$B%;%-%e%j%F%#%[!<%k(B memo - 2002.09

$B!!(B2. Description of the "tar" problem $B$O!"(BGNU tar $B$K$*$$$F!"(Btar $B%"!<%+%$%V$K(B ../ $B$J%Q%9L>F~$j$N%U%!%$%k$r;E9~$s$G$*$/$H!"(B $B$=$N%"!<%+%$%V$NE83+;~$K(B /etc/passwd $B$J$I$N=EMW%U%!%$%k$r>e=q$-$5$;$k$3$H$,$G$-$k!"$H$$$&;XE&$J$N$+$J!#(B 1.3.19 $B0JA0$NLdBj!"$H$5$l$F$$$?$,!"(B1.3.25 $B$G$bN`;w$NLdBj$,$"$kLOMM!#(B CVE: CAN-2001-1267$B!"(B CAN-2002-0399 ($BCf?H$,$J$$!D!D(B)$B!#(B

$B!!$5$i$K!"(Binfo-zip $B$N(B unzip 5.42 $B0JA0$K$bF1MM$NLdBj$,$"$k$h$&$@!#(B CVE: CAN-2001-1268, CAN-2001-1269$B!#(BHistory.550 $B$K$"$k$3$l$+$J(B?

5.5h (12 Jan 02):
 - unzip.h, unzip.c; mapname() in all ports except CMS/MVS, Tandem, TOPS20:
   added code to strip "../" path components from extracted names and new
   option "-:" to allow deactivating this security feature; changed mapname()

$B!!(BRed Hat fix: [RHSA-2002:096-24] Updated unzip and tar packages fix vulnerabilities$B!#(B FreeBSD ports $B$N(B archivers/gtar $B$K$O$3$N(B patch $B$O4^$^$l$F$$$J$5$=$&!#(B

2002.10.02 $BDI5-(B:

• Miracle Linux: tar, unzip

$B!!(BCAN-2002-0399 $B$OCf?H$,$G$-$F$^$9!#(B

$B!!(B2002.09.17 $B$N(B MS Word$B$KJ8=q$N%O%$%8%c%C%/$r5v$9LdBjE@(B $B$KDI5-$7$?!#(BCIACTech02-005$B!#(B

$B!!J?@.(B14$BG/(B7$B7n(B24$BF|!J?e!K(B17:30$B!A(B20$B!'(B50 $B3+:E$NBh(B 477 $B2sM};v2q!#D>8e$@$H8@$&$N$K!"%&%#%k%9%a!<%kAw?.A{$.$K$D$$$F!"2?$N5DO@$b$7$F$$$J$$LOMM!#(B $B$"$^$j$K%@%a$9$.!#(B

$B!!(B2002.09.24 $B$N(B $BIY;NDL(B HDD $BL5=~8r49$OI9;3$N0l3Q(B? $B9b29B?<>$N>u672<$G(BLSI$B$,7PG/Nt2=(B $B$KDI5-$7$?!#%=%K!

$B!!;~Be$O!V$U$D$&(B RAID 1$B!W$C$F%3%H$J$s$G$7$g$&$+!#$^$!!"0B$$$G$9$1$I$M$'!#(B

$B!!(B$B%5%s$,(BOpenSSL$B%W%m%8%'%/%H$K0E9f2=5;=Q$rDs6!(B (CNET) $B$NOC$K$O!"#173053 $B$b;2>H!#(BDebian GNU/Linux $B$5$s$O$I$&$5$l$k$s$@$m$&!#(B

$B!!(B2002.09.27 $B$N(B Tests of Anti-Virus Software: Comparison Test 2002-02 (Unix) Linux $B$KDI5-$7$?!#(B F-Secure AntiVirus $B$O!"(B--dumb $B%*%W%7%g%s$r$D$1$l$P$[$\(B 100% $B$NLOMM!#(B

$B!!(B2002.09.12 $B$N(B Apple QuickTime ActiveX v5.0.2 Buffer Overrun (a091002-1) $B$KDI5-$7$?!#$*$/$l$P$;$J$,$i!"(BApple $B%*%U%#%7%c%k>pJs$rDI5-!#(B QuickTime 5 for Windows $BMQ$N(B fix $B$O=P$J$$LOMM!#(B

$B!!(Bpatch $B$,$"$k$N$GE,MQ$9$l$P$h$$!#Ev=i(B FPSE 2000 for Windows 2000/XP $B$@$1$@$C$?$,!"(BFPSE 2002 $BMQ!"(BFPSE 2000 for NT 4.0 $BMQ$bEP>l$7$F$$$k!#(B Windows XP SP1 $B$K$O$3$N(B patch $B$,4^$^$l$F$$$k!#(B $B$^$?!"(BFPSE 2002 $BMQ(B patch $B$rE,MQ$9$k$K$O!"$"$i$+$8$a%"%C%W%G!<%H(B patch $B$rE,MQ$7$F$*$/I,MW$,$"$k$=$&$@!#(B Q317296 $B$r;2>H$5$l$?$$!#(B

$B!!$J$*!"(BFPSE $B$,ITMW$J>l9g$O%"%s%$%s%9%H!<%k$7$F$7$^$&$N$,$h$$!#(B $B%G%U%)%k%H$G$O%$%s%9%H!<%k$5$l$F$7$^$C$F$$$k$N$GCm0U$5$l$?$$!#(B

2002.12.13 $BDI5-(B:

$B!!(BFPSE 2000 / 2002 for UNIX $B$K$O$3$NLdBj$O$J$$$=$&$@!#;2>H(B:

• Update - Microsoft Security Bulletin MS02-053 (rtr.com)

  FPSE for UNIX $B$r%5%]!<%H$7$F$$$k(B Ready-to-Run Software $B$K$h$k8x<08+2r!#(B

• Microsoft FrontPage Server Extensions 2002 for UNIX (Microsoft)

  $B:G?7%P!<%8%g%s$O(B 5.0.2.2623$B!#$?$@$7!"(BHEAD / HTTP/1.0 $B$J$I$rl9g$,$"$k!#$H$$$&$+!"E:IU$5$l$F$$$k$b$N$G$O(B FrontPage/5.0.2.2510 $B$K$J$k!#(B

• Microsoft FrontPage 2000 Server Extensions SR1.2: Downloads for UNIX-Based Servers (Microsoft)

  $B:G?7%P!<%8%g%s$O(B 4.0.2.4222$B!#(B 2003.02 $B$K(B Service Release 1.4 $B$H$$$&$b$N$,EP>l$7$?;~E@$G(B FPSE 2000 $B$OBG$A$I$a$J$N$@$=$&$@!#(B

• $B$1$s$N$\$d$-(B: 2002-12-10 shtml.dll (tdiary.net)

Debian GNU/Linux

• [SECURITY] [DSA 149-2] New glibc packages fix

• [SECURITY] [DSA 168-1] New PHP packages fix several vulnerabilities

  main()$B!"(Bfopen() $B$b$N!#(B

• [SECURITY] [DSA-136-3] Multiple OpenSSL problems (update)

Red Hat Linux

• [RHSA-2002:060-17] Updated Zope packages are available

SGI IRIX

• [VulnWatch] IRIX IGMP multicast report Denial of Service vulnerability

• [VulnWatch] IRIX default root umask and coredumps

$B!!(BMicrosoft PPTP Server and Client remote vulnerability $B$NOC!#(BCNET $B$N5-;v$K$h$l$P!"(BMicrosoft $B$OG$0U$N%3!<%I$N

$B!!(B2002.08.21 $B$N(B web $B%V%i%&%64XO"(B $B$KDI5-$7$?!#(BMS02-050: $B>ZL@=q3NG'$NLdBj$K$h$j!"(BID $B$,56Au$5$l$k(B (Q328145) $B$,2~D{!#(B Mac OS / Mac OS X $BMQ(B IE $B=$@5HG$,?7$?$KEP>l!#$^$@(B fix $B$,$J$$$N$O(B XP 64bit, Office 98/2001/v.X for Mac$B!"(B OutlookExpress for Mac$B!#(B

$B!!(BLinux $BMQ(B anti-virus soft 12 $B$BF|K\%(%U!&%;%-%e%"!"%"%s%A%&%#%k%9(BLinux$B%2!<%H%&%'%$$rH/I=(B (f-secure.co.jp) $B$J$s$F$N$b=P$F$^$9$,!"!D!D!#(B

$B!!(BComparison Test 2002-03 (Unix) FreeBSD, OpenBSD, Solaris $B$b=P$F$^$9!#(BSophos AntiVirus$B!"(BLinux $B$d(B FreeBSD $B$G$O(B 100% $B$J$N$K(B Solaris $B$G$O(B 94.6% $B$J$N$O$J$<(B?

2002.09.30 $BDI5-(B:

$B!!F|K\%(%U%;%-%e%"$N5H2,$5$s$+$i(B ($B$"$j$,$H$&$4$6$$$^$9(B):

$B!|(B1. $B!V(BF-Secure $B$@$1(B 80% $BBf!#!W$O3HD%;R@_Dj$N0c$$$K$h$k$b$N$G$9!#(B
$B!!!!!V(B--dumb$B!W%*%W%7%g%s$r;XDj$9$k$3$H$G$[$\A4$F$N%&%$%k%9$r8!=P$$$?$7$^$9!#(B

$B!!(Bav-test.org$B$NI>2ACf$N!V(BF-Secure$B!W$N9`L\$O3N$+$K(B80%$BBf$H$J$C$F$*$j$^$9$,!"$3$l$O!"%F%9%HCf$N(BF-Secure$B%3%^%s%I%i%$%sHG%9%-%c%J$N@_Dj$,B>$N%=%U%H%&%'%"$H0[$J$j!"%F%9%HBP>]%U%!%$%k$K4^$^$l$k$$$/$D$+$N3HD%;R$,8!::BP>]30$K$J$C$F$$$k$?$a$G$9!#(B
$B!!%U%!%$%kL>$rD>@\;XDj$9$k$+!V(B--dumb$B!W%*%W%7%g%s$r;XDj$7!"3HD%;R$K$h$i$J$$8!::$r9T$&$3$H$G!"$[$\A4$F$N%&%$%k%9$r8!=P$$$?$7$^$9!#(B $B7h$7$F(BF-Secure$B$N8!::%(%s%8%s<+BN$NG=NO$,Nt$C$F$$$k$o$1$G$O$J$$$3$H$r$4M}2r4j$$$^$9!#(B
$B!!$J$*!"3HD%;R$K$h$i$J$$8!::$r$7$?>l9g$N8!=PN($N0lIt$,!"(Bav-test.org$B$N0J2<$N%Z!<%8$N!V(BBest possible settings$B!W$N9`L\$G3NG'$G$-$^$9!#(B
$B!!!!!!!!(Bhttp://www.av-test.org/down/data/2002-02-en/results.xls
$B!!3HD%;R@_Dj$N7o$r4^$a$F3F%(%s%8%s$NF0:n>\:Y%3%a%s%H$,(Bav-test.org$B$N0J2<$N%Z!<%8$G$b3NG'$G$-$^$9!#(B
$B!!!!!!!!(Bhttp://www.av-test.org/down/data/2002-02-en/comments.txt
$B!!$^$?!"(BF-Secure$B$G$O(B24$B;~4VBN@)$G3hF0$9$k%&%#%k%98&5f%A!<%`$rMJ$7$F$*$j!"?75,$KH/@8$9$k%&%#%k%9$KBP$7$F$b?WB.$KBP1~$7$F$$$^$9$N$G!"%&%$%k%9$K46@w$9$k2DG=@-$O6K$a$F>/$J$$$H9M$($i$l$^$9!#(B

$B!|(B2. $B!V(BF-Secure $B%"%s%A%&%#%k%9(BLinux$B%2!<%H%&%'%$$rH/I=(B (f-secure.co.jp) $B$J$s$F$N$b=P$F$^$9$,(B...$B!W$K$D$$$F$O!"(B"F-Secure $B%"%s%A%&%$%k%9(BLinux$B%2!<%H%&%'%$(B"$B$O%3%^%s%I%i%$%sHG(B(Linux$B%5!<%PHG(B)$B$H$OJL@=IJ$G$"$j!"%G%U%)%k%H@_Dj$G$[$\A4$F$N%&%$%k%9$r8!=P$$$?$7$^$9!#(B
$B!!!!(B(F-Secure$B%"%s%A%&%#%k%9(BLinux$B%2!<%H%&%'%$(B:
$B!!!!!!!!(Bhttp://www.f-secure.co.jp/products/linux_gw/index.html )

$B!!@hF|H/I=$$$?$7$^$7$?!V(BF-Secure$B%"%s%A%&%#%k%9(BLinux$B%2!<%H%&%'%$!W$G$OA4$F$N3HD%;R$r8!::$$$?$7$^$9$N$G!"$[$\A4$F$N%&%$%k%9$r8!=P$$$?$7$^$9!#(B
$B!!7h$7$F!"!V(BF-Secure$B%"%s%A%&%#%k%9(BLinux$B%2!<%H%&%'%$!W$N%&%$%k%98!::G=NO$NG=NO$,Nt$C$F$$$k$o$1$G$O$J$$$3$H$r$4M}2r4j$$$^$9!#(B
$B!!!V(BF-Secure$B%"%s%A%&%#%k%9(BLinux$B%2!<%H%&%'%$!W$K$D$$$F$O0J2<$N%Z!<%8$G(B90$BF|4V;nMQHG$b8x3+$7$F$*$j$^$9$N$GI,MW$K1~$8$FI>2AEy$K$4MxMQ$$$?$@$1$^$9$H9,$$$G$9!#(B
$B!!!!(BF-Secure$B%"%s%A%&%#%k%9(BLinux$B%2!<%H%&%'%$(B[90$BF|4VI>2AHG(B]:
$B!!!!!!!!(Bhttp://www.f-secure.co.jp/download/trial/index.html

$B!!(Bapache 2.0.42 $B=P$^$7$?!#(Bmod_dav $B$G(B DoS $B967b$5$l$k%P%0$,(B fix $B$5$l$F$$$k$=$&$G$9!#(B

$B!!(Bpath MTU discovery $B$,DL$k$h$&$J(B wall / $B%U%#%k%?$r9=C[$9$k$h$&$K?4$,$1$^$7$g$&!#(BICMP need fragment $B$O$J$k$Y$/%U%#%k%?$7$J$$$h$&$K$7$^$7$g$&!#(B

$B!!(Bsourceforge $B$+$i$@$H(B tripwire-2.3.1-2 $B$,F~tripwire.org $B$N$d$D$O$A$g$C$H!D!D!#(B

$B!!(B#170987 $B$G(B jbeef $B;a$O(B

$B;XE&$r$7$?B&$b!"!VLdBj$J$$!W$HH]Dj$5$l$k$H!J$=$7$F$=$l$,4V0c$C$F$$$k$H!K$=$l$K:FH?O@$9$k$N$KM>7W$J%(%M%k%.!<$rI,MW$H$7$F$7$^$&$N$,?M>p$@$H;W$$$^$9(B

$B$H=R$Y$F$$$k$o$1$@$,!"$=$ND>8e$+$i!"7W$J%(%M%k%.!<$rI,MW$H$7$F$$$=$&$J:FH?O@$rM>57$J$/$5$l$F$$$k$h$&$G!"$J$s$@$+$J$"!#(B

$B!!(BMac OS X 10.2, 10.2.1 $B$Ke$GG$0U$N%7%'%k%3%^%s%I$r[memo:4864] $B$b;2>H!#(B

$B!!(B2002.09.21 $B$N(B Bypassing SMTP Content Protection with a Flick of a Button $B$KDI5-$7$?!#%H%l%s%I%^%$%/%m(B solution 4732/4742 $BEP>l!#(B

$B!!HH?M$O=;M'%Y!<%/%i%$%H$N%Q%C%1!<%8Iu;_:`!V(BEME-U$B!W$NLOMM!#(B $B1F6A$,6K$a$F9-$$HO0O$K$o$?$k62$l$"$j!#(B HDD$BITNIIJ$NL5=~8r49$GIY;NDL$NIiC4$O(B100$B2/1_D6$9(B ($BF|7P(B BP) $B$N$@$=$&$G!#$9$4$$$M!#(B

$B!!(BIO DATA: $BJ@$B!#3:EvIJ$O!"4uK>

2002.09.30 $BDI5-(B:

$B!!(B$B%=%K! (PC Watch)$B!#(B

$B!!(B$BIY;NDL(BHDD$BITNI!"BP:vCY$lB>@=IJ$XGH5Z7|G0(B ($BF|7P(B BizTech)$B!#(B

$B!!(BVisual C++ .NET $B$N(B /GS $B%9%$%C%A(B $B$d(B IBM $B9>F#$5$s$N(B ProPolice (SSP)$B!"(B FreeBSD packages/ports $B$K$bF~$C$F$$$k(B libparanoia $B$,>R2p$5$l$F$$$J$$$N$O$J$<(B?

$B!!(B2002.09.17 $B$N(B CERT Advisory CA-2002-27 Apache/mod_ssl Worm $B$KDI5-$7$?!#0!l!#(B

$B!!(BRFC2046: Multipurpose Internet Mail Extensions (MIME) Part Two: Media Types $B$N(B section 5.2.2.1 $B$GDj5A$5$l$F$$$k(B Fragmentation and Reassembly $B5!9=$rMxMQ$9$k$H!"%"%s%A%&%#%k%9%2!<%H%&%'%$$r2sHr$7$F%&%#%k%9$rAw$j9~$`$3$H$,2DG=$K$J$k!"$H$$$&OC!#(BNIDS $B2sHr%M%?$K$b$=$&$$$&$N$,$"$j$^$7$?$M$(!#(B

$B!!2sHrJ}K!$H$7$F$O!"%U%!%$%"%&%)!<%k$J$I$G(B message/partial $B$J%a!<%k$rC!$-Mn$H$7$F$7$^$&J}K!$,$"$k!#$H8@$C$F$b!"$A$g$C$HMpK=$@$h$M$'!#$d$O$j%"%s%A%&%#%k%9%2!<%H%&%'%$<+?H$,$-$A$s$HBP1~$9$k$3$H$,K>$^$7$$$o$1$G!#(B $B855-;v$G$O(B symantec $B$d(B trendmicro $B$J$I$$$/$D$b$N%W%m%@%/%H$NBP1~>u67$,=R$Y$i$l$F$$$kB>!"(B MIMEDefang $B$G$O(B 2.21 $B$G(B fix $B$5$l$?$=$&$@!#$^$?(B amavis-perl $B$G$bMxMQ$5$l$F$$$k(B MIME::Tools 5.411a $B$K$b(B$B$3$NLdBj$,$"$j(B$B!"(B patch $B$H!"$3$N(B patch $B$rE,MQ$7$?(B MIME-tools-5.411a-RP-Patched.tar.gz $B$,8x3+$5$l$F$$$k!#(B

$B!!$J$*!"3F<+$G>u67$r;n$7$?$$>l9g$O(B http://www.gfi.com/emailsecuritytest/ $B$K(B go! $B$i$7$$!#(B

$B!!(BCVE: CAN-2002-1121$B!#(B CERT Vulnerability Note: VU#836088$B!#(B

2002.09.24 $BDI5-(B:

$B!!(Bsolution 4742: InterScan VirusWall UNIX: SMTP$B!'J,3d%a!<%k$X$NBP1~(B$B!"(B solution 4732: InterScan VirusWall NT: SMTP$B!'J,3d%a!<%k$X$NBP1~(B ($B%H%l%s%I%^%$%/%m(B)$B!#(Bmessage/partial $B$r3VN%$7$F=*$j!"$N$h$&$KFI$a$k!#(B

$B!!$J$*!"$3$N(B patch $B$rE,MQ$7$F$b!"(Bjview $B%3%^%s%I$J$I$G3NG'$G$-$k(B build $BHV9f$KJQ2=$O$J$$$h$&$@!#(BKB Q329077 $B$K$O(B This update upgrades your Microsoft VM with the 5.00.3807 patch $B$H$"$j!"<($5$l$F$$$k%l%8%9%H%j$K$b(B "Version"="5,00,3807,0" $B$J$s$F=q$$$F$"$k$N$@$,!"(BMS02-052 $B<+?H$K$O$o$6$o$6!V(B$BCm(B : Jview $B$K$h$jI=<($5$l$k%P!<%8%g%sHV9f$K4X$o$i$:!">e5-$N%l%8%9%H%j%-!<$O$3$N=$@5%W%m%0%i%`$N@5$7$$%$%s%9%H!<%k$r3NG'$9$kMWAG$H$J$j$^$9(B$B!W$H=q$$$F$"$k$N$G!"$=$&$$$&$3$H$J$N$@$m$&!#$$$^$$$AGpJs$"$j$,$H$&$4$6$$$^$9(B)

$B!!$H$3$m$,!"(BMicrosoft Java VM $B$K$O$BJF(BMicrosoft$B$N(BJava$B%;%-%e%j%F%#!<%[!<%k=$@5$OIT==J,$HH/8+ (INTERNET Watch)$B!#(B MS02-052 $B$G(B fix $B$5$l$?$N$O!"(B Vulnerabilities in Microsoft's Java implementation $B$G!V(B10 $B$r1[$($k7j$,$"$k!W$H$5$l$?$b$N$NCf$N0lIt$K$9$.$J$$$H$$$&$N$@!#(B $B$R$-$D$E$-!"(BJava $B$r(B off $B$K$9$k$+!"(BSun $B$N(B Java Plug-in $B$J$I$rMxMQ$9$k$+!"$9$kI,MW$,$"$k$h$&$@!#(B

2002.10.01 $BDI5-(B:

$B!!(BTechnical information about the vulnerabilities fixed by MS-02-52$B!#(B

$B!!(BWindows 2000 $B%?!<%_%J%k%5!<%P!

$B!!(Bpatch $B$,$"$k$N$GE,MQ$9$l$P$h$$!#$^$?(B Windows XP SP1 $B$G$O$3$NLdBj$O=$@5$5$l$F$$$k!#(B

$B!!;2>H(B: Microsoft Windows XP Remote Desktop denial of service vulnerability$B!#(B

$B!!(B2002.09.19 $B$N(B $BKI1RD#$N%G!<%?N.=P$GO*Dh!J>e!K(BIT$B6H3&$N2<@A$19=B$$N4m$&$5(B $B$KDI5-$7$?!#!J2l!#(B

$B!!(BHTML $BHG(B:

• SecurityFocus Newsletter #159[1/2] 2002-8-19->2002-8-23$B!"(B SecurityFocus Newsletter #159[2/2] 2002-8-19->2002-8-23

• SecurityFocus Newsletter #160 2002-8-26->2002-8-30

• SecurityFocus Newsletter #161 2002-9-2->2002-9-6

$B!!%F%-%9%HHG(B:

• SecurityFocus Newsletter #159[1/2] 2002-8-19->2002-8-23$B!"(B SecurityFocus Newsletter #159[2/2] 2002-8-19->2002-8-23

• SecurityFocus Newsletter #160 2002-8-26->2002-8-30

• SecurityFocus Newsletter #161 2002-9-2->2002-9-6

$B!!(B2002.06.25 $B$N(B WindowsXP$B$N(B5/30$BLdBj$r9M$($k%Z!<%8(B $B$KDI5-$7$?!#(BWindows XP SP1 $B$rE,MQ$9$k$H!"LdBj$,>CLG$7$F$7$^$&(B?!

$B!!@5<0$KEP>l$7$F$$$^$9!#(BIE 6 SP1 README $B$bFI$_$^$7$g$&!#FC$K!"%;%-%e%j%F%#3HD%$N$?$a$N5!G=(B: $B0J9_!#(B

$B!!(B2002.07.31 $B$N(B OpenSSL Security Advisory [30 July 2002] $B$KDI5-$7$?!#(BDebian $B$N$5$i$K?7$7$$(B fix package $B=P$F$^$9!#(B Turbolinux $B$N7Y9p!#(B

$B!!(B2002.09.17 $B$N(B UNIX fixes $B$KDI5-$7$?!#(BFreeBSD-SA-02:39.libkvm - Applications using libkvm may leak sensitive descriptors $B$NItJ,$KDI5-$H=$@5!#%P%+$9$.(B > $B26!#(B

$B!!$I$&9M$($F$b!VI9;3$N0l3Q!W!#$3$3$G$bI,MW$H$5$l$F$$$k$N$O!V9=B$2~3W!W$J$N$@$,!"!D!D!#(B

2002.09.21 $BDI5-(B:

$B!!(B$BKI1RD#$N%G!<%?N.=P$GO*Dh!J2 ($BF|7P(B IT Pro)$B!#(B

$B!!(B2002.09.17 $B$N(B MS Word$B$KJ8=q$N%O%$%8%c%C%/$r5v$9LdBjE@(B $B$KDI5-$7$?!#(BMicrosoft $B8x<08+2rEP>l!#(B

$B!!?tJ,$GFI$a$F$7$^$&$N$@$1$I!"7P83>e(B ($B>P(B)$B!"$3$N5-;v$r=q$/$N$O$?$$$X$s$@$C$?$@$m$&$H;W$&!#$=$s$JO+:n$rL5NA$GFI$a$k$N$OK\Ev$K$"$j$,$?$$$3$H$G$9!#(B

$B!!;2>H(B: Security side-effects of Word fields$B!#(B $B1#$7%U%#!<%k%I!"$G$9$+!D!D!#(B

2002.09.19 $BDI5-(B:

$B!!(B$BJs9p$5$l$?(B Microsoft Word $B%U%#!<%k%I$N@HpJs(B (Microsoft)$B!#(B $B!V(B$B:GA1$N%;%-%e%j%F%#$N$?$a$K!"%^%$%/%m%=%U%H$O$*5RMM$K(B Word 2002 (Office XP) $B$r$4MxMQ$$$?$@$/$3$H$r?d>)$7$^$9(B$B!W(B $B$H$$$&$N$O!"$^$"!"(BMicrosoft $B$H$7$F$O!"$=$&$J$s$@$m$&$J$"!#(B

2002.09.30 $BDI5-(B:

$B!!(BCIACTech02-005: Understanding Capturing Files with Microsoft Word Field Codes (CIAC)$B!#(B $B>\:Y$J2r@b!#(B

2002.11.01 $BDI5-(B:

$B!!(BMS02-059: Word $B%U%#!<%k%I$*$h$S(B Excel $B$N30It%G!<%?99?7$NLdBj$K$h$j!">pJs$,O3$($$$5$l$k(B (Q330008) $BEP>l!#(BWord 97/98/2000/2002, Excel 2002, Word 98/2001/X for Macintosh $B$GLdBj$,H/@8$9$k!#(B Word 2000/2002, Excel 2002, Word 98/2001/X for Macintosh $B$K$D$$$F$O=$@5%W%m%0%i%`$b$"$k!#(BWord 97/98 for Windows $B$@$1!"$^$@(B patch $B$,$J$$!#(B

Debian GNU/Linux

• [SECURITY] [DSA 166-1] New purity packages fix potential buffer overflows

• [SECURITY] [DSA 167-1] New kdelibs fix cross site scripting bug

• [SECURITY] [DSA-136-2] Multiple OpenSSL problems (update)

FreeBSD

• FreeBSD-SA-02:39.libkvm - Applications using libkvm may leak sensitive descriptors

  sgid kmem $B$J%"%W%j$+$i5/F0$7$?%W%m%;%9$+$i$O(B /dev/mem $B$*$h$S(B /dev/kmem $B$rD>@\FI$a$J$$$O$:$J$N$K!"pJs(B: [VulnWatch] iDEFENSE Security Advisory 09.16.2002: FreeBSD Ports libkvm Security Vulnerabilities$B!#(B

  patch $B$,$"$k$N$GE,MQ$9$k$+!"5-:\$N=$@5:Q$_%P!<%8%g%s$r(B cvsup $B$9$kEy$7$FF~kernel $B$r:F9=C[!"%$%s%9%H!<%k$7$F(B reboot libkvm $B%i%$%V%i%j$r:F9=C[$7%$%s%9%H!<%k!#(B static link $B$5$l$?%3%^%s%I$,$"$l$P!"$=$l$b:F9=C[$7%$%s%9%H!<%k!#(B

  2002.09.19 $BDI5-(B:

  $B:4F#$5$s$+$i(B ($B$"$j$,$H$&$4$6$$$^$9(B):

    > patch $B$,$"$k$N$GE,MQ$9$k$+!"5-:\$N=$@5:Q$_%P!<%8%g%s$r(B
    > cvsup $B$9$kEy$7$FF~R2p$5$l$F$$$^$9!#@EE*%j%s%/$7$F$$$k%P%$%J%j$r(B
   $B:F9=C[$9$kI,MW$O$"$k$b$N$N!":#2s$N=$@5$K4X$7$F!":F5/F0$O(B
   $BI,$:$7$bMW5a$5$l$^$;$s!#(B
  
   $B$^$?!"(B
  
     > sgid kmem $B$J%"%W%j$+$i5/F0$7$?%W%m%;%9$+$i$O(B
     > /dev/mem $B$*$h$S(B /dev/kmem $B$rD>@\FI$a$J$$(B
     > $B$O$:$J$N$K!"r7o$O(B $B!V(Bsgid kmem $B$5$l$F$$$k$3$H!W$G$O$J$/(B
   $B!V?F%W%m%;%9$,(B /dev/kmem $B$r%*!<%W%s$7$F$$$k$3$H!W$G$9$7!"(B
   exec(2) $B$G(B descriptor $B$,EO$5$l$l$P!"$=$l$K$O%"%/%;%9(B
   $B$G$-$k$N$,IaDL$G$9$h$M!#(B
  
   $B:#2s$NLdBj$NMW$O!"%"%/%;%9$K9b$$8"8B$,I,MW$J%U%!%$%k$N(B
   descriptor $B$O(B exec(2) $B$7$?%W%m%;%9$KEO$5$J$$$h$&(B
   close-on-exec $B$r;XDj$9$Y$-$J$N$KBP$7$F!"(Bclose-on-exec $B$r(B
   $B;XDj$9$k$?$a$NJ}K!$,Ds6!$5$l$F$$$J$+$C$?!"$H$$$&ItJ,$K$"$j$^$9!#(B
   $B$D$^$j!VD>@\FI$a$J$$$O$:!W$J$N$G$O$J$/$F!"(B
   $B!VFI$a$J$$$h$&$K$9$Y$-$J$N$K!"$=$&$J$C$F$$$J$$!W$H$$$&$N$,(B
   $B@5$7$$M}2r$@$H;W$$$^$9!#(B
  	    

  kernel $B$X$2$X$2ItJ,$N4V0c$$$OCWL?E*$J$N$G(B <s> $B$G0O$C$FD>$7$F$*$-$^$7$?!#(B $BF|K\8lHG$N(B Re: ANNOUNCE: FreeBSD Security Advisory FreeBSD-SA-02:39.libkvm $B$b;2>H!#$D!<$+$A$c$s$HFI$a(B > $B26!#(B

Red Hat Linux

• [RHSA-2002:190-06] Updated gaim client fixes URL vulnerability

  7.0 $BMQ!#(B

• [RHSA-2002:189-08] Updated gaim client fixes URL vulnerability

  7.1$B!A(B7.3 $BMQ!#(B

• [RHSA-2002:036-26] Updated ethereal packages available

  6.2/7.0/7.1 $BMQ!#(B

• [RHSA-2002:188-08] New wordtrans packages fix remote vulnerabilities

  7.3 $BMQ!#(B $B;2>H(B: Guardent Client Advisory: Multiple wordtrans-web Vulnerabilities

NetBSD

NetBSD SA $B$,(B$BBgNL2~D{(B$B!#(BNetBSD 1.6 $BEP>l$K$"$o$;$F(B $B2~D{$5$l$F$$$k$h$&$G$9!#$^$?!"(B2002-015 $B$H(B 2002-016 $B$O(B

NetBSD-SA2002-015 and NetBSD-SA2002-16 are pending advisories awaiting disclosure co-ordination with third parties. The issues they will describe are fixed in NetBSD-1.6 and NetBSD-current.

$B$J$N$@$=$&$G$9!#(B

• NetBSD Security Advisory 2002-006: buffer overrun in libc/libresolv DNS resolver

• NetBSD Security Advisory 2002-007: Repeated TIOCSCTTY ioctl can corrupt session hold counts

• NetBSD Security Advisory 2002-009: Multiple vulnerabilities in OpenSSL code

• NetBSD Security Advisory 2002-010: symlink race in pppd

• NetBSD Security Advisory 2002-011: Sun RPC XDR decoder contains buffer

• NetBSD Security Advisory 2002-012: buffer overrun in setlocale

• NetBSD Security Advisory 2002-013: Bug in NFS server code allows remote

• NetBSD Security Advisory 2002-014: fd_set overrun in mbone tools and pppd

• NetBSD Security Advisory 2002-017: shutdown(s, SHUT_RD) on TCP socket does not work as intended

• NetBSD Security Advisory 2002-018: Multiple security isses with kfd daemon

$B!!(BAES (Rijndael) $B$H(B Serpent $B$Kl$9$k$@$m$&!"$5$^$6$^$J2r@O$rBT$DI,MW$,$"$k$h$&$@$1$I!"$b$7$+$9$k$H!"!D!D!#(B

$B2a<:$NM-L5$NH=CG$K$O!$!H6H3&I8=`!I$K1h$C$?%j%9%/4IM}$r9T$C$F$$$k$+$I$&$+$,O@E@$H$J$k!#B;32$rM=KI$9$k$?$a$KAj1~$NBP:v$r;\$7$F$$$l$P!$Bh;0

$B$H$$$&$h$&$JOC$O!"(B$BBh(B 1 $B2s(B STPP $B%;%-%e%j%F%#BP:v%;%_%J!<(B $B$G$b%H%l%s%I%^%$%/%m$N5WJ]$5$s$,KAF,$G$*$C$7$c$C$F$$$i$C$7$c$$$^$7$?$M!#(B $B5WJ]$5$s$O$b$A$m$s!"!V$$$^$I$-%&%#%k%9BP:v$J$7$G$O%@%a%@%a$G$7$g$&!W$H$$$&OC$r$5$l$?$N$G$9$,!#(B

$B!!(B2002.07.31 $B$N(B OpenSSL Security Advisory [30 July 2002] $B$KDI5-$7$?!#(BOpenSSL 0.9.6g $BOC$H3F%Y%s%@!<$G$N:G?7$N(B fix $B$N>u67$r$^$H$a$F$_$?!#(B Debian $B$N?7$7$$(B fix package $B=P$F$^$9!#FC$K$^$@(B potato $B$N?M!":#$9$0E,MQ$7$h$&!#(B

$B!!(BOpenSSL $B7j(B $B$rFM$/(B worm $B$,EP>l!#(B$B:#$N$H$3$m(B$B!"(B $B!V(Bmod_ssl $B$,M-8z$J(B Linux $B>e$N(B Apache$B!W(B $B$,967bBP>]$NLOMM!#967b$O(B https (443/tcp) $B$rDL$8$F9T$o$l$k$N$G!"$3$l$r:I$$$G$"$l$P!"$H$j$"$($:$3$N(B worm $B$+$i$N967b$OKI$0$3$H$,$G$-$k!#(B

$B!!:#2sBP>]$K$J$C$F$$$ko$O!"3F%G%#%9%H%j%S%e!<%?(B/$B%Y%s%@!<$+$iG[I[$5$l$F$$$k!":G?7$N(B OpenSSL $B%Q%C%1!<%8$r%$%s%9%H!<%k$9$l$P$h$$!#(B $B$"$o$;$F(B mod_ssl $B%Q%C%1!<%8$b:G?7$N$b$N$r%$%s%9%H!<%k$9$kI,MW$,$"$k$3$H$,$"$k$N$GCm0U$5$l$?$$!#(B

$B!!(Bworm $B$K$h$k967b$,@.8y$9$k$H(B DDoS $B967bMQ$N%=%U%H$,?"$($D$1$i$l$k$=$&$@!#$3$$$D$O(B 2002/udp $B$r;H$C$FDL?.$r9T$&$=$&$J$N$G!"$3$l$b:I$$$G$7$^$&$N$,$h$$!#(B

2002.09.17 $BDI5-(B:

$B!!4XO">pJs(B:

• $B6[5^Js9p(B - OpenSSL $B$N@H (JPCERT/CC)

  $BF|K\$G$b46@w;vNc$,H/8+$5$l$F$$$k$h$&$G$9!#Cm0U$7$^$7$g$&!#8&5f$N$?$a$K(B 1 $BI$$[$7$$$1$I!"8=>u$N

• Analysis: OpenSSL Vulnerabilities (incidents.org)

  $B967bBP>]$O!"(B$B:#$N$H$3$m(B

  struct archs {
  char *os;
  char *apache;
  int func_addr;
  } architectures[] = {
  {"Gentoo", "", 0x08086c34},
  {"Debian", "1.3.26", 0x080863cc},
  {"Red-Hat", "1.3.6", 0x080707ec},
  {"Red-Hat", "1.3.9", 0x0808ccc4},
  {"Red-Hat", "1.3.12", 0x0808f614},
  {"Red-Hat", "1.3.12", 0x0809251c},
  {"Red-Hat", "1.3.19", 0x0809af8c},
  {"Red-Hat", "1.3.20", 0x080994d4},
  {"Red-Hat", "1.3.26", 0x08161c14},
  {"Red-Hat", "1.3.23", 0x0808528c},
  {"Red-Hat", "1.3.22", 0x0808400c},
  {"SuSE", "1.3.12", 0x0809f54c},
  {"SuSE", "1.3.17", 0x08099984},
  {"SuSE", "1.3.19", 0x08099ec8},
  {"SuSE", "1.3.20", 0x08099da8},
  {"SuSE", "1.3.23", 0x08086168},
  {"SuSE", "1.3.23", 0x080861c8},
  {"Mandrake", "1.3.14", 0x0809d6c4},
  {"Mandrake", "1.3.19", 0x0809ea98},
  {"Mandrake", "1.3.20", 0x0809e97c},
  {"Mandrake", "1.3.23", 0x08086580},
  {"Slackware", "1.3.26", 0x083d37fc},
  {"Slackware", "1.3.26",0x080b2100}
  };

  $B$N$h$&$G$9!#(B

• OpenSSL/Apache $B%o!<%`!V(BSlapper$B!W$NL"1d(B (ISSKK)

$B!!4XO"JsF;(B:

• OpenSSL $B$N@H (netsecurity.ne.jp)

• Slapper $B%o!<%`!!9T@/I\!"<+<#BN$G%?!<%2%C%H$K$J$k$N$O(B 38 IP$B%"%I%l%9(B(2002.9.16) (netsecurity.ne.jp)

• Slapper$B%o!<%`!"967b$N$?$a$NJbJ<%^%7%s$rAH?%Cf(B (ZDNet / $B%m%$%?!<(B)

• $B!X%j%J%C%/%9!Y%5!<%P!<$G%M%C%H%o!<%/$r:n$k%o!<%`!X%9%i%C%Q! (WIRED NEWS)

$B!!(Bopenssl-too-open.tar.gz $B$J$s$F$b$N$b$"$k$N$G!"FCDj%U%!%$%k$NM-L5$@$1$G%d%i%l6q9g$rH=CG$7$?$j$7$J$$$h$&$K$7$^$7$g$&!#(B

2002.09.25 $BDI5-(B:

$B!!(B$B!V%&%$%k%9$N?J2=!W$r<($7$?(BSlapper$B%o!<%`(B (ZDNet)$B!#(B $B$3$l$+$i$O(B P2P $B$,N.9T$j$J$s$G$7$g$&$+!#(B

2002.10.02 $BDI5-(B:

$B!!(B$BCm0U!'(B4$B (ISSKK)$B!#(B $B$5$i$J$k0!

Red Hat

• [RHSA-2002:169-13] Updated ethereal packages are available

• [RHSA-2002:186-07] Updated scrollkeeper packages fix tempfile vulnerability

• [RHSA-2002:188-08] New wordtrans packages fix remote vulnerabilities

• [RHSA-2002:189-08] Updated gaim client fixes URL vulnerability

Debian

• [SECURITY] [DSA 159-2] New Python packages fix problem introduced by security fix

• [SECURITY] [DSA 160-1] New scrollkeeper packages fix insecure temporary file creation

• [SECURITY] [DSA 161-1] New Mantis package fixes privilege escalation

• [SECURITY] [DSA 162-1] New ethereal packages fix buffer overflow

• [SECURITY] [DSA 163-1] New mhonarc packages fix cross site scripting problems

• [SECURITY] [DS 164-1] New cacti package fixes arbitrary code execution

HP (Compaq) Tru64 UNIX

• [security bulletin] SSRT2310a HP Tru64 UNIX & HP OpenVMS Potential OpenSSL Security Vulnerability (fwd)

• [security bulletin] SSRT-547 HP Tru64 UNIX Potential Security Vulnerabilities TPC/IP, FTPD, ARP (fwd)

TRU64 formal disclosure from Snosoft. $B$J$s$F$N$b=P$F$^$9!#(B

HP-UX

• HPSBUX0209-215 Security Vulnerability in XDR library
  HPSBUX0207-197 Sec. Vulnerability in Apache Server Chunk Encoding Rev 08

• HPSBUX0209-217 Sec. Vulnerability in Apache OpenSSL
  HPSBUX0208-209 Sec. Vulnerability in DNS resolver libraries (rev. 5)

IRIX

• Netscape JRE vulnerability on IRIX

$B!!(BQuickTime 5.0.2 for Windows $B$N(B ActiveX $B%3%s%]!<%M%s%H$Ke$GG$0U$N%3!<%I$r

$B!!(BQuickTime 6 for Windows $B$K$O$3$NLdBj$O$J$$$H$$$&!#(Bupgrade $B$7$^$7$g$&!#(B

2002.09.17 $BDI5-(B:

$B!!(B[harden-mac:0083] $B$G$N;XE&$K$"$o$;$F(B "for Windows" $B$rDI5-!#(B

2002.09.30 $BDI5-(B:

$B!!(BApple $B%*%U%#%7%c%k(B: M-128: Apple QuickTime ActiveX Buffer Overrun [Apple Security Advisory APPLE-SA-2002-09-19]$B!#(B $B$3$3$G$b!V(BQuickTime 6 for Windows $B$K(B upgrade$B!W$K$J$C$F$^$9!#(BQuickTime 5 for Windows $BMQ$N(B fix $B$O=P$J$$LOMM!#(B

$B!!(B2 $B$D$N(B CRLF Injection $BLdBj;XE&!#(B $B%j%/%(%9%H$K(B %0D%0A $B$rA^F~$9$k$H%/%m%9%5%$%H%9%/%j%W%F%#%s%0@H

• PHP header() CRLF Injection

  $B2sHrJ}K!$J$7!#F~NOCM8!::$r9T$&$3$H$G2sHr$5$l$?$$!#(B

• PHP fopen() CRLF Injection

  php.ini $B$G(B allow_url_fopen $B$r(B Off $B$K$9$l$P2sHr$G$-$k!#(B

$B!!(BPGP Corporate Desktop 7.1.[01] $B$K$ND9$5$r$-$A$s$H%A%'%C%/$7$F$$$J$$$?$a!"D9Bg$J%U%!%$%kL>$rMxMQ$7$FG$0U$N%3!<%I$rPGPhotfix_OutlookLFN_20020828.zip $B$,8x3+$5$l$F$$$k$N$GE,MQ$9$l$P$h$$!#(B patch $B$N(B readme $B$K$h$l$P!"99?7$5$l$k%U%!%$%k$O(B PGPexch.dll $B$H(B PGPsc.dll $B$N$h$&$@!#(B

$B!!4XO"JsF;(B: PGP$B0E9f%a!<%k$,!HEE;R$NCF4]!I$K$J$k!)(B (ZDNet)

$B!!(BMSIE $B$H(B KDE Konqueror $B$KBP$9$k;XE&!#(B

• MSIEv6 % encoding causes a problem again

  $B

• MSIEv6 % encoding - Konqueror 3.0.3 also vulnerable

  fix $B=P$^$7$?(B: KDE Security Advisory: Konqueror Cross Site Scripting Vulnerability

$B!!(BKDE $BJ}LL$G$O(B KDE Security Advisory: Secure Cookie Vulnerability $B$J$s$F$N$b=P$F$$$k$=$&$G!#(B

$B!!(BMicrosoft Java VM $B$K$O(B 10 $B$r1[$($kL$8x3+$N@H[memo:1498]$B!#(B $B$C$F!"(BMicrosoft Java VM $B0MB8$@$H%@%a$G$9$,(B [memo:3933]$B!#(B $B=;4p%M%C%H$G$*$J$8$_$NAmL3>J$G$9$J!D!D!#(B

$B!!4XO"JsF;(B: Internet Explorer$B$N(BJava$B4D6-$K%;%-%e%j%F%#!<%[!<%k(B (INTERNET Watch)$B!#;3Ln0f$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B!!F|K\8lHG$,?7$?$K(B 2 $B$D=P$F$^$7$?(B ($BC1$K5$$,$D$/$N$,CY$$(B > $B26(B)$B!#(B

• $BBh(B2$B2s(B - $B:G>.8B$NFC8"$H$$$&2]Bj(B

• $BBh(B3$B2s(B - $B=PNO$,?.MQ$G$-$J$/$J$k;~(B: $B%/%m%9%5%$%H(B $B%9%/%j%W%F%#%s%0$N2r@b(B

$B!!5$J,$O(B$B%$%s%G%Z%s%G%s%9!&%G%$(B? $BG'>Z$b$J$K$b$+$+$C$F$J$$$h$&$JL5@~(B LAN $B$J$i!"IT@5%"%/%;%96X;_K!$K$b?($l$J$$$@$m$&$7!D!D!#(B

$B!!(B2002.08.21 $B$N(B web $B%V%i%&%64XO"(B $B$KDI5-$7$?!#(BMS02-050: $B>ZL@=q3NG'$NLdBj$K$h$j!"(BID $B$,56Au$5$l$k(B (Q328145) $B$,2~D{!#(B Windows 2000 $BMQ(B patch $B$,?7$?$KEP>l!#$^$@(B fix $B$,$J$$$N$O(B XP 64bit, Office 98/2001/v.X for Mac, IE/OutlookExpress for Mac$B!#(B

$B!!$^$?!"$3$N(B patch $B$rE,MQ$9$k$3$H$K$h$kI{:nMQ$,(B MS02-050 $B$N!V7Y9p!WMs$KDI5-$5$l$F$$$k!#(Bpatch $B$rE,MQ$9$k$H!"(B Microsoft $B<+?H$,MxMQ$7$F$$$k!V$"$kFCDj$N!W%G%8%?%k>ZL@=q$^$G(B reject $B$5$l$F$7$^$&$?$a!"l9g$,$"$k$H$$$&!#(B $B$3$NLdBj$r=$@5$9$k?7(B patch $B$O8=:_3+H/Cf$J$N$@$=$&$@!#(B

$B!!(B2002.08.22 $B$N(B White paper: Exploiting the Win32 API. $B$KDI5-$7$?!#(BInformation About Reported Architectural Flaw in Windows $B$NF|K\8lHG!"(B$BJs9p$5$l$?(B Windows $B$N9=B$>e$NLdBj$K4X$9$k>pJs(B$BEP>l!#(B $BK]Lu%9%T!<%I>e$,$C$F$k$J$"!#(B

$B!!BP1~$H$7$F$O!"$3$l$i$r(B fix $B$9$k(B patch $B$,=P$F$$$k$N$GE,MQ$9$l$P$h$$!#(B $B%@%&%s%m!<%I@h$O(B [memo:4768] $B$r;2>H!#(B

$B!!$=$l$K$7$F$b!"(B[memo:4769] $B!V%;%-%e%j%F%#$r6/2=!WJ82=$NEA>5(B $B$K$b$"$j$^$9$,!"$I$&$7$F!V=$@5!W$H8@$($J$$$s$G$7$g$&$+$M$(!#(B

$B!!(B2002.08.21 $B$N(B web $B%V%i%&%64XO"(B $B$KDI5-$7$?!#(BMS02-050: $B>ZL@=q3NG'$NLdBj$K$h$j!"(BID $B$,56Au$5$l$k(B (Q328145) $B$,2~D{!#(B Windows 98/98SE/Me $BMQ(B patch $B$,?7$?$KEP>l!#(B $B$^$@(B fix $B$,$J$$$N$O(B Windows 2000, XP 64bit, Office 98/2001/v.X for Mac, IE/OutlookExpress for Mac$B!#$i$`$8$#$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B!!(B2002.08.21 $B$N(B web $B%V%i%&%64XO"(B $B$KDI5-$7$?!#(BMS02-050: $B>ZL@=q3NG'$NLdBj$K$h$j!"(BID $B$,56Au$5$l$k(B (Q328145) $BEP>l!#(BWindows NT 4.0 $B$H(B Windows XP $BMQ$N(B patch $B$,G[I[$5$l$F$$$k!#(B Windows 9x/Me, 2000 $BMQ$J$I$O$^$@!#(B

$B!!(B2002.08.22 $B$N(B White paper: Exploiting the Win32 API. $B$KDI5-$7$?!#(BInformation About Reported Architectural Flaw in Windows (Microsoft) $BEP>l!#(B Microsoft $B@=%W%m%0%i%`$N$$$/$D$+$K$b$3$NLdBj$,H/8+$5$l!"(Bpatch $B@=:nCf!"$NLOMM!#(B

$B!!(B$B!V2r8[!W$5$l$F$$$?ElEE86H/%H%i%V%k1#$7$N>pJsDs6! (asahi.com) $B$J$I!"$9$P$i$7$$>u67$,$"$i$o$K$J$j$D$D$"$k$h$&$G!#(B $BElEE86H/%H%i%V%k1#$7(B (asahi.com) $B%Z!<%8$G$-$F$^$9$M!#(B

$B!!;XE&J8=q(B: SecuRemote usernames can be guessed or sniffed using IKE exchange$B!#(B Check Point $B$5$s$,$*$C$7$c$k$K$O!"(B

Check Point does not recommend the use of IKE Aggressive Mode, because of many well-known limitations in the protocol, and the Check Point products offer much more secure alternatives.
$B!D!DCfN,!D!D(B
By default, Aggressive Mode is not enabled in NG. In 4.1, the recommended configuration is to disable Aggressive Mode and use Hybrid Mode instead (which involves no change to the user experience).

$B$J$s$@$=$&$G!#(B

$B!!(BCisco VPN 3000 $B%7%j!<%:$K$5$^$6$^$J

$B!!BP93%=%U%H$b>R2p$5$l$F$^$9!#(B

$B!!J#?t$N%a!<%k%=%U%H$rJ;MQ$9$k$N$O$1$C$3$&$`$D$+$7$$$b$N$,$"$k$1$I!"J#?t$N(B web $B%V%i%&%6$rJ;MQ$9$k$N$O$=$l$[$I$`$D$+$7$/$J$$!#(BNetscape 6 $B0J9_$O!V(BIE $B$8$c$J$$$HFI$a$J$$$s$@$h$M!W$H$$$&$3$H$b>/$J$/$J$C$?$7!#(BNetscape/Mozilla/Opera $B$J$i(B MIME content-type $B$b$A$c$s$H2r

$B!!$H$j$"$($:!"(BMIME content-type $BLdBj$@$1$O$J$s$H$+$7$F$[$7$$(B > IE$B!#(B $B%7%c%l$K$J$i$s!#(B

$B!!F1$8(B machine $B$C$]$$(B address $B$+$i(B Klez $B$,Dj4|E*$K$d$C$F$-$?$j$7$F!"$$$$$+$2$s%&%6$$$H;W$C$F$$$k?M$O!"(BISP $B$KO"Mm$7$FBP1~$rB%$7$F$_$F$b$h$$$+$b$7$l$^$;$s!#I,$:BP1~$5$l$k!"$H$$$&$o$1$G$O$"$j$^$;$s$,!#(B

$B!!(BNamazu $B:G?7HG(B 2.0.12 $B$,EP>l$7$F$$$^$9!#(B $BI8=`%(%i!<=PNO$K$h$kLdBj(B ($B%/%m%9%5%$%H%9%/%j%W%F%#%s%0LdBj$K$D$J$,$C$F$7$^$&(B) $B$J$I$,GS=|$5$l$F$$$^$9!#(BNamazu $BMxMQe$G(B Namazu $B$rMxMQ$7$F$$$k>l9g$OFC$K!#(B

$B!!;2>H(B: $B%/%m%9%5%$%H%9%/%j%W%F%#%s%0@H (namazu-devel-ja ML)

$B!!(BMac OS 9.2.2 $B0JA0MQ!#(BMac OS X $BMQ$O!D!D(B inetd $B$G(B /bin/sh $B$G$bF0$+$7$H$1$P(B ok ok $B$J$N$G$7$g$&!#(B

$B!!(B2002.09.02 $B$N(B $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#>pJs%;%s%?!<$NEEOCAk8}$K$D$$$F(B $B$KDI5-$7$?!#$=$l$i$7$$5-=R$,DI2C$5$l$^$7$?!#EvLL$O1Q8l$G$,$s$P$k$7$+$J$$$h$&$G$9!#(B(T_T)

$B!!(B2002.09.02 $B$N(B solution 4576 - InterScan VirusWall UNIX - CVP$B!'(BSecurity Patch$B$rE,MQ8e(BCVP$B%5!<%S%9$,Dd;_$9$k(B $B$KDI5-$7$?!#!V(BHTTP$B$N(BTrickle$B5!G=!W$N2r@b$rDI5-!#(B

$B!!(Blinuxconf $B$,D9Bg$J(B LINUXCONF_LANG $B@_Dj$G(B buffer overflow $B$9$k!"$H$$$&;XE&!#(B $BFC$K!"(Blinuxconf $B$,(B setuid $B$5$l$F%$%s%9%H!<%k$5$l$F$$$k>l9g(B ($B$?$H$($P(B Mandrake $B$,3:Ev$9$k$=$&$@(B) $B$OCm0U$,I,MW$@!#(B

$B!!(Blinuxconf 1.28r4 $B$G=$@5$5$l$F$$$k$N$GF~$l$+$($k!#$"$k$$$O3F%G%#%9%H%j%S%e!<%?$N(B fix package $B$r%$%s%9%H!<%k$9$k!#(B

$B!!(B--max_rtt_timeout 50 --max-parallelism 100 $B$r;n$7$F$_$h$&!"$H$$$&5-;v!#(B

FreeBSD

• FreeBSD-SN-02:05 security issues in ports

  $BBP>](B: acroread5, aide, apache+mod_ssl, bugzilla, Canna, ethereal, fam, isakmpd, irssi, kdelibs[23], krb5, linux-netscape6, netscape7, linux-mozilla, mozilla, mm, mpack, newsx, openssh, openssh-portable, php, linux-png, png, postgresql7, samba, squid24, super, webmin, zmailer$B!#(B

RedHat

• [RHSA-2002:162-12] PXE server crashes from certain DHCP packets

HP Tru64 UNIX

• [security bulletin] SSRT2275 HP Tru64 UNIX - Potential Buffer Overflows & SSRT 2229 Potential Denial of Service (fwd)

HP-UX

• HPSBUX0208-214 VJE.VJE-RUN$B$K$*$1$k%;%-%e%j%F%#@H

• HPSBUX0208-213 LP$B%5%V%7%9%F%`$K$*$1$k%;%-%e%j%F%#@H

$B!!!V(BHTTP$B$N(BTrickle$B5!G=!W$rDd;_$9$l$P2sHr$G$-$k$h$&$@$,!"!V(BHTTP$B$N(BTrickle$B5!G=!W$C$F2?$@$m$&!#(B

2002.09.03 $BDI5-(B:

$B!!%$%7%2$5$s$+$i(B ($B$"$j$,$H$&$4$6$$$^$9(B):

InterScanVirusWall$B!J(BSolaris$BHG!K$N(Bhttp$B%9%-%c%s@_Dj2hLL$K$O!"0J2<$N$h$&$J%a%K%e!<$,$"$j$^$9!#(B
---------
$B""(B Use Trickle:
Send [ ] bytes of data to client for every [ ] kilobytes received.
(prevents browsers timeouts and provides progress)
---------

$B%G%U%)%k%H$G$O$3$N%A%'%C%/$O%*%U$G!"(B2048kb$B$4$H$K(B5byte$B$:$D%G!<%?$rAw$k?tCM$,F~$C$F$$$^$9!#(B

http$B$d(Bftp$B$r(BInterScan$B$G%A%'%C%/$5$;$k$H!"%U%!%$%k0l$D$r%@%&%s%m!<%I$7=*$($F%&%#%k%9%A%'%C%/$9$k$^$G%/%i%$%"%s%H$KEO$5$J$$$N$G!"2s@~$,:.$s$G$$$?$j!"$H$F$bBg$-$J%U%!%$%k$@$H!"%/%i%$%"%s%H!J%V%i%&%6!K$,%?%$%`%"%&%H$7$F$7$^$$$^$9!#$3$l$rKI;_$9$k$?$a$K!";~!9%/%i%$%"%s%H$r$D$D$$$F!"%;%C%7%g%s$rJ];}$9$k$=$&$G$9!#(B

$B$b$C$H$b%&%A$N2q(^_^;

$B!!$i$`$8$#$5$s$+$i(B ($B$"$j$,$H$&$4$6$$$^$9(B):

(Check box) Use Trickle:
Send XXX bytes of data to client for every YYYY kilobytes received.
(prevents browsers timeouts and provides progress)

$B$H$$$&@_Dj9`L\$K$J$j$^$9!#(B
$BMW$O(B YYYY $B%-%m%P%$%H$r
$BL5DL?.;~4V$,D9$$$HAa!9$K$"$-$i$a$k%/%i%$%"%s%H$NBP:v$G$9!#(B

$B0JA0$O%@%_!<%X%C%@$rAw$jJV$9$3$H$GBP1~$7$F$$$^$7$?$,!"(B

Outside <=> Proxy2 <=> ISVW <=> Proxy1 <=> Clients

$B$H$$$&9=@.$N>l9g!"(BProxy1$B$H$NAj@-$K$h$j$*$+$7$/$J$k>l9g$,$"$C$?$?$a$K(BTricle$B$,

$B!!(B0-day $B$G$"$k$+H]$+$rLd$o$:!"?/F~$5$l$?>l9g$K!"!V?/F~$5$l$?!W$3$H<+BN$rH/8+$G$-$k$+H]$+!"$,LdBj$K$J$k$s$@$m$&$J$"!#$=$N>e$G!"$"$i$+$8$aBP:v7B(B 50m $BE*$K$O$I$A$i$b$+$J$j%^%:$2$J$s$G$9$,(B (^^;;)$B!#(B web $B%Z!<%8=q$-$+$($i$l$^$7$?7O$N$h$&$K$o$+$j$d$9$$$b$N$P$+$j$J$i$^$@3Z$=$&$G$9$,!"!D!D!#(B

$B!!(BPTRS $B$N5HED$5$s$+$i(B ($B$"$j$,$H$&$4$6$$$^$9(B):

$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#>pJs%;%s%?!<$NEEOCAk8}$K$D$$$F$G$9$,!";d$NJ}$G(BMSKK$B$NJ}$K3NG'$7$?$H$3$m!VEEOC$G$N@H
$B$h$C$F8=>u$G$O@H
$B$I$&$d$i(BMS$BFbIt$G$bEEOCAk8}$N%5%]!<%HHO0O$K$D$$$F:.Mp$7$F$$$k$h$&$G$9$M!#(B

$B!!$3$N7o!":4L>LZ$5$s$b(B Sat, 10 Aug 2002 11:04:19 +0900 $BIU$N(B bugtraq-jp $B$X$N%]%9%H(B (archive $B$O2=$1$F$^$9(B) $B$G!"$d$O$j!VJF9q$XO"Mm$7$FM_$7$$$H8@$o$l$^$7$?!W$HJs9p$J$5$C$F$^$9!#(B

$B!!$H$$$&$o$1$G!"$3$l$iBP1~$,0U?^$5$l$?>uBV$G$"$k$N$J$i!"(B TechNet $B%;%-%e%j%F%#(B $B%;%s%?!<(B $B$NEEOCHV9f$N$H$3$m$K!V@HpJs$K$D$$$F$O!"(B$B%;%-%e%j%F%#4XO";v9`$K$D$$$F%^%$%/%m%=%U%H$XJs9p(B$B$r$4;2>H$N>e!"$*

2002.09.03 $BDI5-(B:

$B!!",$N$h$&$J5-=R$,(BTechNet $B%;%-%e%j%F%#(B $B%;%s%?!<(B$B$KDI2C$5$l$^$7$?!#EvLL$O1Q8l$G$,$s$P$k$7$+$J$$$h$&$G$9!#(B(T_T)

$B!!(B2002.08.29 $B$N(B $B%M%C%H%o!<%/6&M-%W%m%P%$%@$NL$%A%'%C%/$N%P%C%U%!$K$h$j!"%5!<%S%95qH]$,5/$3$k(B (Q326830) (MS02-045) $B$KDI5-$7$?!#(BISS $B%;%-%e%j%F%#(B $B%"%i!<%H(B: Microsoft Windows SMB $B$K$*$1$k%5!<%S%9ITG=967b$N@H (ISSKK)$B!#(B