$B%;%-%e%j%F%#%[!<%k(B memo - 2003.08

Last modified: Fri Oct 21 16:11:59 2005 +0900 (JST)

$B"#(B 2003.08.30

$B"#(B 2003.08.27

$B"#(B $B!V%&%$%k%9%A%'%$%5!
($BAk$NEN(B, 2003.08.26)

$B!!@5<09pCN(B: WindowsNT$B$r$4MxMQ$N%f!<%6! (viruschaser.jp)$B!#(BWindows NT 4.0 + NTFS $B$N>l9g$K$N$_LdBj$,H/@8$9$kLOMM!#(B

$B$3$NEY!"%U%!%$%k%7%9%F%`$,(BNTFS$B$N(BWindowsNT4.0$B4D6-$N0lIt$N%M%C%H%o!<%/%I%i%$%P$H%&%$%k%9%A%'%$%5!<$N:G?7%P!<%8%g%s(B(C464V1467$B0J>e(B)$B$K6%9gLdBj$,H/@8$9$k2DG=@-$,3NG'$5$l$^$7$?!#(B

$B!!$G$"$k$J$i:G?7$G$J$$%P!<%8%g%s$X%@%&%s%0%l!<%I$9$l$P2sHr$G$-$k$h$&$J5$$,$9$k$N$@$,!"$J$<$=$l$rJ,$O%"%s%A%&%#%k%9%=%U%H$H$N6%9g$@$=$&$J$N$G!"$3$&$$$&OC$ODA$7$$$o$1$O$J$$$H;W$&$N$@$,!#(B

$B!!4XO"(B: $B%&%$%k%9BP:v%=%U%H!V%&%$%k%9%A%'%$%5! (INTERNET Watch)$B!#%^%C%A%]%s%W$N$D$b$j$O$J$+$C$?$N$@$m$&$,!"$3$N%?%$%_%s%0$O!D!D!#(B

2003.09.02 $BDI5-(B:

$B!!(B$B!V%&%$%k%9%A%'%$%5!C$7$?:G?7HG$,%j%j!<%9(B ($BAk$NEN(B)$B!#(B

$B"#(B Blaster $B%o!<%`BP:vJ}K!(B - Windows Embedded $B@=IJ(B
(Microsoft, ?)

$B!!(BWindows NT Embedded / XP Embedded $B$KBP1~$7$?(B Blaster $B%o!<%`>pJs!#(B

$B"#(B [postfix-jp:03215] osirusoft rbl
(postfix-jp , Wed, 27 Aug 2003 15:00:17 +0900)

$B!!(Brelays.osirusoft.com $B$5$s$O$*$b$$$C$-$j2u$l$F$$$k$h$&$G$9!#(B $B$=$N7k2L!"(Brelays.osirusoft.com $B$r;2>H$7$F(B spam $BBP:v$r$7$F$$$??M$O!"(B $BM=4|$7$J$$7k2L$rF@$k>l9g$,B?!9$"$k(B ($B$"$i$f$k(B mail $B$NH$7$F$$$k$?$a$H$*$\$7$-

$B!!BP:v$H$7$F$O!"(Brelays.osirusoft.com $B$5$s$N;2>H$rDd;_$9$l$P$h$$$h$&$G$9!#(B

$B!!4XO"(B: The Osirusoft DNSBL is quite broken$B!"(B [port139ml:03992] $B$V$i$C$/$j$9$H(B$B!"(B http://relays.osirusoft.com/$B!#(B

$B!!F?L>4uK>$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B $B4m81$J%/%l%8%C%H!&%+!<%IEAI
($BF|7P(B IT Pro, 2003.08.26)

$B!!!V(BIC $B%+!<%IBP1~$HF1;~$K!"$=$A$i$K$D$$$F$bBP1~$r?J$a$F$$$^$9!W$J$i$^$@OC$O$o$+$k$N$@$,!"$=$&$$$&$o$1$G$b$J$5$=$&$G$9$M!#$&!<$`!D!D!#(B

$BG'<1$,4E$$$N$O%+!<%I2q

$B!!$M$'(B > cbook24.com$B!#!V$*;YJ'$$J}K!$,%/%l%8%C%H%+!<%I$N>l9g$O!V%+!<%IHV9f!W$,0u:~$5$l$^$9$N$GJ]4I$9$k:]$K$O==J,$K$4Cm0U$/$@$5$$!W$J$s$FI=<($9$kA0$K!"$d$k$Y$-$3$H$,$"$k$H;W$&$N$G$9$1$I!#(B

$B"#(B $BIa5Z$N8+DL$7N)$?$J$$=;4p%+!<%I(B $B=;4p%M%C%H$NA4LL3hMQ$O1s$$(B
($BF|7P(B IT Pro, 2003.08.12)

$B$3$&$$$C$?0U8+$KBP$7$F!"AmL3>J$NGOJVM};v41$O!V=;4p%M%C%H$N%;%-%e%j%F%#$K$O==J,Cm0U$7$F$$$k!#A49q$NCOJ}<+<#BN$N%7%9%F%`C4Ev]$H$7$?%;%-%e%j%F%#@bL@2q$r3+:E$9$k$J$I$NBP:v$b?J$a$F$$$k!W$HOC$9!#(B

$B!!$=$N7k2L$,!"$?$H$($P(B $B=;L14pK\BfD"%+!<%I$r%2%C%H(B $B$K<($5$l$?>u67$G$9$+$i$M!#AmL3>J$O!"$"$l$@$1D9Ln8)$,A{$$$@$K$b$+$+$o$i$:!":#$@$K8=>l$rM}2r$G$-$F$$$J$$$H$$$&$3$H$J$N$G$7$g$&!#(B

$B!!4XO"(B: $BK\3J2TF/$N=;4p%M%C%H!!;22C$OA*Br@)$K$9$Y$-$@(B ($BKhF|(B)$B!#(B

$B"#(B DNS map problem in 8.12.x before 8.12.9
(sendmail.org, Tue, 26 Aug 2003 16:37:56 GMT (info from slashdot.jp))

$B!!(Bsendmail 8.12.0$B!A(B8.12.8 $B$K7g4Y!#(B FEATURE(`enhdnsbl') $B$rMxMQ$7$F$$$k>l9g$K!"NN0h$,$-$A$s$H=i4|2=$5$l$J$$!#(B $B$3$l$r0-MQ$9$k$H!"(Bsendmail $B$KBP$9$k(B DoS $B967b$,2DG=$G$"$kB>!"G$0U$N%3!<%I$Nl9g$K$O$3$NLdBj$O$J$$!#(B

$B!!(Bsendmail 8.12.9 $B$G=$@5$5$l$F$$$kB>!"(Bpatch $B$,8x3+$5$l$F$$$k!#(B

fix / patch:

$B"#(B 2003.08.26

$B"#(B $B$$$m$$$m(B (2003.08.26)
(various)

$B"#(B $B2r@b!|%W%i%$%P%7!Z%5!<%S%9$N0c$$(B $B%W%i%$%P%7!<%^!<%/$O(BJIS$B=`5r!$(BTRUSTe$B$N4pK\$O<+8J?=9p(B
($BF|7P(B IT Pro, 2003.08.19)

TRUSTe$B$NFCD'$O!$G'>Z8e$N%A%'%C%/BN@)$H6l>p=hM}$NJ}K!$K$"$k!#(BTRUSTe$B$N

$B!!7k6I$O!"D4::

$B"#(B 802.11a/802.11g$B$N(BWEP$B$,2r@O2DG=$K(B
(slashdot.jp, 2003.08.25)

$B!!(BKismet $B$d(B AirSnort $B$r(B 802.11a/802.11g $B$G;H$($kLOMM!#(B $B$$$$$+$2$s

$B!!(B802.11PLANET Conference & Expo Japan 2003 $B$J$s$F%$%Y%s%H$b$"$k$=$&$G$9$,!D!D!#(B

$B"#(B $B=;L14pK\BfD"%+!<%I$r%2%C%H(B
($B9bLZ9@8w!w0q>k8)$D$/$P;T(B $B$NF|5-(B, 2003.08.25)

$B!!(B$B=;4p%M%C%H$NBh(B2$B (INTERNET Watch) $B$@$=$&$@$,!"(B $B$=$3$K$D$J$,$C$F$$$k$b$N$N0lNc!#$$$d$O$d!"$3$l$[$IL5B$:n$K@_CV$5$l$F$$$k$H$O!#(B $B$3$s$J$U$&$K@_CV$9$k$h$&$J?MC#$J$i!"(BTAP $B$7$?$j$7$F$bC/$b5$$,$D$+$J$$$N$G$O!#(B $B$3$&$$$&>u67$r!"AmL3>JMQ8l$G!VK|A4$N%;%-%e%j%F%#!W$H8@$&$s$G$9$M!#(B

$B!!$^$"!"$=$s$J4m$J$$66$rEO$i$J$/$F$b(B TEMPEST $B$9$l$P0lH/$J$s$@$m$&$1$I!D!D!#(B

$B"#(B $BDI5-(B

MDAC $B5!G=$NL$%A%'%C%/$N%P%C%U%!$K$h$j!"%7%9%F%`$,?/32$5$l$k(B (823718) (MS03-033)

$B!V%$%s%9%H!<%k;~$NCm0U!WOC$NItJ,$K$*$1$k!";d$N8=>uG'<1$rL@3N2=$7$?!#(B $B@DLZ$5$s$N>pJs$+$i$b!"$3$NG'<1$G$$$$$h$&$K;W$($k!#(B hide $B$5$s!"BgDE$5$s!"$_$M$-$A$5$s!"@DLZ$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B $BJ@
($BIY;N%<%m%C%/%9(B, 2003.08.25 (info from $B%?%l%3%_(B, Tue, 26 Aug 2003 11:41:32 +0900))

$B!!(B[port139ml:03920] Re: Blaster $B%o!<%`$NBP:v%D!<%k(B $B$KDI5-$7$?!"IY;N%<%m%C%/%9$NJ#9g5!$NOC$N@5<0HG!#(B $B;3K\$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B!!LdBj$,$"$k$H$5$l$F$$$k$N$O(B:

2003.09.02 $BDI5-(B:

$B!!(Byutaka $B$5$s$+$i(B ($B$"$j$,$H$&$4$6$$$^$9(B):

$B$&$A$,;H$C$F$$$k(B DocuColore1250 $B$,(B NT $B%Y!<%9$NAH$_9~$_(B OS $B$@$,!"]$K$J$k$H$$$d$@$J$H;W$$!"%5%]!<%H$XEEOC$7$F$$$D$3$N%Z!<%8$NBP1~$r$7$F$/$l$k$N$+M=Dj$rJ9$$$F$_$?!#%5%]!<%H$N=w@-$G$O$o$+$i$J$$$H$$$&$N$G%(%s%8%K%"$+$i@^$jJV$7EEOC$r$$$?$@$$$?!#(B

$B$=$3$K$O6C$/2sEz$,(B.....

$B!V(BNT$B%Y!<%9$K$D$$$F$O$^$@J@
$B$H$$$&FbMF$G$7$?!#$*$*$^$+$JF|Dx$G$b$$$$$s$@$1$I$C$F$$$C$?$i$8$c$!!"#97n#2=5$^$G$/$i$$$H$7$F$*$-$^$7$g$&$C$F46$8$G$7$?!#:G0-$J%(%s%8%K%"!#(B $B

2003.09.03 $BDI5-(B:

$B!!IY;N%<%m%C%/%9$+$i$N0FFbJ8=q$,99?7$5$l$?!#?7$?$K(B DocuPrint CG835$B!"(BColor DocuTech $B%7%j!<%:MQ(B Fiery $B%+%i!<%5!<%P!<(B $B$N>pJs$,DI2C$5$l$?!#(B

2003.09.19 $BDI5-(B:

$B!!IY;N%<%m%C%/%9$+$i$N0FFbJ8=q$,99?7$5$l$?(B: $BJ@$B!#(B MS03-039 $B$b8@5Z$5$l$F$$$k!#(B

$B"#(B 2003.08.25

$B"#(B MDAC $B5!G=$NL$%A%'%C%/$N%P%C%U%!$K$h$j!"%7%9%F%`$,?/32$5$l$k(B (823718) (MS03-033)
(Microsoft, 2003.08.21)

$B!!(BMDAC 2.5$B!A(B2.7 $B$K7g4Y!#(B1434/udp $B$KN.$5$l$?%V%m!<%I%-%c%9%H%Q%1%C%H$KBP$7$F967bE*%j%W%i%$%Q%1%C%H$rN.$9$H!"(B MDAC $B$G(B buffer overflow $B$,H/@8$7!"G$0U$N%3!<%I$N

$B!!(BMDAC 2.8 (Windows Server 2003 $B$K4^$^$l$k(B) $B$K$O$3$N7g4Y$O$J$$!#(B $B$^$?(B MDAC 2.1 $B0JA0$K$D$$$F$O>u67ITL@!#$b$O$d%a%s%F%J%s%9$5$l$F$$$J$$LOMM!#(B

$B!!(BMDAC 2.5 SP2 / SP3$B!"(BMDAC 2.6 SP2$B!"(BMDAC 2.7 SP $B$J$7(B / SP1 $B$K$D$$$F$O=$@5%W%m%0%i%`$,$"$k$N$GE,MQ$9$l$P$h$$!#(B $B$=$NB>(B (MDAC 2.5 SP1 $B0JA0!"(BMDAC 2.6 SP1 $B0JA0(B) $B$K$D$$$F$O!"(B $B=$@5%W%m%0%i%`$NB8:_$9$k%P!<%8%g%s$K$^$G0z$-$"$2$k$+!"$"$k$$$O(B MDAC 2.8 $B$r%$%s%9%H!<%k$9$kI,MW$,$"$k$N$@$m$&!#(B $B$^$?(B MS03-033 $B=$@5%W%m%0%i%`$K$O!"@h$4$m2~D{$5$l!"A4$F$N(B Windows $B$GLdBj$,H/8=$9$k$3$H$,L@$i$+$H$J$C$?(B MDAC $B5!G=$NL$%A%'%C%/$N%P%C%U%!$K$h$j!"(BSQL Server $B$,?/32$5$l$k(B (Q326573) (MS02-040) $B7g4Y$N=$@5$b4^$^$l$F$$$k!#(B $B$J$*!"(BMS03-033 $B=$@5%W%m%0%i%`$O(B$B%"%s%$%s%9%H!<%k$G$-$J$$(B$B$N$GCm0U$5$l$?$$!#(B

$B!!(BMDAC $B4XO"%@%&%s%m!<%I(B (microsoft.com) $B$K$h$k$H!"(BMDAC $B$K$Oe$J$$!#(BMDAC $B$K$O!V(Brefresh$B!W$H$$$&J8;zNs$,$D$$$F$$$k$b$N(B (ex. MDAC 2.7 SP1 refresh) $B$,$"$k$,!"(BMS03-033 $B$H$7$F$O!"(Brefresh $B$,$J$$$b$N(B (ex. MDAC 2.7 SP1) $B$HF1Ey$K07$&$Y$-$b$N$N$h$&$@!#(B MS03-033 $B=$@5%W%m%0%i%`$K$h$C$F%$%s%9%H!<%k$5$l$k%b%8%e!<%k$N%P!<%8%g%s$O(B [MS03-033] Microsoft Data Access Components $B$N%;%-%e%j%F%#(B $B%"%C%W%G!<%H(B $B$KL@5-$5$l$F$$$k$N$G;2>H$5$l$?$$!#(B

$B!!$3$N=$@5$O(B MDAC 2.5 Service Pack 5 $B$*$h$S(B MDAC 2.7 Service Pack 2 $B$K4^$^$l$kM=Dj$@!"$H$$$&!#$D$^$j(B:

$B!Z7g4Y$J$7![(B

MDAC 2.5 SP5$B!"(BMDAC 2.7 SP2$B!"(BMDAC 2.8

$B!Z7g4Y$"$j![(B

MDAC 2.5 SP4 $B0JA0!"(BMDAC 2.6 $BA4$F!"(BMDAC 2.7 SP1 $B0JA0(B

$B!!7g4Y$"$jHG$r%$%s%9%H!<%k$7$?>l9g$K$O!"(BMS03-033 $B=$@5%W%m%0%i%`$r:FE,MQ$9$kI,MW$,$"$k$3$H$KCm0U$5$l$?$$!#$?$H$($P!"(BMDAC 2.6 SP2 + MS03-033 $B=$@5%W%m%0%i%`(B $B$J4D6-$K(B MDAC 2.7 SP1 refresh (Windows XP SP1 $B$K4^$^$l$F$$$k(B MDAC $B$HF1Ey(B) $B$r%$%s%9%H!<%k$7$?>l9g$K$O!"(BMS03-033 $B=$@5%W%m%0%i%`$r:FE,MQ$7$J$1$l$P$J$i$J$$!#(B FAQ $B$K$O!"(BMDAC $B$N%P!<%8%g%s3NG'$K$O(B KB 307255 $B$r;2>H!"$H$"$k$1$l$I!"(B Component Checker $B$H$b$I$b(B $B$J$s$@$+5-=R$,8E$$$C$]$$!#(B $B7j$,$"$k$+(B / $B$J$$$+$K$D$$$F$O!"2<XML DB$B!"(B $B$J$I$r;H$C$?J}$,$h$$$@$m$&!#(B

$B!!4XO"(B:

$B!!$J$*!"(B $BB?$/$N(BWindows$B$,1F6A$r (INTERNET Watch) $B$K$O(B

$B!V(BMS02-040$B!W$N=$@5%Q%C%A$O!V(BMS03-033$B!W$K4^$^$l$F$$$k$?$a!"!V(BMS03-033$B!W$N=$@5%Q%C%A$rEv$F$l$P=$@5$5$l$k$,!"%Q%C%A$rEv$F$k:]$K0J2<$N$h$&$J(B2$B$D$NLdBj$,H/@8$9$k2DG=@-$,$"$k$?$a!"Cm0U$,I,MW$@!#(B

$B!!!&@Hl9g$O!"CV$-49$($k$3$H$,$G$-$J$$!#$7$?$,$C$F!"@H

$B$H$$$&5-=R$,$"$k$,!"(B MS03-033$B!"(B MS03-033 FAQ$B!"(B KB 823718 $B$K$O$=$N$h$&$J5-=R$O0l@ZB8:_$7$J$$!#(B $B8D?ME*$K$O!"(B

$B$H$$$&E@$+$i!"!V(BMS03-033 $B$K$O(B MS02-040 $B$N$h$&$J%$%s%9%H!<%k;~$NCm0U$OITMW!W(B $B$@$HG'<1$7$F$$$k$,!"$$$^$$$A$h$/$o$+$i$J$$!#(B Microsoft $B<+?H$K$h$kL@3N2=$r4|BT$7$?$$!#(B

2003.08.26 $BDI5-(B:

$B!!!V%$%s%9%H!<%k;~$NCm0U!WOC$NItJ,$K$*$1$k!";d$N8=>uG'<1$rL@3N2=$7$?!#(B $B$7$+$7!";d$NG'<1$,8m$C$F$$$k2DG=@-$OB8:_$9$k$N$GCm0U$5$l$?$$!#(B hide $B$5$s!"BgDE$5$s!"$_$M$-$A$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

2003.08.26 $BDI5-(B2:

$B!!@DLZ$5$s$+$i(B ($B$"$j$,$H$&$4$6$$$^$9(B):

$B0UCO0-$7$F$o$6$H(B odbc32.dll $B$r%m%C%/$7$?>uBV$G%Q%C%A$rEv$F$F$_$^$7$?!#7k2L$O(B
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\PendingFileRenameOperations
$B$K$-$A$s$H:F5/F0;~$NCV$-49$($,5-=R$5$l$F!":F5/F08e$O@5$7$$%U%!%$%k$K$J$C$F$$$k$N$r3NG'$7$^$7$?!#$h$C$F!"(B

$B!V$7$?$,$C$F!"@H
$B$O!"(B

$B!V$7$?$,$C$F!"%^%7%s$r:F5/F0$9$k$^$G$O@H
$B$,@5$7$$$H$$$&$3$H$K$J$k$N$@$H;W$$$^$9!#(B

http://support.microsoft.com/default.aspx?scid=kb;ja;823718
$B$3$3$K$b0l1~!"!V%m%C%/$5$l$F$$$k%U%!%$%k$,$"$C$?>l9g!"%$%s%9%H!<%i$K$h$j!"%3%s%T%e!<%?$r:F5/F0$9$k$h$&$K5a$a$k%a%C%;!<%8$,I=<($5$l$^$9!#!W$H=q$$$F$"$k$N$G!":F5/F0$9$l$PLdBj$J$$$H;W$$$^$9!#(B

$B0x$_$K(B Windows XP $B$G$OI,$:(B odbc32.dll $B$O:F5/F08e$NCV$-49$($K$J$k$h$&$G$9!#(BWindows 2000 $B$K4X$7$F$O;d$,%Q%C%A$7$?HO0O$G$O!"(BIIS $B$,%$%s%9%H!<%k$5$l$F$$$k$H!V:F5/F0$,I,MW!W$K$J$j$^$7$?!#(B

$B$$$:$l$N>l9g$b%^%7%s$r:F5/F0$9$l$P@5$7$$%U%!%$%k$K$J$C$F$$$k$3$H$r3NG'$7$F$^$9!#(B

$B!!$I$&$d$i!V(BMS03-033 $B$K$O(B MS02-040 $B$N$h$&$J%$%s%9%H!<%k;~$NCm0U$OITMW!W$H$$$&M}2r$G$h$5$=$&$@!#(B

$B$"$H!"(BMDAC $B$H8@$($P(B MS02-065 $BOC$,$"$k$H;W$$$^$9$,!"$d$O$j(B MDAC 2.5$B!"(B2.6 $B$O(B 2.7SP1refresh $B$K>e$2$?8e!"(BMS03-033 $B%Q%C%A$H$$$&$N$,?d>)$H$$$&$3$H$K$J$k$N$G$7$g$&$M!#(B

$B!!$G$9$h$M!#$b$7$/$O!"$$$C$=(B MDAC 2.8 $B$K9T$C$F$7$^$C$F$b$$$$$N$+$b$7$l$^$;$s$,!"(BMDAC 2.8 $B$NF|K\8l>pJs$,3'L5$J$N$G!"$$$^(B 3 $B$D$[$IH=CG$7$+$M$^$9!#(B

2003.09.03 $BDI5-(B:

$B!!4XO"5-;v(B: MDAC$B$N%;%-%e%j%F%#>pJs$K$O8m2r$rM?$($k5-=R$"$j!$E,@Z$J>pJsDs6!$r(B ($BF|7P(B IT Pro)$B!#(B

$B!!$A$J$_$K!"(B Microsoft Universal Data Access (Microsoft) $B$K(B 8/28 $BIU$G(B MDAC 2.8 $B$N>pJs$,7G:\$5$l$F$$$k!#5-:\$5$l$?FbMF$rFI$`8B$j$G$O!"%$%s%9%H!<%k$K$*$1$kCm0U;v9`$O(B MDAC 2.7 SP1 refresh $B$HF1MM$N$h$&$@!#$b$C$H$b!"Cf?H$N2<0L8_49@-$K$D$$$F$O%F%9%H$,I,MW$J$N$@$m$&!#!V(BMDAC 2.8 refresh $B$,=P$k$^$GBT$D$Y$7!W$H$$$&0U8+$b$"$k$+$b$7$l$J$$(B ($B=P$k$N$+$J$"!D!D(B)$B!#(B

$B"#(B $BDI5-(B

E-MAIL$B%o!<%`!V(BSobig.F$B!W$,(B2$B

$BLdBj$N%5!<%P$rL58z2=$G$-$?$N$G2?$bH/@8$7$J$+$C$?!"$h$&$G$9$M!#(B

$B"#(B 2003.08.22

$B"#(B E-MAIL$B%o!<%`!V(BSobig.F$B!W$,(B2$B
(F-Secure, 2003.08.22)

$B!!(B2003.08.23 04:00 JST$B!#%;%+%s%I!&%$%s%Q%/%H$KHw$($h!#2?$b$J$$$+$b$7$l$s$,!#(B $B4XO"(B:

2003.08.25 $BDI5-(B:

$B!!LdBj$N%5!<%P$rL58z2=$G$-$?$N$G2?$bH/@8$7$J$+$C$?!"$h$&$G$9$M!#(B

$B"#(B Internet Explorer $BMQ$NN_@QE*$J=$@5%W%m%0%i%`(B (822925) (MS03-032)
(Microsoft, 2003.08.21)

$B!!(BIE 5.01 / 5.5 / 6 $B$K(B 3 $B$D$N?7$?$J7g4Y!#(B

$B!!$^$?!"(BInternet Explorer $BMQ$NN_@QE*$J=$@5%W%m%0%i%`(B (818529) (MS03-020) $B$G=$@5$5$l$?$O$:$N!V(Bobject $B%?%0$N(B type $BB0@-$N=hM}$K7g4Y$,$"$j!"(Bbuffer overflow $B$,H/@8$9$k!W7g4Y$,!"F|K\8l$r4^$`FCDj$N8@8lHG$K$*$$$F$OD>$C$F$$$J$+$C$?!#(B $B$3$l$b(B MS03-032 $B$G=$@5$5$l$?!#(B $B;2>H(B: SNS Advisory No.68 Internet Explorer Object Type Buffer Overflow in Double-Byte Character Set Environment (LAC)$B!#(B

$B!!(Bpatch $B$,$"$k$N$GE,MQ$9$l$P$h$$!#$$$:$l$b4m81@-$N9b$$FbMF$G$"$j!"Aa5^$J(B patch $BE,MQ$,K>$^$7$$!#(B

2003.09.09 $BDI5-(B:

$B!!(BMS03-032 patch $B$K$OI{:nMQ$,$"$k$3$H$,H=L@!#(B Windows XP + ASP.NET 1.0 (.NET Framework 1.0) $B$N4D6-$GIT6q9g$,H/@8$9$k!#(B Windows 2000 / Server 2003 $B$G$OLdBj$OH/@8$7$J$$!#$^$?(B Windows XP + ASP.NET 1.1 (.NET Framework 1.1) $B$G$bLdBj$OH/@8$7$J$$!#(B $B>\:Y$O(B 827641 - [BUG] $B%;%-%e%j%F%#=$@5%W%m%0%i%`(B MS03-032 $B$r%$%s%9%H!<%k8e!"(BASP.NET $B$G(B "Server Not Available" $B$H$$$&%(%i!<%a%C%;!<%8$,I=<($5$l$k(B $B$r;2>H!#2sHr:v$b=R$Y$i$l$F$$$k!#(B

$B!!$^$?!"(B

$B$N>l9g$K$O!"(Bpatch $B$"$F(B + $B:F5/F08e$K4IM}

$B!!$5$i$K!"(BMS03-032 patch $B$O$j@Z$C$F$$$J$+$C$?$3$H$,H=L@!#(B $BJF(BMS$B!"$H$s$@$*AFKv(B-$B=EBg$J@H $B$r;2>H!#(B

2003.10.10 $BDI5-(B:

$B!!(BMS03-040 $B$G=$@5$5$l$F$$$k!#(B

$B!!$^$?!"(BMS03-032 / MS03-040 $B$K$O(B 827667 - [IE] Q822925 $B$^$?$O(B Q828750 $B$rE,MQ$9$k$HAjBP(B URL $B$r;HMQ$7$?%9%/%j%W%H$G(B HTTP 404 $B%(%i!<$,H/@8$9$k(B $BI{:nMQ$,$"$k$=$&$@!#Cm0U$5$l$?$$!#(B

$B"#(B $BDI5-(B

DirectX $B$NL$%A%'%C%/$N%P%C%U%!$K$h$j!"%3%s%T%e!<%?$,?/32$5$l$k(B (819696) (MS03-030)

Windows 98 / 98 SE / Me / 2000 $BBP1~$N(B DirectX 8.x $BMQ=$@5%W%m%0%i%`$,MQ0U$5$l$?!#(B

Microsoft $B4XO"(B (2002.08.21)

MS02-040 $B7g4Y$O!V(BSQL Server 7.0/2000 $B$r%$%s%9%H!<%k$7$?4D6-$G$N$_!WH/8=$9$k$N$G$O$J$/!"(BWindows $BA4HL$GH/8=$9$k$3$H$,H=L@!#(BMS02-040 $B$,99?7$5$l$?!#(B

$B"#(B $B%&%#%k%9(B / $B%o!<%`$M$?(B
(various)

$B"#(B 2003.08.21

$B"#(B $B%&%#%k%9(B / $B%o!<%`$M$?(B
(various)

$B"#(B 2003.08.20

$B"#(B $B$$$m$$$m(B
(various)

$B"#(B SNS$B%]%j%7!<$K4X$9$k0U8+(B
(LAC SNS, Mon, 04 Aug 2003 01:21:21 GMT)

$B!!2F0f9b?M;a$K$h$k!"K!E*4QE@$+$i8+$?!"@HpJs8x3+%]%j%7!<$N$"$k$Y$-;Q$K4X$9$k9M;!!#(B

$B$b$H$b$HIT40A4$JB8:_$G$"$k%=%U%H%&%'%"$r$NBh;0?M$KCN$i$;$?$j!"$"$k$$$O!"B>?M$+$iCN$i$5$l$?$j$9$k$3$H$,5vMF$5$l$F$$$k$H$$$&$3$H$rA0Ds$K$7$F$$$k!#$=$&$G$J$1$l$P!"IT40A4$G$"$k$N$K40A4$J$b$N$H$7$F$NBe6b$d%i%$%s%;%s%9NA6b$r@A5a$9$k$3$H$=$l<+BN$,!"$$$o$P0l5=9T0Y$H$7$FH?

$B!!9bLZ9@8w;a$NH?1~(B: $B2HEE@=IJ$HHFMQ%3%s%T%e!<%?$N@Z$jJ,$1(B ($B9bLZ9@8w!w0q>k8)$D$/$P;T(B $B$NF|5-(B)$B!#(B

$B!!$"$H!"LH@UOC$O(B $B%*!<%W%s%=!<%9%=%U%H%&%(%"$NMxMQ>u67D4::!?F3F~8!F$%,%$%I%i%$%s(B ($B??5*F`(B17$B:P$5$s(B) $B$b4XO"$+$J!#%*!<%W%s%=!<%9$H8@$$$J$,$i(B GNU / GNU GPL $B$JOC$r$9$k$N$,I!$K$D$/$H$$$&$N$b$"$C$F!"$^$@A4ItFI$a$F$J$$$7!D!D!#(B

$B"#(B 2003.08.19

$B"#(B Welchia / Nachi $B%o!<%`$M$?(B
(various)

$B!!(BBlaster (Lovsan) $B$N0!u67$O(B Blaster $B$M$?(B $B$K$"$j$^$9!#(B

$B!!(B$B$*$M$,$$$G$9$+$i!"L>>N$rJQ99$7$FD:$1$^$;$s$G$7$g$&$+(B? > $B%H%l%s%I%^%$%/%mMM!#$d$d$3$7$d!A!#(B$B%H%l%s%I%^%$%/%m$O(B 2003.09.16 $BIU$GL>>N$rJQ99$7$^$7$?!#$h$+$C$?$M!#(B

$B!!FCD'(B:

$B!!6n=|J}K!(B: Nachi $B$O!";~7W$r0l;~E*$K(B 2004 $BG/$K$7$F$"$2$l$P<+F0E*$K>CLG$7$^$9!#(B

$B!!@/I\J}LL(B ($BNoH~$5$s!">pJs$"$j$,$H$&$4$6$$$^$9(B):

$B!!%^%9%a%G%#%"J}LL(B: $B%H%l%s%I%^%$%/%mMM$K0z$-$:$i$l$F!"(B Blaster-D $B$H$$$&L>>N$rMQ$$$kJ}$,B?$$$h$&$G(B ($BNoH~$5$s!">pJs$"$j$,$H$&$4$6$$$^$9(B)$B!#(B $B$F$f!<$+!"$[$s$H$K%?%lN.$7$@$J$"!#(B

2003.10.03 $BDI5-(B:

$B!!%H%l%s%I%^%$%/%m$O(B 2003.09.16 $BIU(B ($B%Q%?!<%s(B 631 $B0J9_(B) $B$G(B WORM_MSBLAST.D $B$+$i(B WORM_NACHI.A $B$XL>>N$rJQ99!#$"$o$;$F(B WORM_MSBLAST.[EFG] $B$+$i(B WORM_MSBLAST.[DEF] $B$X$H(B 1 $B8D$:$i$7$F$$$k!#(B $B$3$l$KBP1~$7$F!"$3$N9`$N5-=R$rJQ99$7$?!#IzC+$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B $BDI5-(B

[port139ml:03920] Re: Blaster $B%o!<%`$NBP:v%D!<%k(B

$BIY;N%<%m%C%/%9$N(B Document Gate $B$K4X$9$k!"(B $B;3K\$5$s$+$i$N>pJs$rDI5-(B ($B$"$j$,$H$&$4$6$$$^$9(B)$B!#(B

$B"#(B 2003.08.18

$B"#(B Blaster $B$M$?(B
(various)

$B!!$H$3$m$I$3$m8E$$>pJs$,$"$k$N$O!"$$$^$4$m$K$J$C$F@h=5$N(B mail $B$rFI$s$G$$$?$j$9$k$+$i!#$I$&$+$4$+$s$Y$s$r!#(B

$B"#(B [port139ml:03920] Re: Blaster $B%o!<%`$NBP:v%D!<%k(B
(port139 ML, Sun, 17 Aug 2003 13:47:39 +0900)

$B!!(BWindows NT Embedded 4.0 $B%Y!<%9$N2HEE@=IJ(B (NEC SmartVision Pro HD40) $B$K(B MS03-026 $B7j$,$"$k$h$&$@!"$H$$$&OC!#(B $B$D$E$-(B: [port139ml:03921]$B!#(B

$B%5%]!<%H(B: $B4{$K(B HD40 $B$O@8;:=*N;$7$?5!

$B!!$=$l$G$$$$$H;W$C$F$$$k$N$+(B! > NEC ($B;W$C$F$$$k$s$@$m$&$J$"(B)$B!#(B $B$A$J$_$K(B SmartVision Pro HD40 Q and A (121ware.com) $B$K$O$3$NFbMF$O$"$j$^$;$s$M!#(B

$B!!AH9~5!4o%/%i%C%-%s%0$K$D$$$F$O!"(B $B$?$H$($P(B A.D.200X $B$G(B UNYUN $B$5$s$,$$$m$$$m$d$C$F$$$i$C$7$c$$$^$9$,!"(B $BAj

2003.08.19 $BDI5-(B:

$B!!;3K\$5$s$+$i(B ($B$"$j$,$H$&$4$6$$$^$9(B)$B!#(B

$BIY;N%<%m%C%/%9$NJ#9g5!!J%+%i!<%3%T!<5!!K$K!V(BDocument Gate$B!W$H$$$&#P#C$rN.MQ$7$?30It%3%s%H%m!<%i!<$,$"$j$^$9!#!J%3%s%S%K$J$s$+$K$b$*$$$F$"$j$^$9!K(B

$B$3$l$N#O#S$,#N#T#4$r%Y!<%9$K$7$?FCCmIJ!J(BEmbedded 4.0$B$+$I$&$+$OITL@!K$G!"(BDCOM$BBP1~$N%9%-%c%J!<%=%U%HD4$Y$k$H!"$$$D$b!V(BVULNERABLE$B!W$K$J$C$F$*$j$^$9!#(B

$B$3$N7o$K4X$7$^$7$F!"IY;N%<%m%C%/%9$KLd$$9g$o$;$?7k2L!"0J2<$N$h$&$J2sEz$,Mh$^$7$?!#(B

------------------------------------------------------------------------
$B$4;XE&$NDL$j:#2s$N(BMS$B%V%i%9%H$K$O(BNT4$B$O46@w$7$J$$$N$G$9$,!"(B
$B:#8e$r9M$($k$HBP:v$r9V$8$kI,MW$,$"$k$H9M$($F$*$j$^$9!#(B
$BJ@ $BJ@ $B;~4|$K4X$7$F$OL$Dj$G$9$,!"Aa5^$K $B?7$7$$>pJs$,F~$je$2$^$9!#(B
------------------------------------------------------------------------

$B$H$$$&$3$H$G!"%<%m%C%/%9$O!"#N#E#C$h$j$b??LLL\$=$&$G$9!#!JJ]

$B"#(B 2003.08.17

$B"#(B Blaster $B$M$?(B
(various)

$B!!(BKB 823980 Scanning Tool $B$r;HMQ$7$F!"%;%-%e%j%F%#=$@5%W%m%0%i%`(B 823980 (MS03-026) $B$,%$%s%9%H!<%k$5$l$F$$$J$$%[%9%H(B $B%3%s%T%e!<%?$rFCDj$9$kJ}K!(B (MS KB) $B$r;n$7$F$_$?$,!"$J$+$J$+$$$$46$8$@!#(B $B$7$+$7$J$"!#(BBlaster $B$J$s$F$b$N$,EP>l$7$J$$$H$3$&$$$&$b$N$,G[I[$5$l$J$$$H$$$&$N$O$J$"!#(B

$B"#(B 2003.08.16

$B"#(B CERT Advisory CA-2003-21 GNU Project FTP Server Compromise
(CERT/CC, 2003.08.13)

$B!!(BGNU $B%W%m%8%'%/%H$N%W%i%$%^%j(B FTP $B%5!<%P(B gnuftp.gnu.org (ftp.gnu.org / alpha.gnu.org) $B$,(B 2003.03 $B$+$i2?ftp://ftp.gnu.org/before-2003-08-01.md5sums.asc $B$H(B ftp://alpha.gnu.org/before-2003-08-01.md5sums.asc $B$K<($5$l$F$$$k$N$G!"(Blocal mirror $B$J$I$r0];}$7$F$$$k?M$O3NG'$7$h$&!#(B $B$7$+$7!"(B ftp://ftp.gnu.org/MISSING-FILES $B$K5-:\$5$l$F$$$k%U%!%$%k$K$D$$$F$O!"$^$@3NG'$5$l$F$$$J$$$N$@$=$&$@!#(B

$B!!4XO"(B:

$B"#(B Blaster $B%o!<%`$^$D$j(B
(various)

$B!!$^$D$j$N:GCf$K$J$D$d$9$_$@$C$?$N$G40A4$K>h$jCY$l$F$^$9!#(B $BCfF|?7J9$G$O(B 1 $BLL%H%C%W$,(B Blaster $B$M$?$@$C$?$j$7$?$N$G?4G[$7$F$^$7$?$,!"(B $B!V:#=5$N;3>l!A!W$G$"$C$?(B 8/16 $B$N(B windowsupdate.com $B967b$K$D$$$F$O!"4X783Fl$O(B 8/18 $B$N;O6H;~$@$=$&$G!#(B $B2?$i$+$N7A$GFbIt$KE~C#$G$-$?(B Blaster $B$,;O6H;~$K5/F0$9$k$N$G$O$J$$$+!"$H?4G[$5$l$F$$$^$9!#(B patch $B$"$F$^$7$g$&!#(B

$B!!(B8/12 $B$N(B 04:00 AM (JST) $B$4$m$+$i!D!D$H$$$&M}2r$G$$$$$N$+$J$"!#(B

$B>u67(B
  • AlertCon $B%l%Y%k(B 3 (ISS)

Microsoft

$BCY$9$.$C$F46$8$b$7$^$9$,!"(BMS03-026 $B=$@5%W%m%0%i%`(B$B$O(B 8/13 $BIU$G(B Windows 2000 SP2 $B$K!"(B 8/14 $BIU$G(B Windows NT 4.0 Workstation $B$K$b@5<0BP1~$5$l$F$$$^$9!#(B $B$^$?!"(BMicrosoft $B=c@5$N%9%-%c%s%D!<%k$,EP>l$7$F$$$^$9!#(B

$B%;%-%e%j%F%#(B / $B%"%s%A%&%#%k%9(B $B%Y%s%@!<(B

$BCfN)AH?%!"@/I\AH?%(B

$B3F

$B$$$m$$$m$J%5%$%H(B

$B3F

$B"#(B 2003.08.11

$B"#(B UNIX fixes
(various)

FreeBSD

  • FreeBSD Security Advisory FreeBSD-SA-03:09.signal

    FreeBSD $B$K7g4Y!#(B ptrace(2) $B$*$h$S(B 'spigot' video capture device driver $B$K$*$$$F!"IiCM!"$"$k$$$O@5>o$JHO0O$r0oC&$7$?%7%0%J%k$,H/@8$9$k2DG=@-$,$"$j!"$3$l$,H/@8$9$k$H(B panic $B$N860x$H$J$k!#(B ptrace(2) $B$O(B 4.2-RELEASE $B0J9_!"(Bspigot $B$O(B FreeBSD 2.0.5 $B0J9_$K7g4Y$,B8:_$9$k!#$?$@$7(B spigot $B%G%P%$%9%I%i%$%P$O%G%U%)%k%H$*$h$S(B GENERIC $B%3%s%U%#%.%e%l!<%7%g%s$G$OM-8z$G$O$J$$!#(B $B$^$?(B FreeBSD 5.x $B$K$*$$$F$O!"%+!<%M%k%*%W%7%g%s(B INVARIANTS $B$,M-8z$J>l9g$K$O$3$NLdBj$OH/@8$7$J$$!#(B

    RELENG_4_3 $B0J9_$K(B fix $B$,4^$^$l$?$N$G!":G?7$N(B source $B$K$7$F$+$i(B kernel $B$r:F9=C[$7%$%s%9%H!<%k!":F5/F0$9$l$P$h$$!#(B

  • FreeBSD Security Advisory FreeBSD-SA-03:10.ibcs2

    FreeBSD $B$N(B Intel Binary Compatibility Specification 2 (iBCS2) $B%P%$%J%jBP1~5!G=$K7g4Y!#(B iBCS2 $BBP1~5!G=$,M-8z$J>l9g$K(B iBCS2 $BHG$N(B statfs(2) $B$rD9Bg$J%Q%i%a!<%?$G8F$S=P$9$H!"(B $B9-Bg$J(B kernel $B%a%b%j$,JV$C$F$/$k!#(B $B$3$l$K$O$5$^$6$^$J%;%s%7%F%#%V>pJs$,4^$^$l$F$$$k2DG=@-$,$"$k$?$a!"(B $B%;%s%7%F%#%V>pJs$rMxMQ$7$?8"8B>e>:$J$I$,2DG=$K$J$k2DG=@-$,$"$k!#(B iBCS2 $BBP1~5!G=$O%G%U%)%k%H$G$OM-8z$G$O$J$$$,!"(B kernel loadable module (ibcs2.ko) $B$b$"$k$N$GCm0U$5$l$?$$!#(B

    RELENG_3 $B$*$h$S(B RELENG_4_3 $B0J9_$K(B fix $B$,4^$^$l$?$N$G!":G?7$N(B source $B$K$7$F$+$i(B kernel $B$r:F9=C[$7%$%s%9%H!<%k!":F5/F0$9$l$P$h$$!#(B

Debian GNU/Linux
Red Hat Linux

$B"#(B 2003.08.10

$B"#(B $B7PO)$N%;%-%e%j%F%#$HF1;~$K%;%-%e%"$J%;%C%7%g%s4IM}$r(B - SSL/TLS $B$G%/%C%-!<$r;H$&$H$-$O(B secure $BB0@-$rIU$1$k$N$r4pK\$H$9$k(B -
(IPA, 2003.08.08)

$B!!(BCookie$BEpD0$K$h$k(BWeb$B%"%W%j%1!<%7%g%s%O%$%8%c%C%/$N4m81@-$H$=$NBP:v(B $B$NOC!#(B

$BJ}K!(B B$B!'(B 2$B$D$N%/%C%-!<$r;H$$J,$1$k(B
($BCfN,(B)
$B$3$N$H$-!"0E9f2=$GJ]8n$,I,MW$J2hLL!J(Bhttps://...$B$r;H$&$3$H$K$7$?2hLL!K$KBP$7$F!"(Bhttps://...$B$G%"%/%;%9$5$l$F$b>pJs$rI=<($7$J$$$h$&$K%5%$%H$r:n$kI,MW$,$"$j$^$9!#$=$&$7$J$$$H!"967bpJs$K%"%/%;%9$G$-$F$7$^$&$+$i$G$9!#(B

$B!!2?$+JQ$8$c$J$$$G$9$+(B? > IPA ISEC$B!#(B https:// $B$r;H$&$3$H$K$7$?2hLL$K(B https:// $B$G%"%/%;%9$7$?$i>pJs$r=P$5$J$$!"$H$$$&$N$O!D!D!#(B

2003.08.11 $BDI5-(B:

$B!!D>$C$?$h$&$G$9!#$*$D$+$l$5$^$G$9(B > IPA ISEC $B$NCf$N?M!#(B

$B"#(B UNIX fixes
(various)

Red Hat Linux
NetBSD

$B"#(B $B$$$m$$$m(B
(various)

$B"#(B 2003.08.08

$B"#(B $B$$$m$$$m(B
(various)

$B!!$$$m$$$m!#(B

$B"#(B $B!w(BSam's room at fleur d'interdit
($B$1$s$N$\$d$-(B, 2003.08.07)

$B!!;(3X%"%I%P%$%6%j$N!V;~7ONs$KDI$C$+$1$F$_$h$&!&!&!&!W$,$J$+$J$+6=L#?<$$$G$9!#(B

$B"#(B 2003.08.07

$B"#(B 2003.08.06

$B"#(B $B=;4p%M%C%H8x3+F$O@2q$M$?(B
(various)

$B!!$H$3$m$G!"C/$bOCBj$K$7$F$$$J$$$h$&$G$9$,!"!V(BWindows NT $B$r;H$C$F$$$k!W$H$$$&ItJ,$O!":#8e$I$&$J$k(B ($B$H$$$&$+!"AmL3>J$O$I$&$9$k$D$b$j(B) $B$J$s$G$7$g$&!#(B $B$D$/$j$J$*$9$J$i$$$$5!2q$@$H;W$&$s$G$9$1$I$M!#(B

$B!!4XO"(B: $BEl5~9)6HBg3X!!%U%m%s%F%#%"AOB$6&F18&5f%;%s%?!<65 ($BF|N)(B)$B!#<+2h<+;?$G$9$+!D!D!#(B

$B"#(B $BDI5-(B

[VulnWatch] Postfix 1.1.12 remote DoS / Postfix 1.1.11 bounce scanning

Red Hat fix $BDI5-!#(B

FreeBSD Security Advisory FreeBSD-SA-03:08.realpath

FreeBSD / NetBSD / OpenBSD $B>pJs!"(Blukemftpd $B$N>pJs$rDI5-!#(B

wu-ftpd fb_realpath() off-by-one bug

Turbolinux fix $B$rDI5-!#(B

$B"#(B 2003.08.05

$B"#(B $B8!:w%(%s%8%s%j%j!<%9%N!<%H(B VSAPI 6.640
($B%H%l%s%I%^%$%/%m(B, 2003.08.05)

2. Windows 2000 Server$B!\(BCitrix MetaFrame$B%5!<%P4D6-$G!"%U%m%C%T!<%G%#%9%/>e$+$i%&%$%k%9H/8+;~$K%V%k!<%9%/%j!<%s%(%i!<$H$J$kLdBj$r=$@5(B
($BCfN,(B)
14. OfficeScan 5.5$B!"%Q%?!<%s!"%(%s%8%s%"%C%W%G!<%H;~!"%V%k!<%P%C%/LdBj$NH/@8N($r8:>/$9$k$?$a$K!"%U%#%k%?!<$r=$@5(B

$B!!@hF|$N(B JWNTUG Open Talk in MSC $BBg:e$G!">.Ln;{$5$s$,!V(BWindows $B$N%V%k!<%9%/%j!<%s$NH>J,$O!"%"%s%A%&%#%k%9%=%U%H$H$NIT@09g!W$@$H$*$C$7$c$C$F$$$i$C$7$c$C$?$N$r;W$$=P$7$?!#(BAPI $B$N@0Hw$,I,MW$K$J$k=j0J$G$9$M!#(B

$B"#(B 2003.08.04

$B"#(B [VulnWatch] Postfix 1.1.12 remote DoS / Postfix 1.1.11 bounce scanning
(Full-Disclosure ML, Mon, 04 Aug 2003 04:12:34 +0900)

$B!!(Bpostfix $B$K(B 2 $B

$B!!2r7hJ}K!$H$7$F$O!"(Bpostfix 2.x $B$K0\9T$9$k$+!"(Bpostfix 1.1.13 $B$K0\9T$9$k$+!"IUB0$N(B patch $B$rE,MQ$9$k$+!"$"$k$$$O(B $B;XE&J8=q(B $B$KE:IU$5$l$F$$$k2sHrpostfix-1.1.12-1.1.13.diff

fix / patch:

2003.08.07 $BDI5-(B:

$B!!(B[RHSA-2003:251-01] New postfix packages fix security issues. $B$r(B fix / patch $B$KDI5-!#(B

$B"#(B $BDI5-(B

wu-ftpd fb_realpath() off-by-one bug

$B4XO">pJs$rDI5-!#(B

Windows RPC$B%W%m%;%9$N@H

$B%o!<%`$O$^$@$J$$!"(B $B$H8@$C$F$$$k4V$K%o!<%`$,=P$F$-$?$h$&$G!#(B

$B"#(B FreeBSD Security Advisory FreeBSD-SA-03:08.realpath
(FreeBSD-security ML, Mon, 04 Aug 2003 09:04:31 +0900)

$B!!(BFreeBSD $B$N(B realpath(3) $B$K(B wu-ftpd fb_realpath() off-by-one bug $B$HF1MM$N(B off-by-one $B%P%0$,$"$k!#$H$$$&$+!"(Bwu-ftpd $B$KIUB0$7$F$$$k$b$N$O(B FreeBSD 3.0 $BM3Mh$N%3!<%I$@!#(B lukemftpd(8) $B$d(B sftp-server(8) $B$r$O$8$a$H$9$k!"(B realpath(3) $B$r;H$C$F$$$k%3%^%s%I$K1F6A$,$"$k!#(B FreeBSD Security Advisory FreeBSD-SA-03:08.realpath $B$K(B realpath(3) $B$r;H$C$F$$$k(B packages/ports $B$N0lMw$,$"$k!#(B

$B!!(BRELENG_3$B!"(BRELENG_4_3$B!A(BRELENG_4_8$B!"(BRELENG_5_0 $B$K$*$$$F=$@5$5$l$F$$$k!#(B cvsup $BEy$rMQ$$$F:G?7$N%=!<%9$K$7$?8e$K!"(BOS $B$r:F9=C[$9$k!#(B FreeBSD $B%O%s%I%V%C%/$N(B 19.4. make world $B$NMxMQ(B $B$r;2>H!#(B $B$^$?(B 5.1-RELEASE (RELENG_5_1) $B$K$O$3$NLdBj$O$J$$!#(B

2003.08.06 $BDI5-(B:

$B!!(BNetBSD / OpenBSD $B$K$bF1MM$NLdBj$,$"$k!#(Bpatch $B$,$"$k$N$GE,MQ$7$h$&!#(B

$B!!(Blukemftpd $B$O(B '-r' $B%*%W%7%g%s$r;H$C$F$$$J$$>l9g$K(B root $B$r

$B!!$3$l$K$"$o$;$F(B FreeBSD SA $B$,2~D{$5$l$F$$$k(B:

$B"#(B 2003.08.01

$B"#(B Drivial Pursuit: Internet Explorer Browser & Your Files and Folders !
(bugtraq, Thu, 24 Jul 2003 05:17:39 +0900)

$B!!(BPivX $B$J?M$O(B I can positively confirm this vulnerability on both WMP 7 and 8 on Windows 98, ME, 2000, XP and 2003 $B$@$=$&$J$N$@$,!"

$B!!Mf@{$5$s$H$$$&J}$+$i$b$3$l$N>pJs$rD:$$$?$N$@$,!"Mf@{$5$s$N$H$3$m$G$O:F8=$G$-$F$$$k$N$@$m$&$+!D!D!#(B

$B"#(B iDEFENSE Security Advisory 07.29.03: Buffer Overflow in Sun Solaris Runtime Linker
(bugtraq, Wed, 30 Jul 2003 00:57:30 +0900)

$B!!(BSolaris 2.6$B!A(B9 (sparc/x86) $B$N(B ld.so.1 $B$K7g4Y!#(BLD_PRELOAD $B4D6-JQ?t$KD9Bg$JJ8;zNs$r@_Dj$9$k$H(B buffer overflow $B$,H/@8$9$k$?$a!"(B SUID root $B$J%3%^%s%I$rMxMQ$9$k$J$I$7$F!"(Blocal user $B$,(B root $B8"8B$rC%

$B!!(BCVE: CAN-2003-0609

$B!!H/8+pJs(B: [Full-Disclosure] Solaris ld.so.1 buffer overflow$B!#(B

$B"#(B Oracle $B$M$?(B 3 $B$D(B
(various)

Buffer Overflows in EXTPROC of Oracle Database Server (Oracle)

$BF|K\8lHG(B: #57: EXTPROC$B$B!"(B$BBP93:v(B (oracle.co.jp)

$B4XO"(B: Oracle Extproc Buffer Overflow (#NISR25072003)

NGSSoftware alerted Oracle to this vulnerability on 30th September 2002.

$B5c$1$^$9$M!D!D!#(B

Buffer Overflow Vulnerability in Oracle E-Business Suite (Oracle)

$BF|K\8lHG(B: #56: E-BUSINESS SUITE $B$N@x:_E*$J%P%C%U%!!&%*!<%P!<%U%m!$B!"(B$BBP93:v(B (oracle.co.jp)

$B4XO"(B: Integrigy Security Alert - Oracle E-Business Suite FNDWRR Buffer Overflow

Unauthorized Disclosure of Information in Oracle E-Business Suite (Oracle)

$BF|K\8lHG(B: #55: EBS$B$N0lIt$N(Bjsp$B%U%!%$%k$N@x:_E*$J%;%-%e%j%F%#$N@H$B!"(B$BBP93:v(B (oracle.co.jp)

$B4XO"(B: Oracle E-Business Suite AOL/J Setup Test Information Disclosure

$B!!(B#56 $B$H(B #57 $B$OFC$K%d%P$=$&$G$9$M!#(Bpatch $B$,$"$k$=$&$J$N$G!"E,MQ$7$^$7$g$&!#(B

$B!!(BOracle $B$NF|K\8l%;%-%e%j%F%#%Z!<%8(B$B$C$F?7$7$/$J$C$F$$$?$s$G$9$M!#F|K\8l$G$bDLJs$G$-$k$_$?$$(B:

$B@=IJEy$K$*$1$k@Hl9g!"F|K\%*%i%/%k$H%5%]!<%H7@Ls$r$*;}$A$N$*5RMM$O(BOiSC$B$K%m%0%$%s$7(BTAR$B$r;H$C$F$4O"Mm$r$*4j$$$7$^$9!#$=$l0J30$N>l9g$O>\:Y>pJs$r(BSECALERT_JP@oracle.com $B08$K$4O"Mm$/$@$5$$!#(B

$B"#(B Remote Linux Kernel < 2.4.21 DoS in XDR routine.
(bugtraq, Wed, 30 Jul 2003 04:55:34 +0900)

$B!!(BLinux 2.4.20 $B0JA0$K7g4Y!#(B NFSv3 $B%W%m%7!<%8%c%3!<%k$N(B XDR $B%G!<%?=hM}It$K(B int $B$H(B unsigned int $B$r:.F1$9$k8D=j$,$"$k$?$a!"(Bremote $B$+$i(B DoS $B967b$,2DG=!#(B Linux 2.4.21 $B$G=$@5$5$l$F$$$k!#(B

$B!!(BCVE: CAN-2003-0619

fix / patch:

$B"#(B Security Alert: Local User on Linux Host Can Gain Escalated Privileges
(bugtraq, Thu, 24 Jul 2003 07:09:52 +0900)

$B!!(BLinux $BMQ$N(B VMware GSX Server 2.5.1 $B0JA0!"(BLinux $BMQ$N(B VMware Workstation 4.0 $B0JA0$*$h$S(B VMware ESX Server 1.5.2 patch 3 $B0JA0$K7g4Y!#(B $B4D6-JQ?t$N=hM}$K2?$i$+$N7g4Y$,$"$j!"2>A[%^%7%s$N5/F0;~$K(B ($B$H$$$&$3$H$O(B local user $B$,!"$@$m$&(B) root $B8"8B$r;}$D%7%'%k$J$I$r5/F02DG=!#(B

$B!!(BGSX Server 2.5.1 patch 1$B!"(BVMware Workstation 4.0.1$B!"(BESX Server 1.5.2 patch 4 $B$G=$@5$5$l$F$$$k!#(B

$B"#(B KDE Security Advisory: Konqueror Referer Leaking Website Authentication Credentials
(bugtraq, Tue, 29 Jul 2003 18:40:44 +0900)

$B!!(BKDE 3.1.2 $B0JA0$K4^$^$l$k(B Konqueror (web $B%V%i%&%6(B) $B$K7g4Y!#(B http://user:password@host/ $B7A<0$G@\B3$9$k$H!"$=$NG'>Z%G!<%?$r(B Referer $B$N7A$GB>$N%5%$%H$KAw$C$F$7$^$&!#(B

$B!!(BKDE 3.1.3 $B$G=$@5$5$l$F$$$kB>!"(BKDE 2.2.2 / KDE 3.0.5b $B$KE,MQ$G$-$k(B patch $B$,(B ftp://ftp.kde.org/pub/kde/security_patches $B$KMQ0U$5$l$F$$$k!#(B

$B!!(BCVE: CAN-2003-0459

fix / patch:

$B"#(B $BDI5-(B

Windows RPC$B%W%m%;%9$N@H

$B$d$P$9$.$k%3!<%I$NOC$N$D$E$-!"(BCERT Advisory$B!#(B

MS03-026 - are you patched? Windows Update isn't sure!

UpdateEXPERT 5.1 $BF|K\8lHG$N>pJs$rDI5-!#(BUpdateEXPERT 5.1 $BF|K\8lHG$G$O%U%!%$%k%P!<%8%g%s$b%A%'%C%/$7$F$$$k$=$&$G$9!#(B $BG=AD$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B wu-ftpd fb_realpath() off-by-one bug
(bugtraq, Fri, 01 Aug 2003 01:16:03 +0900)

$B!!(Bwu-ftpd 2.5.0$B!A(B2.6.2 $B$K7g4Y!#(Bfb_realpath() $B4X?t$K(B off-by-one $B%P%0$,$"$k$?$a!"(B STOR RETR APPE DELE MKD RMD STOU RNTO $B%3%^%s%I$G(B buffer overflow $B$,H/@8$9$k!#(B $B$3$N7k2L!"(Bremote $B$+$i(B root $B8"8B$rC%l9g$,$"$k!#(B

$B!!(BCVE: CAN-2003-0466

fix / patch:

2003.08.04 $BDI5-(B:

$B!!4XO"(B:

2003.08.06 $BDI5-(B:

$B!!(BTurbolinux Security Advisory TLSA-2003-46: wu-ftpd $B$r(B fix / patch $B$KDI5-!#(B

[$B%;%-%e%j%F%#%[!<%k(B memo]
$B;d$K$D$$$F(B