SecurityFocus.com Newsletter #55 2000-08-09->2000-08-15

To: BUGTRAQ-JP@SECURITYFOCUS.COM
Subject: SecurityFocus.com Newsletter #55 2000-08-09->2000-08-15
From: SAKAI Yoriyuki <sakai@LAC.CO.JP>
Date: Tue, 22 Aug 2000 16:22:23 +0900
Reply-To: SAKAI Yoriyuki <sakai@LAC.CO.JP>
Sender: BUGTRAQ-JP List <BUGTRAQ-JP@SECURITYFOCUS.COM>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

$B:d0f(B@$B%i%C%/$G$9!#(B

SecurityFocus.com Newsletter $BBh(B 55 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

- ------------------------------------------------------------------------
SecurityFocus.com Newsletter $B$K4X$9$k(BFAQ:
<URL: http://www.securityfocus.com/forums/sf-news/faq.html>
BugTraq-JP $B$K4X$9$k(B FAQ:
<URL: http://www.securityfocus.com/forums/bugtraq-jp/faq.html>
- ------------------------------------------------------------------------
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B Security-Focus.com $B$N5v2D$r3t<02qe$G9T$o(B
  $B$l$F$$$^$9!#(B
$B!&(BSecurityFocus.com Newsletter $B$NOBLu$r(B Netnews, Mailinglist,
  World Wide Web, $B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$N(B
  $BA4J80zMQ$r$*4j$$$7$^$9!#(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;(B
  $B$s$,=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurity-Focus.com $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+(B
  $B$J$k7A<0$N%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) <URL http://www.securityfocus.com/templates/archive.pike?list=79>
- ------------------------------------------------------------------------
- ------------------------------------------------------------------------
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02ql9g!"(BBUGTRAQ-JP $B$X(B Errata $B$H$7$F=$@5(B
  $BHG$r$4Ej9FD:$/$+!"Lul9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
- ------------------------------------------------------------------------
- ------------------------------------------------------------------------

SecurityFocus.com Newsletter #55
- -------------------------------

I. FRONT AND CENTER($BF|K\8lLu$J$7(B)

II. BUGTRAQ SUMMARY
	1. Linux-Mandrake MandrakeUpdate Race Condition Vulnerability
	2. Mediahouse Statistics Server LiveStats Buffer Overflow Vulnerability
	3. UMN Gopherd 2.x Remote Root Buffer Overflow Vulnerability
	4. BEA Weblogic Proxy Multiple Buffer Overflow Vulnerabilities
	5. Microsoft Windows 98/2000 Folder.htt Vulnerability
	6. IRIX telnetd Environment Variable Format String Vulnerability
	7. Watchguard Firebox II DoS Vulnerability
	8. RapidStream Unauthenticated Remote Command Execution Vulnerability
	9. Trustix Apache-SSL RPM Permissions Vulnerability
	10. ntop -w Buffer Overflow Vulnerability
	11. Zope Unauthorized Role Modification Vulnerability
	12. Microsoft IIS 5.0 "Translate: f" Source Disclosure Vulnerability
	13. Netscape SuiteSpot Read/Writeable Admin Password Vulnerability
	14. HPUX 11.0 newgrp(1) Vulnerability
	15. HP OpenView Network Node Manager 6.1 Web Password Vulnerability
	16. OS/2 4.5 FTP Server Login DoS Vulnerability
	17. eTrust Access Control Default Encryption Key Vulnerability
	18. Lyris List Manager Privilige Escalation Vulnerability
	19. xlockmore User Supplied Format String Vulnerability
	20. FlagShip Installation Permission Vulnerability
	21. Netwin Netauth Directory Traversal Vulnerability

III. SECURITYFOCUS.COM NEWS ARTICLES
	1.Forty-five days of the Carnivore
	2.Carnivore: Just Say No?
	3.Update: Verizon Hole still Open

IV.SECURITY FOCUS TOP 6 TOOLS
	1. WinSniffer 0.1
	2. anomy sanitizer 1.23
	3. Pdump
	4. Big Brother 1.5
	5.Secure Syslog 1.21
	6.PGPacket 3.1

I. FRONT AND CENTER
- -------------------

Welcome to the SecurityFocus.com 'week in review' newsletter issue

II. BUGTRAQ SUMMARY
- -------------------

1. Linux-Mandrake MandrakeUpdate Race Condition Vulnerability
BugTraq ID:1567
$B%j%b!<%H$+$i$N:F8=@-(B: $BL$>\(B
$B8xI=F|(B: 2000-08-12 $B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1567
$B$^$H$a(B:

$B0J2<$O(B Mandrake $B%"%I%P%$%6%j$K$h$k!#(B
MandrakeUpdate $B$K$O$3$N%D!<%k$rMQ$$$F%@%&%s%m!<%I$5$l$?(B RPM $B%Q%C%1!<%8(B
$B$r%$%s%9%H!<%k$9$kA0$KJQ99$G$-$F$7$^$($k2DG=@-$,$"$k$?$a$K6%9g>uBV(B (race
condition) $B$K4Y$k2DG=@-$,$"$k!#$3$l$O%U%!%$%k$,(B /tmp $B%G%#%l%/%H%j$K3JG<(B
$B$5$l$F$$$k$?$a$G$"$k!#$J$*!"$3$NLdBj$O(B MandrakeUpdate $B$r;H$C$F$$$J$$%m%0(B
$B%$%s2DG=$J%f!<%6$,B8:_$9$k!"$[$H$s$I$N%5!<%P$K$*$$$F$ODc$$%;%-%e%j%F%#(B
$B%j%9%/$G$"$m$&!#$3$N%D!<%k$N99?7HG$G$O(B /tmp $B$KBe$($F(B /root/tmp $B$rMxMQ$9(B
$B$k$H$$$&!"$3$NLdBj$KBP$9$k=$@5$,2C$($i$l$F$$$k!#(B

2. Mediahouse Statistics Server LiveStats Buffer Overflow Vulnerability
BugTraq ID: 1568
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-10
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1568
$B$^$H$a(B:

Mediahouse Statistics Server LiveStats $B$O(B URL $BCf$N(B GET $B%j%/%(%9%H$K(B 2030
$B%P%$%H0J>e4^$^$l$F$$$k>l9g!"%P%C%U%!%*!<%P!<%U%m!<967b$r3. UMN Gopherd 2.x Remote Root Buffer Overflow Vulnerability
BugTraq ID: 1569
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-10
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1569
$B$^$H$a(B:

University of Minnesota $B$,Ds6!$9$k(B gopherd $B%P!<%8%g%s(B 2.x $B$K$O!"%j%b!<(B
$B%H$+$i%?!<%2%C%H$H$J$C$?%[%9%H$N(B root $B8"8B$rC%4. BEA Weblogic Proxy Multiple Buffer Overflow Vulnerabilities
BugTraq ID: 1570
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-15
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1570
$B$^$H$a(B:

BEA Systems Inc. $B$,Ds6!$9$k(B Weblogic $B%5!<%P$O%5!<%I%Q!<%F%#@=$N(B Web $B%5!<(B
$B%P$HAH$_9g$o$;$k$?$a$N5!G=$r;}$C$F$$$k!#$3$N5!G=$O!"%5!<%I!<%Q!<%F%#@=$N(B
$B%5!<%P$,$3$N%5!<%P$XMW5a$rCf7Q$5$;$k$?$a$N%W%i%0%$%s$K$h$C$FDs6!$5$l$F$$(B
$B$k!#F1e$+JL$N%[%9%H>e$GF0:n$7$F$$$k(B Weblogic $B%5!<%P(B
$B$X8~$1$k$h$&$K@_Dj$5$l$k!#$3$N:]!"(BBEA Weblogic server $B$K$h$C$FDs6!$5$l(B
$B$k%W%i%0%$%s$K2?E@$+$N%P%C%U%!%*!<%P!<%U%m!<$,H/@8$7!"%j%b!<%H$N967be$G!"0U?^(B
$BE*$J%3!<%I$r5. Microsoft Windows 98/2000 Folder.htt Vulnerability
BugTraq ID: 1571
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-15
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1571
$B$^$H$a(B:

Windows 98 $B$*$h$S(B 2000 $B$G$O(B Folder.htt $B$H8F$P$l$k%U%!%$%k$,!"(BWeb $B%Z!<%8(B
$B$H$7$FI=<($5$l$F$$$k%U%)%k%@$r7hDj$7$F$$$k!#$3$N%U%!%$%k$K$O%"%/%F%#%V(B
$B%9%/%j%W%H$r4^$a$k$3$H$,2DG=$G$"$k!#$b$7%f!<%6$,(B Web $B%Z!<%8$H$7$F;2>H(B
$B$9$k!"$H$$$&%*%W%7%g%s$rM-8z$K$7$?$^$^$G%U%)%k%@$r3+$$$?>l9g(B($B$J$*!"$3$N(B
$B%*%W%7%g%s$O%G%U%)%k%H$GM-8z$G$"$k(B)$B!"(BFolder.att $BFb$N$$$+$J$k%3!<%I$O%f!<(B
$B%6$N8"8B$Gl9g!"A*Br%j%9%H$N:GM%@h$K@_Dj$5$l!"A*Br$5(B
$B$l$F$7$^$$!"3JG<$5$l$F$$$k%U%)%k%@$,3+$+$l$k:]$K!"$=$N$^$^6. IRIX telnetd Environment Variable Format String Vulnerability
BugTraq ID: 1572
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-14
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1572
$B$^$H$a(B:

Silicon Graphics (SGI) $B$,Ds6!$9$k(B Irix 6.2 $B$+$i(B 6.5.8 $B$^$G$N%P!<%8%g%s(B
$B$K4^$^$l$k(B telnet $B%G!<%b%s!"%Q%C%A:Q$_$N(B 5.2 $B$+$i(B 6.1 $B$^$G$N(B telnet $B%G!<(B
$B%b%s$K$Ol9g!"(Broot $B8"8B$G$"$k!#(B

telnet $B%G!<%b%s$O(B  _RLD $B4D6-JQ?t72Fb$N(B1$B$D$r@_Dj$9$k$?$a$K(B
IAB-SB-TELOPT_ENVIRON $B%j%/%(%9%H$ro:N$H4D6-JQ?t$NCM(B
$B$=$N$b$N$G$"$k!#(Bsyslog() $B4X?t$N8F$S=P$7$O!"0d48$J$,$i!"M?$($i$l$?J8;zNs(B
$B$r=q<0IUJ8;z$H$7$Fe=q$-2DG=$G$"$j!"$=$3$GM?$($i$l$?%3!<%I$O(B root $B%f!<(B
$B%68"8B$GR2p$5$l$F$$$kLdBj$K$D$$$F$N=$@5$rL\E*$H$7$?$b$N$H$7$F>R2p$5$l$F$$$k!#(B
$B$3$l$i$N%Q%C%A$O(B 1010 $B$H(B 1020 $B%7%j!<%:%Q%C%A$H$7$F>R2p$5$l$F$$$k!#(B
$B$b$7$3$l$i$N%Q%C%A$,E,MQ$5$l$F$$$J$$>l9g!"$3$NLdBj$rFM$$$?967b$K$D$$$F(B
$B$N1F6A$O7. Watchguard Firebox II DoS Vulnerability
BugTraq ID: 1573
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-15
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1573
$B$^$H$a(B:

$B%G%U%)%k%H>uBV$G!"(BWatchGuard Firebox II $B$OG'>Z%W%m%;%9$r%]!<%HHV9f(B 4100
$B$GBT$AoF0:n$X$NI|5l$O%"%W%j%1!<%7%g%s$N:F(B
$B5/F0$,I,MW$G$"$k!#(B

8. RapidStream Unauthenticated Remote Command Execution Vulnerability
BugTraq ID: 1574
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-14
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1574
$B$^$H$a(B:

RapidStream $B$O0lO"$N(B VPN/Firewall $B5!4o$rDs6!$7$F$$$k!#$=$l$>$l$N@=IJ$O(B
$B%j%b!<%H$N@=IJ$N4IM}MQ$K2~B$$5$l$?(B sshd $B$rMxMQ$7$F$$$k!#(B
$B$3$3$GMxMQ$5$l$F$$$k(B sshd $B$O%f!<%6L>$r%O!<%I%3!<%G%#%s%0$5$l$F$*$j!"(B
rsadmin $B$H$$$&%Q%9%o!<%I$J$7$N%"%+%&%s%H(B (rsadmin = root) $B$,MxMQ$5$l$F(B
$B$$$k!#G'>Z=hM}$O(B OS $B%l%Y%k$G(B RapidStream $B$N%j%b!<%H4IM}%=%U%H%&%'%"$r(B
$BMxMQ$7$F9T$o$l$F$$$k!#(B
$B$7$+$7!"%?!<%2%C%H$H$J$C$?(B RapidStream $B%G%P%$%9>e$G(B sh $B$rCgN)$A$K$7$F(B
$B5/F0$9$kJ}K!$r;H$$!"%3%^%s%I$Nl9g!"(B RapidStream VPN $B5!4o!"$"$k$$$O%U%!%$(B
$B%d%&%)!<%k$N%j%b!<%H$+$i$N40A4$J8"8BC%9. Trustix Apache-SSL RPM Permissions Vulnerability
BugTraq ID: 1575
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2000-08-15
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1575
$B$^$H$a(B:

Trustix Secure Linux $B$GG[I[$5$l$F$$$k(B Apache-SSL $B$N(B RPM $B%"!<%+%$%V$O(B
$B%G%U%)%k%H$G$I$N$h$&$J%f!<%6$G$"$C$F$b=q$-9~$_2DG=$J%P%$%J%j$H$7$F!"(B
httpsd $B$r%$%s%9%H!<%k$7$F$7$^$&8m@_Dj$,$"$k!#%G!<%b%s$O(B roort $B8"8B$G(B
$Be>:$9$k$?$a$KMF0W$KMQ$$$i$l$k(B
$B2DG=@-$,$"$k!#(B

10. ntop -w Buffer Overflow Vulnerability
BugTraq ID: 1576
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-14
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1576
$B$^$H$a(B:

ntop $B$O%M%C%H%o!<%/MxMQ>uBV$N%b%K%?%j%s%0$r9T$&%D!<%k$G$"$k!#(B
$B$3$N%D!<%k$O%3%s%=!<%k$+$i$N8F$S=P$7!"$"$k$$$O%5!<%P%G!<%b%s$+$i8F$S(B
$B=P$72DG=$G!"(B-w $B%Q%i%a!<%?$rMxMQ$9$k$3$H$G(B HTTP $B$rMxMQ$7$FE}7W>pJs$r(B
$BI=<(2DG=$G$"$k!#$3$N(B -w $B$rMxMQ$7$?F0:n%b!<%I$K$O!"%f!<%6$,@\B3$7G'>Z(B
$B$r9T$&A0$K%P%C%U%!%*!<%P!<%U%m!<$r@8$8$kLdBj$,$"$k!#$b$7$3$NLdBj$rFM(B
$B$$$?967b$,@.$5$l$?>l9g!"967bo$K6=L#?<$$$H8@$($h$&!#$7$+$7$3$l$O(B wheel $B%0%k!<(B
$B%W$N%a%s%P$@$1$Ke$G$N%$%s%9%H!<%k>uBV$N7k2L(B
$B$G$"$k!#$3$N$?$a!"$3$N@_Dj$G$O(B root $B8"8B$G$N%3!<%I$Nl9g!"(Broot $B$K$J$l$k8"8B(B
$B$r;}$C$F$$$k(B)$B!#8"8B$r9_2<$5$;$k$H$$$&;vl9g!"$b$7967b$5$l$?$J$i$P967b11. Zope Unauthorized Role Modification Vulnerability
BugTraq ID: 1577
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-11
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1577
$B$^$H$a(B:

DHTML $B$rJT=8$G$-$k8"8B$r;}$D%f!<%6$O%3%s%F%s%D$NDI2C5,B'!"$"$k$$$OJQ99(B
$B5,B'$rG'>Z$J$7$GMxMQ2DG=$G$"$k!#$3$NLdBj$K$D$$$F$NDI2C>pJs$OHs>o$K8B$i(B
$B$l$?$b$N$N$_$,8=:_MxMQ2DG=$G$"$k!#(B

12. Microsoft IIS 5.0 "Translate: f" Source Disclosure Vulnerability
BugTraq ID: 1578
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-14
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1578
$B$^$H$a(B:

Microsoft IIS 5.0 $B$O(B ASP, ASA, HTR $BEy$NFCJL$J%U%!%$%k$K$D$$$F!"FCDj$NL\(B
$BE*$r;}$C$?%9%/%j%W%F%#%s%0%(%s%8%s$rEk:\$7$F$$$k!#$3$N%9%/%j%W%F%#%s%0(B
$B%(%s%8%s$O$3$l$i$N%U%!%$%k$X$N%j%/%(%9%H$r$lAj1~$N=hM}(B
$B$r9T$$!"%5!<%P>e$G%9%/%j%W%H$rl9g!"%/%i%$%"%s(B
$B%H$X!"4{CN$N%9%/%j%W%H$,4^$^$l$k%U%!%$%k$N%=!<%9$rJV$5$;$k$3$H$,2DG=$G(B
$B$"$k!#(B
$B%9%/%j%W%F%#%s%0%(%s%8%s$O!"%j%/%(%9%H$5$l$?%U%!%$%k$K$D$$$F>l=j$OH=CG(B
$B$G$-$k$,!"$7$+$7!"=hM}$5$l$k$Y$-%U%!%$%k$H$7$F$O2r13. Netscape SuiteSpot Read/Writeable Admin Password Vulnerability
BugTraq ID: 1579
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-07-11
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1579
$B$^$H$a(B:

Netscape $B$H(B
$B0E9f2=$5$l$?%Q%9%o!<%I$O!"(B(webroot)/admin-serv/config/admpw $B$K$I$N$h$&(B
$B$J%f!<%6$G$"$C$F$bFI$_=P$72DG=$J8"8B$G5-O?$5$l$F$$$k!#$^$?!"%U%!%$%k$O(B
$B%G%U%)%k%H$G$9$Y$F$N%m!<%+%k$N%f!<%6$KBP$7$F=q$-9~$_2DG=$J8"8B$G%$%s%9(B
$B%H!<%k$5$l$F$$$k!#(B

14. HPUX 11.0 newgrp(1) Vulnerability
BugTraq ID: 1580
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2000-08-09
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1580
$B$^$H$a(B:

HP-UX 11.00 $B$K4^$^$l$F$$$k(B newgrp $B%3%^%s%I$K$OLdBj$,$"$k!#(BHP $B$N%"%I%P%$(B
$B%6%j$G$3$NLdBj$O8x3+$5$l!"%"%I%P%$%6%j$K$h$k$H!"$3$NLdBj$rFM$$$?967b$O(B
$B8=:_8=$l$F$O$$$J$$$H$N;v$G$"$k!#(B

15. HP OpenView Network Node Manager 6.1 Web Password Vulnerability
BugTraq ID: 1581
$B%j%b!<%H$+$i$N:F8=@-(B: $BL$>\(B
$B8xI=F|(B: 2000-08-09
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1581
$B$^$H$a(B:

HP-UX 10.20 $B$H(B 11.00 $BMQ!"(BSun Solaris 2.X$B!"(BWindows NT 4 $B!"(BWindows 2000
$B8~$1$N(B HP OpenView Network Node Manager version 6.1 $B$K$OLdBj$,$"$k!#(B
$B$3$NLdBj$O(B HP $B$N%"%I%P%$%6%j$G8x3+$5$l!"%"%I%P%$%6%j$K$h$k$H!"$3$NLdBj(B
$B$rFM$$$?967b$O8=:_8=$l$F$O$$$J$$$H$N;v$G$"$k!#(B
$B$3$NLdBj$r5/$3$9$?$a$K$O(B Web $BMQ%Q%9%o!<%I(B ($BN`?d$9$k$H!"(BWeb $B%5!<%PMQ$N(B
$B%Q%9%o!<%I$NMM$G$"$k(B) $B$NO31L$,I,MW$G$"$k!#(B

16. OS/2 4.5 FTP Server Login DoS Vulnerability
BugTraq ID: 1582
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-16
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1582
$B$^$H$a(B:

OS/2 4.5 Warp $B$KIU?o$9$k(B ftp $B%5!<%P$O!"%P%C%U%!%*!<%P!<%U%m!<$N$?$a$K%5(B
$B!<%S%9ITG=$K4Y$k2DG=@-$,$"$k!#0lEY%m%0%$%s$K<:GT$7$?8e!":FEY@\B3$r;n$_(B
$B$k:]$K(B (256 $BJ8;z$r1[$($k(B) $BD9$$%f!<%6L>$H%Q%9%o!<%I$rF~NO$9$k$H!"%5!<%P(B
$B$O%/%i%C%7%e$7$F$7$^$&!#(B

17. eTrust Access Control Default Encryption Key Vulnerability
BugTraq ID: 1583
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-11
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1583
$B$^$H$a(B:

Computer Associates $B$,Ds6!$9$k(B eTrust Access Control product ($B0JA0$NL>(B
$BA0$O(B SeOS $B$@$C$?(B) $B$N%$%s%9%H!<%k;~$Kl9g!"%G%U%)%k%H$N(B
$B0E9f80$,%$%s%9%H!<%k$5$l$k!#$3$N80$O%$%s%9%H!<%k(B CD $B$K4^$^$l$F$$$k!#(B
$B$3$N80$r;H$&$H!"%f!<%6$,!"%"%/%;%98"8B$re$K$"$k(B
eTrust Access Control product $B$rMxMQ$7$F%G!<%?%Y!<%9$rJQ99$9$k$3$H$,@x(B
$B:_E*$K$G$-$F$7$^$&!#$3$N$?$a!"967b$r;n$_$k%f!<%6$K!"BP>]$H$J$k%^%7%s$N(B
$B%"%/%;%98"8B$rC%e$K$"$k%"%+%&%s%HL>$HF1$8(B
$BL>A0$r%$%s%9%H!<%k$7!"967b$r$+$1$kM=Dj$N%^%7%s$+$i%j%b!<%H$G$D$J$$$G$$(B
$B$k%G!<%?%Y!<%9$K@\B3$9$l$P!"L\E*$N%^%7%s$X$N%"%/%;%98"8B$rC%18. Lyris List Manager Privilige Escalation Vulnerability
BugTraq ID: 1584
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2000-08-11
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1584
$B$^$H$a(B:

Lyris $B$,Ds6!$9$k(B List Manager $B$O!"(Bperl $B8@8l$G=q$+$l$?%5!<%PB&$N%3%s%]!<(B
$B%M%s%H$r4^$`(B Web $B%Y!<%9$N%a!<%j%s%0%j%9%H$r4IM}$9$k%f!<%F%#%j%F%#$G$"$k!#(B
$BG'>Z$N;EJ}$KLdBj$,$"$k$?$a!"%a!<%j%s%0%j%9%H$N9XFI:3J$9$k$3$H$,$G$-!"4IM}e$N(B cgi-bin $B%=%U%H%&%(%"$rCN$i$;$F$7$^$&!#%f!<%6$,(B
$B4IM}19. xlockmore User Supplied Format String Vulnerability
BugTraq ID: 1585
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2000-08-15
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1585
$B$^$H$a(B:

David Bagley $B$,%*%j%8%J%k$r:n@.$7$?(B xlockmore $B$N0lO"$N%P!<%8%g%s$K$O$J%*%Z%l!<%F%#%s%0%7%9%F%`(B
$B$K4^$^$l$F=P2Y$5$l$F$$$k!#(B

xlock $B$O(B setuid root $B$G%$%s%9%H!<%k$5$l$k!#DL>o!"%m%C%/$9$k%G%#%9%W%l%$(B
$B$r;XDj$9$k$?$a$K(B xlock $B$N(B -d $B%*%W%7%g%s$,;H$o$l$k!#$3$NCM$O!"K\Mh(B
hostname:portoffset $B$H$$$&7A<0$G;XDj$5$l$k!#Nc$($P!"(Bx.host.com:0 $B$H$9$l(B
$B$P(B x.host.com $B>e$G(B 6000 $BHV%]!<%H$r3+$$$F2TF0$9$k(B X $B%5!<%P$K@\B3$9$k!#(B
$B$3$NCM$K9*L/$K@07A$5$l$?J8;zNs$rM?$($k$3$H$G!"(Bxlock $B$K?tCM$r=PNO$5$;$k(B
$B;v$,2DG=$H$J$k!#JL$N7A$NJ8;zNs$r;H$($P!"967be=q$-(B
$B$9$k$3$H$,$G$-$k$+$b$7$l$J$$!#$^$?!"G$0U$N%W%m%0%i%`$r(B root $B8"8B$G20. FlagShip Installation Permission Vulnerability
BugTraq ID: 1586
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2000-08-10
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1586
$B$^$H$a(B:

Multisoft $B$,Ds6!$9$k(B FlagShip 4.4 $B@=IJ$K$O!"%$%s%9%H!<%k;~$KLdBj$,$"$k!#(B
$B$$$/$D$+$N%P%$%J%j$,!"$I$N$h$&$J%f!<%6$G$"$C$F$b=q$-9~$_2DG=$J%Q!<%_%C%7%g(B
$B%s$G%$%s%9%H!<%k$5$l$F$7$^$&$N$G$"$k!#$3$l$K$h$C$F!"967b$N%f!<%6$K0U?^$7$?%W%m%0%i%`$r21. Netwin Netauth Directory Traversal Vulnerability
BugTraq ID: 1587
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2000-08-17
$B4XO"$9$k(B URL:
http://www.securityfocus.com/bid/1587
$B$^$H$a(B:

$B%j%b!<%H%f!<%6$O!"(BNetwin Netauth $B$,2TF0$7$F$$$k%[%9%H>e$K$"$k4{CN$N%U%!(B
$B%$%k$NFI$_9~$_8"8B$r%G%#%l%/%H%j$r;2>H$9$k$3$H$G$K(B'../'$B$rI,MW$J$@$1IU2C$9$k$3$H$G!"%j%b!<%H%f!<%6$K(B Netauth directory
$B>e$K$"$k%G%#%l%/%H%j9=B$A4BN$r;2>H$5$l$F$7$^$&$N$G$"$k!#(B

$BNc(B:

http://target/cgi-bin/netauth.cgi?cmd=show&page=../../directory

$B$H$9$l$P;XDj$7$?%G%#%l%/%H%j$NFbMF$rI=<($7$F$7$^$&$@$m$&!#(B

III. SECURITYFOCUS.COM NEWS AND COMMENTARY
- ------------------------------------------
1.Forty-five days of the Carnivore

FBI $B$O!"%$%s%?!<%M%C%H4F;k%D!<%k$K>pJs8;$r(B 3000 $B%Z!<%8$KEO$C$FJ]M-$7$F(B
$B$$$k!#(BEPIC $B$O$=$l$rI,MW$H$7$F$$$k!#(B.
By Kevin Poulsen SecurityFocus.com news

www.securityfocus.com/templates/article.html?id+76

2. Carnivore: Just Say No?
$B%W%m%P%$%@$O!"(BFBI $B$N4F;k%7%9%F%`$r5qH]$G$-$k$@$m$&$+(B?
$B$"$k(B ISP $B$O$9$G$KD)@o$7$F$$$k!#(B
By Jennifer Granick

www.securityfocus.com/templates/article.html?id+72

3.Update: Verizon Hole still Open

$B:GBg$NCO0hEEOC2qpJs$K%"%/%;%9$r5v$7$?(B web $B%"%W%j%1!<(B
$B%7%g%s$r=$M}$9$k2a7c$JF|MK$r2a$4$7$?!#:#F|$b860x$r:$Fq$rBQ$($D$DC5$72s(B
$B$j!"$^$@$=$l$OB3$$$F$$$k!#(B
By Kevin Poulsen, SecurityFocus.com news

www.securityfocus.com/templates/article.html?id=75


IV.SECURITY FOCUS TOP 6 TOOLS
- -----------------------------

1. WinSniffer 0.1  (Windows 2000, Windows 95/98 and Windows NT)
$B:nhttp://server36.hypermart.net/winsniff/ >

WinSniffer $B$O!"(BMS Windows 95/NT/2000 $B$GMxMQ$G$-$k=i$a$F$N%3%s%=!<%k7?%9(B
$B%K%C%U%!$G!"B??t$N5!G=$rHw$($F$$$^$9!#(BPOP3/TELNET/HTTP/FTP/IMAP/NNTP $B$N(B
$B%Q%9%o!<%I$r8!:w$G$-$^$9$7!"(BUNIX mailbox $B7A<0$N$9$Y$F$N%a!<%k%a%C%;!<%8(B
$B$rJ]B8$G$-$^$9!#$3$N%W%m%0%i%`$N3W?7E*$JE@$N0l$D$O8D!9$N%W%m%H%3%k$rJL(B
$BJL$K2r@O$7(B ($B%m%0%$%s$H%Q%9%o!<%I$@$1$r2. anomy sanitizer 1.23 (Linux and Solaris)
$B:nhttp://mailtools.anomy.net/

Anomy mail sanitizer $B$O%H%m%$$NLZGO$d%&%$%k%9$H$$$C$?EE;R%a!<%k$r2q$7$?(B
$B967b$r%U%#%k%?$9$k$?$a$N%D!<%k$G$9!#$3$N%D!<%k$O(B RFC822 $B7A<0!"$"$k$$$O!"(B
MIME $B7A<0$NEE;R%a!<%k$rFI$_9~$_!"E:IU%U%!%$%k$r:o=|$7$?$jL>>N$rJQ99$7!"(B
$B0[>o$JD9$5$N(B MIME $B%X%C%@%U%#!<%k%I$rC;$/@07A$7$?$j!"(BJavascript $B$H(B Java
$B$r;HMQ$G$-$J$$$h$&$K$7$F(B HTML $B$r0BA4$K$7$?$j$7$^$9!#$3$N%=%U%H%&%(%"$G(B
$B$O!"0lEY$@$12rAw$5$l$k%a%C%;!<%8$r8!::$9$k3+H/HG$N%5%]!<%H$,2C$($i$l$^$7$?!#(B
$B%P%0$,=$@5$5$l!"$^$?=*N;%3!<%I$b$h$j0UL#$"$k$b$N$K$J$j$^$7$?!#(B

3. Pdump (Linux and SunOS)
$B:nhttp://pdump.lucidx.com/

pdump $B$O!"(BPerl $B8@8l$G5-=R$5$l$?@_Dj$N<+M3EY$,9b$$%Q%1%C%H%9%K%U%!$G$9!#(B
$B%M%C%H%o!<%/>e$N%H%i%U%#%C%/$r=q$-=P$7$?$j!"8!:w$7$?$j!"4F;k$7$?$j!"@8(B
$B@.$7$?$j!"2~B$$7$?$j$G$-$^$9!#(Btcpdump$B!"(Bngrep$B!"(Btcptrace$B!"(Bdsniff ($B$3$l$K(B
$BIU?o$9$k(B webspy $B$d(B urlsnarf)$B!"(Bpfilt$B!"(Bmacof$B!"(Bxpy $B$J$I$NFCD9$rB??tHw$($F(B
$B$$$^$9!#%f!<%6$O%W%i%0%$%s%7%9%F%`$rMxMQ$7$F4JC1$KJQ99$9$k$3$H$,$G$-$^(B
$B$9!#(B

4. Big Brother 1.5
(AIX, BSDI, DG-UX, Digital UNIX/Alpha, FreeBSD, HP-UX, IRIX, Linux, MacOS,
NetBSD, Netware, SCO, SINIX, Solaris, SunOS, True64 UNIX,
UNICOS, UNIX, Ultrix, Unixware $B$*$h$S(B Windows NT)
$B:nhttp://bb4.com/download.html

Big Brother $B$O4F;k%D!<%k$N=89gBN$G$9!#>pJs$,$?$@=8$a$i$l!"%G%P%$%9$,>p(B
$BJsDs6!$9$k(B SNMP $B$H$O0c$$!"(BBig Brother $B$O3F%m!<%+%k%7%9%F%`$,<+?H$N>pJs(B
$B$rCf1{$K%V%m!<%I%-%c%9%H$7$^$9!#F1;~$K!"(BBig Brother $B$O$9$Y$F$N%M%C%H%o(B
$B!<%/$K$D$J$,$l$?%7%9%F%`$KCf1{$+$i>pJs$r=8$a$K9T$-$^$9!#$3$l$O3W?7E*$J(B
$B%M%C%H%o!<%/4F;k$N9b$$8zN($H>iD9$JJ}K!$rDs6!$7$^$9!#(B1.3b $B$+$i(B 1.4h1 $B$^(B
$B$G$N%P!<%8%g%s$N(B BBDISPLAY $B$r;H$&:]$N%P%0$,=$@5$5$l$F$$$^$9!#(B

5.Secure Syslog 1.21 ( FreeBSD, Linux, OpenBSD, Solaris and SunOS)
$B:nhttp://www.core-sdi.com/english/slogging/ssyslog-dl.html

UNIX $B%7%9%F%`BP1~$N!"0E9f$rMxMQ$7$??7$7$$%;%-%e%"%7%9%F%`%m%.%s%0%D!<%k(B
$B$,MxMQ$G$-$k$h$&$K$J$j$^$7$?!#(Bsyslog $B%G!<%b%s$rCV$-49$($k$?$a$K@_7W$5$l(B
$B$?(B ssyslog $B$,!"%j%b!<%H$G%7%9%F%`$N%m%0$r4F;k$9$k$3$H$,$G$-$k(B PEO-1 $B$H(B
$B$$$&L>A0$N0E9f%W%m%H%3%k$rMxMQ$7$^$9!#$?$H$(?/F~Z$7!"4F;k$rB3$1$k$3$H$,$G$-$^$9!#(B

6.PGPacket 3.1 (Perl (any system supporting perl))

$B:nhttp://web.meson.org/pgpacket/


PGPacket $B$O!"(BPGP $B$G0E9f2=$5$l$?%U%!%$%k(B ($B$^$?$O!"(BOpenPGP $B$K5-$5$l$F$$$k(B
$B$b$N(B) $B$NCf?H$r2r@O$7$FI=<($7$^$9!#3F%Q%1%C%H(B ($B$b$A$m$s!"B??t$N0E9f2=$5(B
$B$l$?%Q%1%C%H$NCf?H$b$G$9!#(BPGPacket $B$G$O!"I|9f2=$G$-$^$;$s$1$l$I$b(B) $B$Nhttp://www.lac.co.jp/security/

-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Edition 5.5.5J
Comment: SAKAI Yoriyuki

iQA/AwUBOaGroJQwtHQKfXtrEQIUgwCdERaYSzfK6lGEtlM6kf2zOCvfbmIAoOEa
DYScfqfbrzCR8GGuAWWUolOy
=vTBF
-----END PGP SIGNATURE-----