SecurityFocus Newsletter #172 2002-11-18->2002-11-22

To: bugtraq-jp@securityfocus.com
Subject: SecurityFocus Newsletter #172 2002-11-18->2002-11-22
From: SAKAI Yoriyuki <sakai@lac.co.jp>
Date: Tue, 3 Dec 2002 10:25:19 +0900
Delivered-To: mailing list bugtraq-jp@securityfocus.com
Delivered-To: moderator for bugtraq-jp@securityfocus.com
List-Help: <mailto:bugtraq-jp-help@securityfocus.com>
List-Id: <bugtraq-jp.list-id.securityfocus.com>
List-Post: <mailto:bugtraq-jp@securityfocus.com>
List-Subscribe: <mailto:bugtraq-jp-subscribe@securityfocus.com>
List-Unsubscribe: <mailto:bugtraq-jp-unsubscribe@securityfocus.com>
Mailing-List: contact bugtraq-jp-help@securityfocus.com; run by ezmlm
References: <Pine.LNX.4.43.0211250953580.23604-100000@mail.securityfocus.com>
$B:d0f(B@$B%i%C%/$G$9!#(B

SecurityFocus Newsletter $BBh(B 172 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

---------------------------------------------------------------------------
BugTraq-JP $B$K4X$9$k(B FAQ($BF|K\8l(B):
http://www.securityfocus.com/popups/forums/bugtraq-jp/faq.shtml
$B!&(BSecurityFocus Newsletter $B$NOBLu$O(B BugTraq-JP $B$G0lH$/$@$5$$(B
---------------------------------------------------------------------------
---------------------------------------------------------------------------
SecurityFocus Newsletter $B$K4X$9$k(BFAQ($B1Q8l(B):
http://www.securityfocus.com/popups/forums/securityfocusnews/intro.shtml
BugTraq $B$K4X$9$k(B FAQ($B1Q8l(B):
http://www.securityfocus.com/popups/forums/bugtraq/faq.shtml
---------------------------------------------------------------------------
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B SecurityFocus $B$N5v2D$r3t<02qe$G9T$o$l$F$$$^$9!#(B
$B!&(BSecurityFocus Newsletter $B$NOBLu$r(B Netnews, Mailinglist, World Wide Web,
  $B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$NA4J80zMQ$r$*4j$$$7$^$9!#(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;$s$,!"(B
  $B=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurityFocus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k7A<0$N(B
  $B%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://online.securityfocus.com/archive/79
---------------------------------------------------------------------------
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02ql9g!"(BBugTraq-JP $B$X(B Errata $B$H$7$F=$@5(B
  $BHG$r$4Ej9FD:$/$+!"4F=$l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
---------------------------------------------------------------------------
This translation is encoded and posted in ISO-2022-JP.

$B86HG(B:
Date: Mon, 25 Nov 2002 09:57:06 -0700 (MST)
Message-ID: <Pine.LNX.4.43.0211250953580.23604-100000@mail.securityfocus.com>

SecurityFocus Newsletter #172
-----------------------------

This Issue is Sponsored by: SPI Dynamics

I. FRONT AND CENTER($BF|K\8lLu$J$7(B)
     1. SQL Injection and Oracle
     2. Complete Snort-based IDS Architecture, Part Two
     3. Caught in a BIND
     4. SecurityFocus DPP Program
     5. InfoSec World Conference and Expo/2003 (March 10-12, 2003,Orlando, FL)
II. BUGTRAQ SUMMARY
     1. Courier SqWebMail File Disclosure Vulnerability
     2. Lonerunner Zeroo HTTP Server Remote Buffer Overflow Vulnerability
     3. NeoSoft NeoBook 4 ActiveX Control Arbitrary File Type Inclusion...
     4. Perception LiteServe Malformed GET Request Buffer Overflow...
     5. Nullmailer Invalid User Denial Of Service Vulnerability
     6. AOL Instant Messenger Screen Name Buffer Overflow Vulnerability
     7. PHPBB2 ViewTopic.PHP Cross Site Scripting Vulnerability
     8. Macromedia Flash  SWRemote Heap Corruption Vulnerability
     9. MailEnable Email Server Buffer Overflow Vulnerability
     10. TFTPD32 Arbitrary File Download/Upload Vulnerability
     11. TFTPD32 Long Filename Buffer Overflow Vulnerability
     12. DHCPCD Character Expansion Remote Command Execution Vulnerability
     13. Linksys Router Unauthorized Management Access Vulnerability
     14. iPlanet Admin Server Cross Site Scripting Vulnerability
     15. iPlanet Admin Server Insecure Open Call Vulnerability
     16. Microsoft Internet Explorer IFRAME dialogArguments Cross-Zone...
     17. QNX Multiple Program Insecure Default Permissions Vulnerability
     18. Mhonarc Mail Header HTML Injection Vulnerability
     19. QNX Photon MicroGUI Clipboard Insecure Data Storage Vulnerability
III. SECURITYFOCUS NEWS ARTICLES
     1. Comdex's Secure Side
     2. Lawyers Fear Misuse of Cyber Murder Law
     3. On the Microsoft FTP server leak
     4. Internet Provisions in Homeland Security Bill
     5. Sex, Text, Revenge, Hacking and Friends Reunited
IV. SECURITYFOCUS TOP 6 TOOLS
     1. guard bash v1.0
     2. Paketto Keiretsu v1.0
     3. mod_authenticache v2.0.6
     4. SNMP Trap Translator v0.4
     5. slurm v0.0.7
     6. irclog-xml v0.07a

I. FRONT AND CENTER($BF|K\8lLu$J$7(B)
---------------------------------

II. BUGTRAQ SUMMARY
-------------------
1. Courier SqWebMail File Disclosure Vulnerability
BugTraq ID: 6189
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 15 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6189
$B$^$H$a(B:

Courier SqWebMail $B$O(B Maildir $B7A<0$N%a!<%k%\%C%/%9$rMQ$$$FEE;R%a!<%k$N(B
$BAwpJsO31L$r@8$8$kLdBj$,H/8+$5$l$F$$$k!#FCDj$N>u672<(B
$B$K$*$$$F!"$3$N%=%U%H%&%'%"$O5/F0;~$NCJ3,$G40A4$K8"8B$r9_3J$7$F$$$J$$Ld(B
$BBj$,B8:_$9$k!#(B

$B967b\:Y>pJs$O8=;~E@$G$O8x3+$5$l$F$$$J$$!#(B
$B$5$i$J$k>\:Y>pJs$,8x3+$5$l2. Lonerunner Zeroo HTTP Server Remote Buffer Overflow Vulnerability
BugTraq ID: 6190
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6190
$B$^$H$a(B:

Zeroo HTTP server $B$O%U%j!<$KMxMQ2DG=$J!"%*!<%W%s%=!<%9$N(B Web $B%5!<%P$G$"(B
$B$k!#$3$N%=%U%H%&%'%"$O(B Linux $B$*$h$S(B Microsoft Windows $B$GMxMQ2DG=$G$"$k!#(B

$B$3$N%=%U%H%&%'%"$K$O%j%b!<%H$+$i%3!<%I$ro$KD9$$J8;zNs$,$3$N%=%U%H%&%'%"$XAw?.$5$l$?>l9g$K(B
$BLdBj$,@8$8!"7k2L$H$7$F%9%?%C%/Fb$NCM$N>e=q$-$r>7$/$3$H$,2DG=$G$"$j!"$^(B
$B$?!"@x:_E*$K$O%3!<%I$No$KD9$$J8;zNs$O(B HTTP $B$K=`5r$7$?7A<0$GAw?.$5$l$kI,MW$O$J$$!#$3$NLdBj(B
$B$N:F8=$O(B 1024 $B%P%$%H0J>e$ND9$5$NJ8;zNs$r0U?^$r;}$C$FAH$_N)$F$k$3$H$J$/(B
$BAw?.$9$k$3$H$G9T$($?$H$N$3$H$G$"$k!#(B

$BLdBj$,Js9p$5$l$?%P!<%8%g%s0JA0$N%P!<%8%g%s$KBP$7$F$b1F6A$,5Z$V2DG=@-$,(B
$B$"$k!#(B

3. NeoSoft NeoBook 4 ActiveX Control Arbitrary File Type Inclusion VulnerabilityBugTraq ID: 6191
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 16 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6191
$B$^$H$a(B:

BeoBook $B$O>&MQ@=IJ$H$7$FDs6!$5$l$F$$$k%^%k%A%a%G%#%"%*!<%5%j%s%0MQ%=%U(B
$B%H%&%'%"%Q%C%1!<%8$G$"$k!#$3$N%=%U%H%&%'%"$O(B Microsoft Windows $B$GMxMQ2D(B
$BG=$G$"$k!#(B

NetBook 4 $B$O0U?^$9$k%U%!%$%k$r%$%s%/%k!<%I$G$-!"$5$i$K$O%3%^%s%I$ruBV(B
$B$K$OF1:-$5$l$F$$$J$$!#(B

4. Perception LiteServe Malformed GET Request Buffer Overflow Vulnerability
BugTraq ID: 6192
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6192
$B$^$H$a(B:

Perception LiteServe $B$O(B Web $B%5!<%P!"EE;R%a!<%k%5!<%P!"(BFTP $B%5!<%P$N5!G=(B
$B$rDs6!$9$k%=%U%H%&%'%"$G$"$k!#$3$N%=%U%H%&%'%"$O(B Microsoft Windows $B$GMx(B
$BMQ2DG=$G$"$k!#(B

$B$3$N%=%U%H%&%'%"$N(B HTTP $B%5!<%P5!G=$K$O%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k(B
$BLdBj$,H/8+$5$l$F$$$k!#$3$NLdBj$O(B HTTP $B%5!<%P$,0U?^E*$KAH$_N)$F$i$l$?(B HTTP
$B%j%/%(%9%H$N(B GET $B%a%=%C%I$r2ro$KD9$$!"(B
$BIT@5$K(B % $BJ8;zNs$r4^$`(B GET $B%a%=%C%I$,M?$($i$l$?:]!"(BHTTP $B%5!<%P$O%/%i%C%7%e(B
$B$7$F$7$^$&!#(B

$B967b/$J$/$H$b(B 290,759 $B8D$N(B % $B$r4^$`$h$&$K0U?^E*$KAH$_N)$F$i(B
$B$l$?(B HTTP $B$N(B GET $B%j%/%(%9%H$r$3$N%=%U%H%&%'%"$XAw?.$9$k$3$H$K$h$j!"$3$N(B
$BLdBj$rMxMQ$9$k967b$r4k$F$k$3$H$,2DG=$G$"$k!#$3$NLdBj$rMxMQ$9$k967b$K$h(B
$B$j!"$3$N%=%U%H%&%'%"$K4^$^$l$k(B HTTP $B%5!<%P$O%/%i%C%7%e$9$k!#(B

$B$J$*!"$3$l$OL$8!>Z$G$O$"$k$,!"967be$G5. Nullmailer Invalid User Denial Of Service Vulnerability
BugTraq ID: 6193
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6193
$B$^$H$a(B:

Nullmailer $B$OG[Aw5!G=$N$_$ruBV$N%a!<%kA4$F$rG[Aw$7$J$/$J$k$N$G$"$k!#(B

$BB8:_$7$F$$$J$$08@h$r;}$D$h$&$J0-0U$"$kEE;R%a!<%k$rLdBj$rJz$($k%=%U%H%&%'(B
$B%"$r2TF0$5$;$F$$$k%3%s%T%e!<%?>e$G:n@.$9$k$3$H$G!"967b\$G$"$k!#(B

6. AOL Instant Messenger Screen Name Buffer Overflow Vulnerability
BugTraq ID: 6194
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6194
$B$^$H$a(B:

AOL Instant Messenger (AIM) $B$O(B Microsoft Windows$B!"(BMacOS$B!"$=$NB>$N(B OS $B$G(B
$BF0:n$9$k%$%s%9%?%s%H%a%C%;!<%8%/%i%$%"%s%H$G$"$k!#(B

AIM $B$K$O7k2L$H$7$F(B DoS $B$d0U?^E*$J%3!<%I$Ne$N8D?t$NJ8;zNs$N%9%/%j!<%s%M!<%`$r;}$D%f!<%6$N>pJs$r1\Mw$9$k:]!"(B
AIM $BFb$N%P%C%U%!$,%*!<%P!<%U%m!<$7!"%a%b%jFI$_=P$7$K<:GT$9$k$?$a$K0[>o(B
$B=*N;$7$F$7$^$&$N$G$"$k!#$J$*!"$3$l$OL$8!>Z$G$O$"$k$,!"0U?^E*$J%3!<%I$N(B
$B$N%P!<%8%g%s$bF1MM$N(B
$BLdBj$rJz$($k$+$I$&$+$K$D$$$F$OL$>\$G$"$k!#(B

$BCm5-(B:
$B$3$NLdBj$K4X$9$kAjH?$9$kJs9p$,4s$;$i$l$F$$$k!#>\:Y$K$D$$$F$OBP1~$9$k(B BID
$B$N(B Reference $B9`L\$r;2>H$5$l$?$$!#(B

7. PHPBB2 ViewTopic.PHP Cross Site Scripting Vulnerability
BugTraq ID: 6195
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6195
$B$^$H$a(B:

phpBB2 $B$O!"(BPHP $B8@8l$K$h$C$F]$H$J$k%f!<%6$,0-0U$"$k%O%$%Q!<%j%s%/$rC)$k$h$&$K;E8~(B
$B$1$k$3$H$G!"$3$NLdBj$rMxMQ$7$?967b$r4k$F$k$3$H$,2DG=$G$"$k$H?d;!$5$l$k!#(B
$B967bZMQ>pJs$r@`$N96(B
$B7b$KMxMQ$5$l$k2DG=@-$,$"$k!#(B

$B$3$NLdBj$O(B phpBB 2.0.3 $B$GJs9p$5$l$?!#B>$N%P!<%8%g%s$b$3$NLdBj$N1F6A$r8. Macromedia Flash  SWRemote Heap Corruption Vulnerability
BugTraq ID: 6196
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6196
$B$^$H$a(B:

Macromedia Flash $B$O(B Web $B$N1\Mw$r=<e$G1\Mw$9$k$3$H$,2D(B
$BG=$G$"$k!#(B

$B$3$N@=IJ$K$O%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$kLdBj$,B8:_$9$k5?$$$,$"$k!#$3(B
$B$NLdBj$O!"(BFlash $B%*%V%8%'%/%H$K$h$C$F;HMQ$5$l$k(B SWRemote $B%Q%i%a!<%?$KM3Mh(B
$B$7$F$$$k!#Hs>o$KBgNL$N%G!<%?$r(B SWRemote $B%Q%i%a!<%?$KF~NO$7$?>l9g!"LdBj$r(B
$BJz$($k%P!<%8%g%s$N$3$N%=%U%H%&%'%"$G%P%C%U%!%*!<%P!<%U%m!<$rH/@8$5$;$k$3(B
$B$H$,2DG=$G$"$k!#(B

$B$3$NLdBj$rMxMQ$7$?!"%R!<%WNN0h$N%G!<%?$r2~JQ$9$k$h$&$J967b$r9T$C$?>l9g!"(B
$BLdBj$rJz$($k%=%U%H%&%'%"$r2TF0$5$;$F$$$k(B Web $B%V%i%&%6$N\$G$"$k!#(B

9. MailEnable Email Server Buffer Overflow Vulnerability
BugTraq ID: 6197
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6197
$B$^$H$a(B:

MailEnable $B$O(B Microsoft Windows $B$GF0:n2DG=$G$"$j!">&MQMxMQ$,2DG=$J(B POP3
$B$*$h$S(B SMTP $B%5!<%P$G$"$k!#(B

MailEnable $B$N(B POP3 $B%5!<%P5!G=$K%P%C%U%!%*!<%P!<%U%m!<$,@8$8$k$3$H$,H/8+(B
$B$5$l$F$$$k!#$3$NLdBj$O(B USER $B%3%^%s%I$X$N%Q%i%a!<%?$KBP$9$k6-3&%A%'%C%/(B
$B$,IT==J,$G$"$k$?$a$K@8$8$F$$$k!#(B

$B967be$NHs>o$KD9$$J8;zNs$rAw$k$3$H$G!"$3$NLdBj$rMxMQ$7$?(B
$B967b$r9T$&$3$H$,2DG=$G$"$k!#$3$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<$rH/@8$9(B
$B$k$H?d;!$5$l$k!#(B

$BL$8!>Z$G$O$"$k$,!"967b10. TFTPD32 Arbitrary File Download/Upload Vulnerability
BugTraq ID: 6198
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6198
$B$^$H$a(B:

Tftpd32 $B$O(B Microsoft Windows $BMQ$K@_7W$5$l$?%U%j!<$GF~pJs$r4^$`2DG=(B
$B@-$N$"$k!"0U?^$9$k%7%9%F%`%U%!%$%k$NFbMF$r3+<($9$k$3$H$,2DG=$G$"$k!#$^(B
$B$?!"967b]$H$J$k%7%9%F%`$X$N%P%C%/(B
$B%I%"$r;E3]$1$k$3$H$,2DG=$G$"$k!#(B

$B$3$NLdBj$O(B Tftpd32 2.50.2 $B0JA0$N%P!<%8%g%s$KBP$7$F1F6A$r5Z$\$9!#(B

11. TFTPD32 Long Filename Buffer Overflow Vulnerability
BugTraq ID: 6199
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 19 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6199
$B$^$H$a(B:

Tftpd32 $B$O(B Microsoft Windows $BMQ$K@_7W$5$l$?%U%j!<$GF~$KBP$9$k6-3&%A%'%C%/$,==J,$K9T$o$l$F$$$J$$!#(B

$B%j%b!<%H$N967b$H$7$F>/$J$/$H$b(B 116 $BJ8;z$+$i@.$k!"(B
$BD9$$J8;zNs$rM?$($k$3$H$K$h$j$3$NLdBj$rMxMQ$9$k967b$,2DG=$G$"$k!#$3$l$,(B
$B%P%C%U%!%*!<%P!<%U%m!<$N0z$-6b$H$J$k$N$G$"$k!#$3$NLdBj$rMxMQ$9$k967b$,(B
$B@.8y$7$?>l9g!"7k2L$H$7$F$3$N%=%U%H%&%'%"$N12. DHCPCD Character Expansion Remote Command Execution Vulnerability
BugTraq ID: 6200
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6200
$B$^$H$a(B:

dhcpcd $B$O(B Linux $B4D6-$GMxMQ2DG=$J!"(BRFC2131 $B$*$h$S(B RFC1541 $B$K=`5r$7$?(B DHCP
$B%/%i%$%"%s%H%G!<%b%s$G$"$k!#$^$?!"$3$N%=%U%H%&%'%"$O(B root $B8"8B$GF0:n$9$k!#(B

$B%M%C%H%o!<%/%$%s%?%U%'!<%9$KBP$7$F(B IP $B%"%I%l%9$r3d$jEv$F$k:]$K!"$3$N%=(B
$B%U%H%&%'%"$O30It%9%/%j%W%H$G$"$k(B '/sbin/dhcpd-<interface>.exe' $B$r$N%7%9%F%`$G$OL$8!>Z(B)$B!#(B

$B$3$N(B 'dhcpcd-<interface$BL>(B>.exe' $B%9%/%j%W%H$O(B DHCP $B%5!<%P$KM3Mh$9$k%U%!(B
$B%$%k$G$"$k(B '/var/lib/dhcpcd/dhcpcd-<interface$BL>(B>.info' $B%U%!%$%k$G@_Dj$5(B
$B$l$F$$$kCM$rMxMQ$7$F13. Linksys Router Unauthorized Management Access Vulnerability
BugTraq ID: 6201
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 18 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6201
$B$^$H$a(B:

Linksys DSL $B%k!<%?$O(B Linksys Group $B$+$iHNGd$5$l$F$$$k!"9bB.$J%$%s%?!<(B
$B%M%C%H@\B3$rDs6!$9$k@=IJ$G$"$k!#$3$N5!4o$O9bB.%$%s%?!<%M%C%H@\B3!"FCDj(B
$B$N7A<0$N5!4o$G$N%9%$%C%A%s%05!G=!"(BVoice-over-IP $B5!G=$rHw$($F$$$k!#(B

$B=i4|%M%4%7%(!<%7%g%s>uBV$N(B Linksys $B%k!<%?$KLdBj$,H/8+$5$l$F$$$k!#(B
$BJs9p$K$h$k$H!"LdBj$rJz$($k5!4o$O%^%M%8%a%s%H%5!<%P$H$N%;%C%7%g%s$N=i4|(B
$B2=Cf(B ($BFbIt%M%C%H%o!<%/MQ%$%s%?%U%'!<%9$K$*$$$F!"(BTCP $B%]!<%HHV9f(B 8080 $B$,(B
$BMxMQ$5$l$F$$$k(B) $B%/%i%$%"%s%H$+$iE>Aw$5$l$k(B XML $B$r4p$K$9$k%G!<%?E>Aw$N=h(B
$BM}$K<:GT$7$F$7$^$&!#$3$N$?$a!"Js9p$K$h$k$H!"(Blynx $B$,4IM}MQ%$%s%?%U%'!<%9(B
$B$H$N%3%M%/%7%g%s$KMxMQ$5$l!"(Bmailcap $BFb$N%(%s%H%j$K(B "application/foo.xml"
$B$,@_Dj$5$l$F$$$k>l9g!"G'>Z=hM}$O40A4$K2sHr$5$l$F$7$^$&$N$G$"$k!#(B
$B$3$NLdBj$,@8$8$kM}M3$OL@$i$+$G$O$J$/!"$3$NLdBj$N:F8=J}K!!"$5$i$K$O$3$N(B
$BLdBj$K4X$9$k>\:Y$O(B Linksys $B$K$h$C$F$O8!>Z$5$l$F$$$J$$!#(B

$B$3$NLdBj$O%k!<%?$N%j%b!<%H%^%M%8%a%s%H5!G=$,M-8z$K@_Dj$5$l$F$$$J$$>l9g$K(B
$B$N$_!"FbIt%M%C%H%o!<%/$NHO0OFb$G967b$KMxMQ2DG=$G$"$kE@$KN10U$9$Y$-$G$"$k!#(B

14. iPlanet Admin Server Cross Site Scripting Vulnerability
BugTraq ID: 6202
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 19 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6202
$B$^$H$a(B:

iPlanet Web Server $B%7%j!<%:$K%/%m%9%5%$%H%9%/%j%W%F%#%s%0$NLdBj$,H/8+$5(B
$B$l$F$$$k!#(B

$B4IM}l9g$K$3$NLdBj$,(B
$BH/8=$9$k!#(B

$B967b]$N%f!<%6$,C)$k$h$&$KM6F3$9$k$3(B
$B$H$G$3$NLdBj$rMxMQ$9$k967b$r4k$F$k2DG=@-$,$"$k!#967bZMQ>pJs$,@`e$G>:3J$5$l$?8"8B$G15. iPlanet Admin Server Insecure Open Call Vulnerability
BugTraq ID: 6203
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 19 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6203
$B$^$H$a(B:

iPlanet web server $B$O4X?t(B open() $B$N%;%-%e%"$G$O$J$$8F$S=P$7$,9T$o$l$F$$(B
$B$k$?$a$K!"%3%^%s%I$r]$N%3%s%T%e!<%?>e$G!"@x:_E*$K$O!"LdBj$rJz$($k%3%s%T%e!<(B
$B%?>e$G$h$j>:3J$5$l$?8"8B$G0U?^E*$J%3%^%s%I$r16. Microsoft Internet Explorer IFRAME dialogArguments Cross-Zone Access Vulnerability
BugTraq ID: 6205
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Nov 19 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6205
$B$^$H$a(B:

Microsoft Internet Explorer $B$O%9%/%j%W%H$,(B showModalDialog $B$*$h$S(B
showModelessDialog $B$N(B 2 $B$D$N4X?t$r8F$S=P$9$3$H$G%@%$%"%m!<%0%&%$%s%I%&(B
$B$r%5%]!<%H$9$k5!G=$rF1:-$7$F$$$k!#$3$l$i4X?t$O%@%$%"%m!<%0%&%$%s%I%&$N(B
$BFbMF$KMxMQ$5$l$k(B URL $B$r!<%s(B (Local Zone) $B$G%9%/%j%W%H(B
$B$,!<%s$rJQ99$7$?>l9g$K$O!"8F$S=P$785(B
$B%3%s%F%s%D$K$h$C$FDs6!$5$l$F$$$k(B dialogArguments $B%*%V%8%'%/%H$O%"%/%;%9(B
$B2DG=$J>u67$G$"$k$Y$-$G$O$J$$!#Js9p$K$h$k$H!"!<%s$G$"(B
$B$k$K$b$+$+$o$i$:(B dialogArguments $B%*%V%8%'%/%H$,MxMQ2DG=$J$N$G$"$k!#(B

$BFCDj$N>u672<$K$*$$$F!"$3$NLdBj$O%^%$%3%s%T%e!<%?%>!<%s$G%3!<%I$r7$/2DG=@-$,$"$k!#$3$l$r4k$F$kl9g!"%I%-%e(B
$B%a%s%H$,2r]$N%3%s%T%e!<%?>e$G%3%^%s%I$r17. QNX Multiple Program Insecure Default Permissions Vulnerability
BugTraq ID: 6206
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B:Nov 19 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6206
$B$^$H$a(B:

QNX $B$O%U%j!<$H$7$F$b>&MQ$H$7$F$bMxMQ2DG=$J%j%"%k%?%$%`(B OS $B$G$"$k!#$3$N(B 
OS $B$O(B QNX Software Systems Limited $B$K$h$jHNGd$*$h$SJ]Z$rH<$&$3$H$J$/%m!<%+(B
$B%k4D6-$G%3%^%s%I$ruBV$GHNGd$5$l$F$$$k!#0J2<$K<($9%W%m%0%i%`$OE57?E*$JuBV$G$O$$$+$J$k%f!<%6$K$h$C$F$b=q$-9~$^$l$k2DG=@-$,$"$k!#(B

/sbin/io-audio
/bin/shutdown
/sbin/fs-pkg
/usr/photon/bin/phshutdown
/usr/photon/bin/cpim
/usr/photon/bin/vpim
/usr/photon/bin/phrelaycfg
/usr/photon/bin/columns
/usr/photon/bin/othello
/usr/photon/bin/peg
/usr/photon/bin/solitaire
/usr/photon/bin/vpoker

$B$3$l$i$N%W%m%0%i%`$N$$$/$D$+$O%G%U%)%k%H$G$O%;%-%e%"$G$O$J$$>uBV$K@_Dj(B
$B$5$l$F$O$$$J$$$H9M$($i$l$k!#$3$l$iLdBj$K$D$$$F$O8!>Z$5$l$F$O$$$J$$$b$N(B
$B$N!"4s$;$i$l$?J#?t$NJs9p$K$h$k$H!"(Bo-audio$B!"(Bshutdown$B!"(Bfs-pkg$B!"(Bphshutdown
$B$O$3$NLdBj$N1F6A$,5Z$V$H$N$3$H$G$"$k!#(B

18. Mhonarc Mail Header HTML Injection Vulnerability
BugTraq ID: 6204
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B:Nov 19 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6204
$B$^$H$a(B:

MHonArc $B$O<+F0E*$KEE;R%a!<%k$r2rl9g!"(BMHonArc $B$K$OLdBj$,B8:_$9$k$3$H$,H/8+$5$l$F$$$k!#(B

$B967b19. QNX Photon MicroGUI Clipboard Insecure Data Storage Vulnerability
BugTraq ID: 6207
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B:Nov 19 2002 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6207
$B$^$H$a(B:

QNX Photon microGUI $B$OB>$N(B OS $B$HF1MM$N!"%j%"%k%?%$%`(B OS (RTOS) $B8~$1$N%0(B
$B%i%U%#%+%k%f!<%6%$%s%?%U%'!<%9$rDs6!$9$k@=IJ$G$"$k!#$3$l$O(B Software Systems
Limited $B$K$h$jHNGd!"J]pJs$X%"%/%;%9$9$k2DG=@-$,(B
$B$"$kLdBj$,B8:_$9$k!#(B

Photon $B$O%/%j%C%W%\!<%I$K%3%T!<$5$l$?:]!"%;%-%e%"$K%G!<%?$rJ]B8$7$J$$!#(B
$B%G!<%?$,%/%j%C%W%\!<%I$K%3%T!<$5$l$?:]!"%;%-%e%"$G$J$$$d$jJ}$G%m!<%+%k(B
$B$N%U%!%$%k%7%9%F%`$KJ]B8$9$k!#$3$l$K$h$j%m!<%+%k$N%f!<%6$OB>$N%f!<%6$N(B
$B%/%j%C%W%\!<%I$N%3%s%F%s%D$r1\Mw2DG=$H$J$k$H?dB,$5$l$k!#(B

microGUI $B%7%9%F%`$N;HMQCf$K%G!<%?$,%/%j%C%W%\!<%I$K%3%T!<$5$l$?:]!"%3(B
$B%T!<$5$l$?%G!<%?$O(B /var/clipboard/localhost/0/1.TEXT $B$X3JG<$5$l$k!#(B
$B$J$*!"$3$3$G(B 0 $B$O%G!<%?$N%3%T!<$r$l$N%f!<%6(B
$B8~$1$N%G%U%)%k%H$N%G%#%l%/%H%j%Q!<%_%C%7%g%s$rJQ99$9$k$3$H$K$h$j2r7h$5(B
$B$l$k2DG=@-$,$"$k!#(B

III. SECURITYFOCUS NEWS AND COMMENTARY
------------------------------------------
1. Comdex's Secure Side
$BCxpJs%;%-%e%j%F%#@=IJ$N0lNc$,E8<($5$l$F$$$k!#(B

http://online.securityfocus.com/news/1713

2. Lawyers Fear Misuse of Cyber Murder Law
$BCx7$3$&!W$H;n$_(B
$B$k?M!9$KBP$9$k?7$7$$=*?H7:$NH=CG4p=`$,E,MQ$5$l$kC{$7$,!"0-0U$"$k7k2L$r(B
$B>7$+$J$$%5%$%P!<%Q%s%/C#$+$i$bB(9oM-:a$NC24j$r:q$j=P$9$?$a$KMxMQ$5$l$k(B
$B$H$N$3$H$G$"$k!#(B

http://online.securityfocus.com/news/1702

3. On the Microsoft FTP server leak
$BCxpJs$r9%$-$J$@$1uBV$K$7$F$$$?$N$G$"(B
$B$k!#:#7n=i=\!"Hs>o$K%;%-%e%"$J>uBV$+$i$ODx1s$$(B FTP $B%5!<%P$+$iBgNL$KMM!9(B
$B$JHkF?@-$NFbItJ8=q$,8x3+$5$l$?$^$^$N>uBV$@$C$?$N$G$"$k!#(B

http://online.securityfocus.com/news/1714

4. Internet Provisions in Homeland Security Bill
$BCxpJs$r@/I\$KM?$($k$3$H$,2DG=$K$J$C$?!#$^$?!"7Y;!$OK!N'$K=>$C$F@_N)$5$l$?(B
$B9q2HKI1R(B (Homeland Security) $B$K7H$o$k?7$?$JC4EvIt=p$N85!"?7$?$J%$%s%?!<(B
$B%M%C%H$NEpD0G=NO$r3MF@$7$?!#(B

http://online.securityfocus.com/news/1701

5. Sex, Text, Revenge, Hacking and Friends Reunited
$BCxo$K40`z$JAJ>Y$N;vNc$K=P$/$o$9>l9g$,$"$k!#$3$NY$O==CfH,6e0-?M$rBG$A?x$($k$b$N$G$"$C$?!#(B

http://online.securityfocus.com/news/1700

IV. SECURITYFOCUS TOP 6 TOOLS
-----------------------------
1. guard bash v1.0
$B:nhttp://www.iprogrammers.ro/guard/
$BF0:n4D6-(B: Linux, POSIX
$B$^$H$a(B:

guard bash $B$O%3%^%s%I$,Zl9g$O!"80$rEpD0$9$k$h$&$JC1=c$J967b$d(B SSH $B$KBP$9(B
$B$k$h$j9*L/$J967b$N1F6A$O5Z$V$3$H$G$7$g$&!#$3$N%D!<%k$r;HMQ$9$k$3$H$G%;(B
$B%-%e%"$G$O$J$$%$%s%?!<%M%C%H>e$N%3%s%T%e!<%?$+$i!"M#0l$NG'>Z2. Paketto Keiretsu v1.0
$B:nhttp://www.doxpara.com
$BF0:n4D6-(B: POSIX
$B$^$H$a(B:

Paketto Keiretsu $B$O(B TCP/IP $B%M%C%H%o!<%/$NFbIt2r@O$r9T$&$?$a$N;B?7$G$"$j(B
$B$-$?$j$G$O$J$$@oN,$rHw$($?%D!<%k72$G$9!#$3$N%=%U%H%&%'%"$O4{B8$N%M%C%H(B
$B%o!<%/%$%s%U%i%9%H%i%/%A%c$N5!G=$r2#uBV$rI8=`F~(B
$B=PNO$X3. mod_authenticache v2.0.6
$B:nhttp://original.killa.net/infosec/mod_authenticache/
$BF0:n4D6-(B: UNIX
$B$^$H$a(B:

mod_authenticache $B$O%Q%U%)!<%^%s%9$r8~>e$9$k$?$a$K!"%/%i%$%"%s%HB&$GG'(B
$B>Z>pJs$r%-%c%C%7%e$9$k$?$a$N!"C1=c$G9-HO0O$KMxMQ$G$-$kZ%b%8%e!<%k$G%F%9%H$,9T$o$l!"(B
$B$^$?(B Apache 2.0.x $B$KZ%b%8%e!<(B
$B%k$+$iG'>ZMQ>pJs$r%-%c%C%7%e$9$k$?$a$N4X?t%(%/%9%]!<%H%*%W%7%g%s5!G=$r(B
$BHw$($F$$$^$9!#(B

4. SNMP Trap Translator v0.4
$B:nhttp://snmptt.sourceforge.net
$BF0:n4D6-(B: OS $B$K0MB8$7$J$$(B
$B$^$H$a(B:

SNMPTT $B$O(B NET-SNMP/UCD-SNMP snmptrapd $B%W%m%0%i%`$G;HMQ$9$k$?$a$K!"(BPerl
$B$rMxMQ$7$F3+H/$5$l$?(B SNMP $B%H%i%C%W%O%s%I%i$G$9!#5. slurm v0.0.7
$B:nhttp://www.raisdorf.net/slurm/
$BF0:n4D6-(B: FreeBSD
$B$^$H$a(B:

slurm $B$O(B pppstatus $B$N(B FreeBSD $B$X$N0\?"$H$7$F3+H/$,;O$^$j!"8=:_$G$OHFMQ(B
$B$N%M%C%H%o!<%/Ii2Y%b%K%?$K$J$C$F$$$^$9!#$3$N%=%U%H%&%'%"$O(B FreeBSD$B!"(BNetBSD$B!"(B
OpenBSD $B$*$h$S(B Linux $B>e$NA4$F$N6. irclog-xml v0.07a
$B:nhttp://sourceforge.net/projects/irclog-xml/
$BF0:n4D6-(B: OS $B$K0MB8$7$J$$(B
$B$^$H$a(B:

irclog-xml $B$O(B IRC $B%m%0$r2r@O$7!"$=$l$i$N%m%0$r(B XML $B$*$h$S(B HTML $B7A<0$KJQ(B
$B49$9$k%=%U%H%&%'%"$G$9!#8=;~E@$G$O!"(BBitchX$B!"(BmIRC$B!"(BXChat $B$*$h$S(B Mel $B$r2p(B
$B$7$?(B Eggdrop $B$N%m%07A<0$KBP1~$7$F$$$^$9!#(B
--
$BLu(B: $B:d0f=g9T(B(SAKAI Yoriyuki)$B!"@PED6G5W(B(ISHIDA Akihisa)$B!"(B
$Bhttp://www.lac.co.jp/security/
smime.p7s