;$k$?$a$N967b$KMxMQ2DG=$G$"$k!#(B

$B$3$NLdBj$K$h$j!"$h$j9b0L$N8"8B$G$N0U?^E*$J%3!<%I$N7$/$3$H$,2DG=$K$J$k!#(B

18. Joe Text Editor Backup SetUID Executable Editing Permission Elevation Vulnerability
BugTraq ID: 5732
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 17 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5732
$B$^$H$a(B:

Joe $B$O%U%j!<$KMxMQ2DG=$J%*!<%W%s%=!<%9$N%F%-%9%H%(%G%#%?$G$"$k!#$3$N%((B
$B%G%#%?$O(B UNIX $B$*$h$S(B Linux $B$GMxMQ2DG=$G$"$k!#(B

Joe $B$O%m!<%+%k%f!<%6$,8"8B$r>:3J2DG=$K$J$kLdBj$rJz$($F$$$k2DG=@-$,$"$k!#(B

joe $B$,%U%!%$%k$NJT=8$K;HMQ$5$l$k:]!"(Bjoe $B$OJT=8$9$k%U%!%$%kL>$N;O$a$K%A(B
$B%k%@$rIU$1!"%U%!%$%k$N%P%C%/%"%C%W$r<+F0E*$K:n@.$9$k!#(B

joe $B$,(B setuid $B$5$l$?%U%!%$%k$NJT=8$K;HMQ$5$l$k:]!"(Bjoe $B$O(B setuid $B$5$l$?(B
$B%U%!%$%k$N%3%T!<$r<+F0E*$K:n@.$9$k!#%3%T!<$5$l$?%U%!%$%k$N%Q!<%_%C%7%g(B
$B%s$O=jM-19. Purity Local Buffer Overflow Vulnerabilities
BugTraq ID: 5702
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Sep 13 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5702
$B$^$H$a(B:

Purity $B$OJ8>O$N!V@5$7$$=q$-J}!W$K4X$9$k%F%9%H$r<+F0E*$K9T$&%=%U%H%&%'%"(B
$B$G$"$k!#$3$N%=%U%H%&%'%"$OB?$/$N(B UNIX $B$dMM!9$J(B Linux $B>e$G2TF0$7!"$^$?!"(B
Debian $B$KF1:-$5$l$F$$$k!#(B

Purity $B$O%m!<%+%k$N967buBV$G%$%s%9%H!<%k$5$l$F$*$j!"$3(B
$B$NLdBj$rMxMQ$9$k967b$,@.8y$7$?>l9g$K$O8"8B>:3J$,2DG=$K$J$k$H?d;!$5$l$k!#(B
$BB?$/$N%$%s%9%H!<%k>uBV$G$O!"$3$N%W%m%0%i%`$O(B games $B%0%k!<%W$K=jM-8"$,M?(B
$B$($i$l$F$$$k!#(B

20. Enterasys SSR8000 SmartSwitch Port Scan Denial Of Service Vulnerability
BugTraq ID: 5703
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 13 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5703
$B$^$H$a(B:

SSR8000 $B$O(B Enterasys $B$K$h$jHNGd$*$h$SJ]e$N(B 15077 $BHV$*(B
$B$h$S(B 15078 $BHV%]!<%H$G@\B3$rBT$Ae$G(B 2 $BAX(B
$B$*$h$S(B 3 $BAX$G(B IP $B%H%i%U%#%C%/$rAw?.$9$k$h$&$K@_7W$5$l$F$$$k!#(B

$B%]!<%H%9%-%c%s$r$5$l$?:]!"(BSSR8000 $B%9%$%C%A$OM=A[ITG=$JF0:n$r$9$k$3$H$,(B
$BH/8+$5$l$?!#$3$l$i$N%9%$%C%A$,(B TCP $B%H%i%U%#%C%/$NFCDj$NuBV$K(B
$B4Y$k!#$3$N>u67$O!"%9%$%C%A$r%/%i%C%7%e$5$;$k$?$a$K>o$K:F8=2DG=$G$"$k$3(B
$B$H$,Js9p$5$l$F$$$k!#(B

$B$3$NLdBj$O(B DoS $B$r0z$-5/$3$9$?$a$K0-MQ$5$l$k2DG=@-$,$"$k!#(B

21. Avaya IP Office Malformed Packets Denial Of Service Vulnerability
BugTraq ID: 5704
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 13 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5704
$B$^$H$a(B:

Avaya IP Office $B$O(B IP $BEEOC5!4o$G$"$k!#(B

IP Office $B$O(B DoS $B$N>u67$r0z$-5/$3$9$?$a$K0-MQ$5$l$k2DG=@-$N$"$kLdBj$rJz(B
$B$($F$$$k$3$H$,Js9p$5$l$F$$$k!#(B

$B%f!<%6$*$h$S4IM}e$G2~cb$5(B
$B$l$?%Q%1%C%H$re$G967b\:Y>pJs$O8x3+$5$l$F$$$J$$!#(B

22. Savant Webserver cgitest.exe Denial Of Service Vulnerability
BugTraq ID: 5706
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 13 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5706
$B$^$H$a(B:

Savant webserver $B$O(B Microsoft Windows $B>e$G2TF0$9$k%U%j!<$N(B Web $B%5!<%P(B
$B$G$"$k!#(B

cgi-bin $B%G%#%l%/%H%j$NCf$K%G%U%)%k%H$GA^F~$5$l$k(B "cgitest.exe" $B%U%!%$(B
$B%kCf$K%P%C%U%!%*!<%P!<%U%m!<$NLdBj$,B8:_$9$k$3$H$,Js9p$5$l$F$$$k!#(B

cgitest.exe $B$Ou67$O967b23. Savant Webserver File Disclosure Vulnerability
BugTraq ID: 5709
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 13 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5709
$B$^$H$a(B:

Savant webserver $B$O(B Microsoft Windows $B>e$G2TF0$9$k%U%j!<$N(B Web $B%5!<%P$G(B
$B$"$k!#(B

$BId9f2=$5$l$?%9%Z!<%9(B (%20) $B$"$k$$$O%T%j%*%I(B (%2e) $B$r(B HTTP $B%j%/%(%9%HFb(B
$B$K;XDj$5$l$?%U%!%$%k$N8e$m$KIU$12C$($k$3$H$K$h$j!"967bH2DG=$K$J$k!#(B

$B$3$NJ}K!$rMxMQ$9$k$3$H$G!"4IM}]$N%U%)%k(B
$B%@Fb$XK\Mh8"8B$r;}$?$J$$$K$b4X$o$i$:%"%/%;%92DG=$K$J$k!#(B

$BNc$($P!"4IM}l9g$G$"$C$?$H$7$F$b!"K\Mh%"%/%;%9$r9T$&8"8B$r;}$?$J$$%f!<%6$,(B
$B$3$N@)8B$r2sHr$9$k2DG=@-$,$"$k!#(B

$B$3$NLdBj$rMxMQ$9$k967b$r9T$&$?$a$K%9%Z!<%9$rMxMQ$7$F$$$k>l9g!"(B/ $B$b(B HTTP
$B%j%/%(%9%H$KIU$12C$($i$l$M$P$J$i$J$$E@$K$D$$$F$ON10U$9$Y$-$G$"$k!#(B

$B%P!<%8%g%s(B 3.1 $B0JA0$N@=IJ$b$3$NLdBj$N1F6A$r24. Savant Webserver Malformed Content-Length Denial Of Service
Vulnerability
BugTraq ID: 5707
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Sep 13 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5707
$B$^$H$a(B:

Savant webserver $B$O(B Microsoft Windows $B>e$G2TF0$9$k%U%j!<$N(B Web $B%5!<%P(B
$B$G$"$k!#(B

Savant webserver $B$O%/%i%$%"%s%H$+$i$N(B Content-Length $B$NCM$,@5$N@0?t$G$"(B
$B$k$3$H$rA0Ds$K$7$F$$$k!#$3$N$?$a!"Ii$N?t$ruBV$K$h$C$FI=<($5$l$k(B Windows $B$N%(%i!<%a%C%;!<%8$KBP$7$F25. Mac OS X NetInfo Manager Unauthorized Access Vulnerability
BugTraq ID: 5705
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B:Sep 13 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5705
$B$^$H$a(B:

NetInfo Manager $B$O(B Apple $B$K$h$C$FHNGd!"J]Z$r9T$&$3$H$J$/$3$N%=%U%H%&%'%"(B
$B$rMxMQ$9$k:n6H$r9T$($F$7$^$&LdBj$,H/8+$5$l$F$$$k!#(B

NetInfo Manager $B$O>N$r;}$D%U%!%$%kL>$rMxMQ$9$k%7%s%\%j%C%/%j%s%/$r(B
$BMxMQ$9$k967b$r4k$F$k$3$H$,2DG=$K$J$k!#(B

$B$J$*!"$3$l$OL$8!>Z$G$O$"$k$,!"(BTerminal.App $B$N%3%T!<$r(B root $B8"8B$G26. BRU XBRU Insecure Temporary File Vulnerability
BugTraq ID: 5708
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B:Sep 13 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5708
$B$^$H$a(B:

BRU $B$O(B Tolis Group $B$K$h$jG[I[$5$l$F$$$k%P%C%/%"%C%W$*$h$SI|5l%f!<%F%#(B
$B%j%F%#$G$"$k!#$3$N(B BID $B$G<($5$l$F$$$kLdBj$O(B Linux $BHG%f!<%F%#%j%F%#$X1F(B
$B6A$r5Z$\$9!#(B

$BFCDj$N>u672<$K$*$$$F!"%m!<%+%k%f!<%6$O$h$j9b0L$N8"8B$re=q$-$5$l$kB>%U%!%$%k$X$N%7%s%\(B
$B%j%C%/%j%s%/$r:n@.$9$k$3$H$,2DG=$G$"$k!#(B

$B$3$NLdBj$OG$0U$N%3%^%s%I$re=q$-$9$k$?$a(B
$B$bMxMQ$9$k$3$H$,2DG=$G$"$k!#$3$N>u672<$K$*$$$F%m!<%+%k%f!<%6$,$3$NLdBj(B
$B$rMxMQ$9$k967b$r@.8y$5$;$?>l9g!"(Broot $B8"8B$rC%27. Microsoft Windows Encrypted RDP Packet Information Leakage Vulnerability
BugTraq ID: 5711
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B:Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5711
$B$^$H$a(B:

Microsoft Windows Remote Desktop Protocol (RDP) $B$O%M%C%H%o!<%/$r2p$7$?(B
$B%j%b!<%H$+$i$N%G%9%/%H%C%W4D6-$NI=<($H$=$l$X$NF~NO4D6-$rDs6!2DG=$K$9$k(B
$B%W%m%H%3%k$G$"$k!#(B

$B0E9f2=(B RDP $B$,pJs$rO31L$7$F$7$^$&LdBj$r(B
$BJz$($k5?$$$,$"$k!#(B

RDP $B$N0E9f2=$rM-8z$K$9$k$3$H$OuBV$N%Q%1%C%H$G$N(B 8 $B%P%$%H$N(B HMAC $B%A%'%C(B
$B%/%5%`$,$=$l$>$l$N%Q%1%C%H$KIU2C$5$l$k!#$3$N:]!"(BRC4 $B$rMxMQ$9$k0E9f=hM}(B
$B$N$?$a$N80$O(B 4096 $B%Q%1%C%HKh$KJQ99$5$l$k$,!"%;%C%7%g%s$rDL$8$F(B HMAC $B80(B
$B$O0l4S$7$FF1$8CM$,MxMQ$5$l$F$$$k$N$G$"$k!#(B
$BIU2C$5$l$k%A%'%C%/%5%`$O%Q%1%C%HD9!"%Q%1%C%H$NFbMF!"(BHMAC $B80$+$i5a$a$i$l!"(B
8 $B%P%$%H$ND9$5$G$"$k!#$3$N$?$a!"F10lFbMF$N%Q%1%C%H$OF10l$N%A%'%C%/%5%`(B
$B$r;}$D$3$H$K$J$C$F$7$^$&$N$G$"$k!#F10l$N%Q%1%C%H$,7+$jJV$7Aw?.$5$l$k>l(B
$B9g!"%M%C%H%o!<%/%H%i%U%#%C%/$rEpD0$9$k$3$H$,2DG=$J%j%b!<%H$N967bpJs$,O31L$9$k2DG=@-$,@x:_E*$KB8:_$9$k!#967b]$r?dDj2DG=$G$"$k!#(B

Microsoft's Terminal Services Virtual Channels $B$KMQ$$$i$l$k$9$Y$F$N%W%i(B
$B%0%$%s$b$3$NLdBj$N1F6A$r28. Microsoft Windows RDP Keystroke Injection Vulnerability
BugTraq ID: 5712
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B:Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5712
$B$^$H$a(B:

Microsoft Windows Remote Desktop Protocol (RDP) $B$O%M%C%H%o!<%/$r2p$7$?(B
$B%j%b!<%H$+$i$N%G%9%/%H%C%W4D6-$NI=<($H$=$l$X$NF~NO4D6-$rDs6!2DG=$K$9$k(B
$B%W%m%H%3%k$G$"$k!#(B

Microsoft Windows Remote Desktop Protocol (RDP) version 5.0 $B$O@x:_E*$K(B
$B%M%C%H%o!<%/Fb$N%H%i%U%#%C%/$rEpD02DG=$J%j%b!<%H$N967bl9g!"3F%Q%1%C(B
$B%H$4$H$K%A%'%C%/%5%`$O@8@.$5$l$k!#(B
$B8E$$%P!<%8%g%s$N(B RDP $B$G$O!"%A%'%C%/%5%`$O%f%K!<%/$J%?%$%`%9%?%s%W!"%-!<(B
$B%3!<%I$*$h$S%-!<%$%Y%s%H%?%$%W$r;HMQ$7$F7W;;$5$l$k!#(B
$B$3$N$3$H$O!"$=$l$>$l$N%Q%1%C%H$KBP$9$k%A%'%C%/%5%`$,%f%K!<%/$G$"$k$HJ]>Z(B
$B$9$k!#(B

Microsoft Windows RDP $B%P!<%8%g%s(B 5.0 $B$G$O6&DL$N%3%^%s%I$*$h$SF~NO%$%Y%s(B
$B%H%Q%1%C%H$r05=L$9$k$?$a$N5!9=$rF3F~$7$?!#7k2L$H$7$F!"%A%'%C%/%5%`$r7W(B
$B;;$9$k$N$KMQ$$$i$l$kJ}K!$O%f%K!<%/$J%?%$%`%9%?%s%W$r;HMQ$7$J$/$J$C$?!#(B
$B$3$N$3$H$K$h$j8D!9$N%-!<%9%H%m!<%/$N$h$&$K!"%A%'%C%/%5%`$K4p$E$/FCDj$N(B
$B%$%Y%s%H$r?dDj$9$k2DG=@-$,@8$8$k!#(B

$B%M%C%H%o!<%/%H%i%U%#%C%/$rEpD0$7!"$+$DH/@8$7$?%$%Y%s%H$N29. Microsoft Windows XP Professional Remote Desktop Denial Of Service
Vulnerability
BugTraq ID: 5713
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B:Sep 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/5713
$B$^$H$a(B:

Microsoft Windows XP Professional $B$O%7%s%0%k%f!<%6MQ(B Remote Desktop
Protocol (RDP) $B%5!<%P$rF1:-$7$F$*$j!"%M%C%H%o!<%/$r2p$7$?%j%b!<%H%G%9%/(B
$B%H%C%W4D6-I=<($H$=$3$X$NF~NO$r2DG=$K$7$F$$$k!#(B

The Microsoft Windows XP Professional $B$K$*$1$k(B Remote Desktop $B$NuBV$K4Y$k2DG=@-$,B8:_$9$k!#(B

$B0-0U$"$k%/%i%$%"%s%H$,0U?^E*$KAH$_N)$F$i$l$?%Q%1%C%H$r!"%/%i%$%"%s%H$H(B
$B%5!<%P4V$G$N%0%i%U%#%C%/5!G=$N%M%4%7%(!<%7%g%sCf$KLdBj$rJz$($k%3%s%T%e!<(B
$B%?$KAw?.$9$k$3$H$K$h$j!"$3$N>uBV$K4Y$i$;$k$3$H$,2DG=$G$"$k!#(B
$B%0%i%U%#%C%/5!G=$O(B PDU Confirm Active $B%Q%1%C%H$K$h$C$F%M%4%7%(!<%7%g%s(B
$B$5$l$k!#(B

$B%/%i%$%"%s%H$O%5%]!<%H$5$l$F$$$k5!G=$K4p$E$-!"IA2h%3%^%s%I$rH/9T$9$k$H(B
$B9M$($i$l$k$,!"$3$N:]$K(B Pattern BLT $B%3%^%s%I$,(B PDU Confirm Active $B%Q%1%C(B
$B%HFb$G;XDj$5$l$?>l9g!"%Q%?!<%s$NIA2h$r(B Microsoft Windows XP Professional
$B$O;n$_!"7k2L$H$7$F%/%i%C%7%e$9$k2DG=@-$,$"$k!#(BPattern BLT $B%3%^%s%I$r;X(B
$BDj$9$k$h$&$KAH$_N)$F$i$l$?%Q%1%C%H$r:n@.2DG=$G$"$j!"$3$N:]$K%/%i%C%7%e(B
$B$,@8$8$k!#(B

$B%5!<%P$O%m%0%$%s2hLL$,I=<($5$l$k:]!"%f!<%6G'>Z$K@hN)$C$F$3$NLdBj$rMxMQ(B
$B$9$k967b$KGx$5$l$k!#(B

$B%j%b!<%H%G%9%/%H%C%W$,F0:n2DG=$J4D6-$N>l9g$N$_!"(BMicrosoft Windows XP
Professional $B$K$*$$$F$3$NLdBj$r@8$8$k2DG=@-$,$"$k!#$3$NLdBj$O$^$?!"(B 
Windows .NET Standard Server $B$K$bB8:_$9$k!#(B

III. SECURITYFOCUS NEWS AND COMMENTARY
------------------------------------------
1. Cybersecurity Plan Offends No One
$BCxD$7$J$$O@2H$O$=$l$G$OIT==J,$G$"$k$H=R$Y$F$$$k!#(B

http://online.securityfocus.com/news/677

2. Flaws in Microsoft VM. Fix now
$BCxA[%^%7%s$N]$N%3%s%T%e!<%?A4BN$r4IM}2<$K<}$a$k$3$H$,2DG=$K$J$kE@$,5s$2$i$l$k!#(B
$B$3$N$?$a%f!<%6$K$h$k?WB.$J%Q%C%A$NF~http://online.securityfocus.com/news/704

3. Linux rootkit hacker suspect arrested in UK
$BCxN$9$k(B Surbiton $B=P?H$N(B 21 $B:P$N@DG/$,!"(BLinux $B%5!<%P$N%/%i%C%-%s%0(B
$B$rMF0W$K9T$($k(B T0rn rootkit $B$r:n@.!"G[I[$r9T$C$?MF5?$GBaJa$5$l$?!#(B

http://online.securityfocus.com/news/703

4. White House panel's cybersecurity plan avoids calls for new government
rules
$BCxlF08~$N1F6ANO(B ($B@/I\$+$i$N(B
$B;XNa$G$O$J$$$b$N(B) $B$+$iLdBj$r2r7h$5$;$k$3$H$K$h$j!"%3%s%T%e!<%?%;%-%e%j(B
$B%F%#$N@x:_E*$J%3%s%T%e!<%?%;%-%e%j%F%#$N6<0R$KBP=h$9$Y$-$G$"$k$H?eMKF|(B
$B$KJs9p$7$?!#(B

http://online.securityfocus.com/news/670

IV.SECURITYFOCUS TOP 6 TOOLS
-----------------------------
1. Server Scan 2002
$B:nhttp://www.securitystorm.com
$B4XO"$9$k(BURL:
http://www.securitystorm.net/products/tools/serverscan/index.asp
$BF0:n4D6-(B: Windows 2000, Windows 95/98, Windows NT
$B$^$H$a(B:

Server Scan $B$O%M%C%H%o!<%/>e$N(B Web $B%5!<%P$r8!CN$9$k4JC1$J%D!<%k$G$9!#Ev(B
$B=i$O%M%C%H%o!<%/>e$K@_CV$9$k8"8B$r;}$?$J$$$K$b4X$o$i$:@_CV$5$l$?(B Web $B%5!<(B
$B%P$r8!CN$9$kL\E*$G:n@.$5$l$^$7$?!#(BServer Scan $B$OL58"8B$K@_CV$5$l$?(B Web
$B%5!<%P$ND4::$+$i!"MxMQCf$N%M%C%H%o!<%/Fb$G$I$N$h$&$J2. GFI LANguard Network Security Scanner (N.S.S.) v3.0
$B:nhttp://www.gfisoftware.com/lannetscan/index.htm
$BF0:n4D6-(B: Windows 2000, Windows 95/98, Windows NT, Windows XP
$B$^$H$a(B:

GFI LANguard Network Security Scanner (N.S.S.) $B$O%M%C%H%o!<%/$r967b$9$k(B
$B$?$a$K@x:_E*$K%/%i%C%+!<$,;HMQ$9$k$G$"$m$&$HA[Dj$5$l$kJ}K!A4BN$KBP$7!"(B
$B$=$l$i$N$$$:$l$+$,MxMQ$5$l$F$$$k$+$I$&$+$K4X$7$F%M%C%H%o!<%/$r8!::$9$k(B
$B%D!<%k$G$9!#%M%C%H%o!<%/>e$GF0:n$7$F$$$k(B OS $B$*$h$S%"%W%j%1!<%7%g%s$r2r(B
$B@O$9$k$3$H$K$h$j!"(BGFI LANguard N.S.S. $B$O%M%C%H%o!<%/Cf$N@x:_E*$J%;%-%e(B
$B%j%F%#%[!<%k$rFCDj$7$^$9!#$3$l$O$9$J$o$A!"%M%C%H%o!<%/>e$GLdBj$rJz$($k(B
$B%3%s%T%e!<%?$rC5$7!"%/%i%C%+!<$,$=$l$i$NLdBj$rH/8+$9$kA0$K@h$s$8$FLdBj(B
$B$r7Y9p$9$k$3$H$K$h$j!"%/%i%C%+!<$,$=$l$i$NLdBj$rMxMQ$9$k967b$r9T$&A0$K(B
$BLdBj$rBP=h2DG=$K$7$^$9!#(B

3. archivemail v0.5.1
$B:nhttp://archivemail.sourceforge.net/
$BF0:n4D6-(B: POSIX
$B$^$H$a(B:

archivemail $B$O%a!<%k%\%C%/%9$NCf$N8E$$EE;R%a!<%k$r%"!<%+%$%V$7!"05=L$9(B
$B$k$?$a$N(B Python $B$G5-=R$5$l$?%D!<%k$G$9!#$3$N%=%U%H%&%'%"$O;XDj$5$l$?F|(B
$B?t$h$j$b8E$$%a%C%;!<%8$r(B gzip $B$K$h$j05=L$5$l$k8DJL$N(B mbox $B7A<0$N%a!<%k(B
$B%\%C%/%9$K0\F0$5$;$k$3$H$,2DG=$G$9!#$"$k$$$O!"8E$$EE;R%a!<%k$r<+M3$K:o(B
$B=|$9$k$3$H$,2DG=$G$9!#$3$N%=%U%H%&%'%"$O(B mbox$B!"(BMH $B$*$h$S(B maildir $B7A<0$N(B
$B%a!<%k%\%C%/%9$N%"!<%+%$%V$KBP1~$7$^$9!#(B

4. the Anomy mail sanitizer v1.54
$B:nhttp://mailtools.anomy.net/
$BF0:n4D6-(B: POSIX
$B$^$H$a(B:

Anomy mail sanitizer $B$ONc$($P%H%m%$$NLZGO$d%&%$%k%9$J$I$NEE;R%a!<%k$KM3(B
$BMh$9$k%;%-%e%j%F%#%j%9%/$r7Z8:$9$k$h$&$K@_7W$5$l$?%U%#%k%?%W%m%0%i%`$G(B
$B$9!#$3$N%=%U%H%&%'%"$OG$0U$N(B RFC822 $B=`5r!"$"$k$$$O!"(BMIME $B=`5r$N%a%C%;!<(B
$B%8$NAH$_9g$o$;$r%9%-%c%s2DG=$G!"E:IU%U%!%$%k$N:o=|$dL>>NJQ99!"DL>o$"$j(B
$BF@$J$$D9$5$N(B MIME $B%X%C%@%U%#!<%k%I$N4]$a!"(BJavaScript $B$rL58z2=$9$k$3$H$K(B
$B$h$k(B HTML $B$N%U%#%k%?%j%s%0$,2DG=$G$9!#(B
$B$3$N%=%U%H%&%'%"$G$O(B Perl $B$N$_$G3+H/$5$l$?!"N`;w$N%W%m%0%i%`$KHf3S$9$k(B
$B$H$h$jM-8z$G$5$i$K@53N$J=hM}$r2DG=$K$9$k!"0lEY$@$1=hM}$r$9$k%?%$%W$N(B
MIME $B%Q!<%5$rMxMQ$7$F$$$^$9!#(B
$B$3$N%=%U%H%&%'%"$O%5!<%I%Q!<%F%#@=$N%&%$%k%98!CN%=%U%H%&%'%"$rAH$_9~$`(B
$B5!G=$rHw$($F$$$^$9!#(B

5. bcrypt v1.1
$B:nhttp://bcrypt.sourceforge.net/index.html
$BF0:n4D6-(B: POSIX
$B$^$H$a(B:

bcrypt $B$O%W%i%C%H%U%)!<%`$K0MB8$7$J$$0\?"@-$rL\E*$H$9$k!"(Bblowfish $B$rMx(B
$BMQ$7$?%U%!%$%k$N0E9f2=%f!<%F%#%j%F%#$G$9!#$3$N%=%U%H%&%'%"$O(B 448bit $B$N(B
$B6/EY$N0E9f2=5!G=$rDs6!$7$F$$$kB>!"Dc%l%Y%k$G$N%G!<%?I|5l$r$h$j:$Fq$K$9(B
$B$k$?$a$K!"%U%!%$%k$N:o=|$K@hN)$A%i%s%@%`$JCM$G;XDj$5$l$?%U%!%$%k$r>e=q(B
$B$-$9$k5!G=$rDs6!$7$F$$$^$9!#(B

6. Demarc PureSecure v1.6
$B:nhttp://www.demarc.com/
$BF0:n4D6-(B: BSDI, FreeBSD, HP-UX, Linux, NetBSD, OpenBSD, Perl (any system
supporting perl), UNIX, Windows 2000, Windows NT, Windows XP
$B$^$H$a(B:

$B%U%!%$%k$N0l4S@-%A%'%C%/$r9T$&C10l$N%W%m%0%i%`!"$"$k$$$O!"MxMQCf$N%M%C(B
$B%H%o!<%/$K4X$9$kE~C#@-$dM-8z@-$r4F;k$9$kJL8D$N%W%m%0%i%`!"$5$i$K$OJL$N(B
$B?/F~8!CN$r;n$_$k%M%C%H%o!<%/4F;kMQ%W%m%0%i%`$NBe$o$j$K!"(BDemarc PureSecure
$B$O$3$l$i%5!<%S%9$rC10l$N%/%i%$%"%s%H(B/$B%5!<%P%W%m%0%i%`$GA4$F$r7s$MHw$($5(B
$B$;$F$$$^$9!#%M%C%H%o!<%/Fb$N0[$J$k5!4o$N>uBV$r4F;k$9$k$3$H$,2DG=$J$@$1(B
$B$G$J$/!"=8Cf4IM}$7$F$$$k0l$D$N>l=j$+$i%M%C%H%o!<%/Fb$NA4$F$NJQ2=$KBP1~(B
$B$9$k$3$H$,2DG=$G$9!#(B
--
$BLu(B: $B:d0f=g9T(B(SAKAI Yoriyuki)$B!">.3^8691M:(B(OGASAWARA Tsuneo)$B!"(B
$B@PED6G5W(B(ISHIDA Akihisa)$B!"http://www.lac.co.jp/security/
smime.p7s