$B%;%-%e%j%F%#%[!<%k(B memo - 2004.01

Last modified: Thu Jul 15 10:33:38 2004 +0900 (JST)

$B"#(B 2004.01.30

$B"#(B Internet Explorer File Download Extension Spoofing
(secunia.com, 2004.01.28)

$B!!(BIE 6 $B$K7g4Y!#%U%!%$%kL>$K(B CLSID $B$rKd$a9~$`$3$H$K$h$j!"(BIE $B$,%U%!%$%k$r!V3+$/!W>l9g$K!"K\Mh3+$+$l$k$Y$-%"%W%j%1!<%7%g%s$G$O$J$/!"(BCLSID $B$K<($5$l$k%"%W%j%1!<%7%g%s$,5/F0$5$l$F$7$^$&!#(Bslashdot.jp #483561 $B$N2r@b$,$o$+$j$d$9$$!#(B

$B!!2sHr$9$k$K$O!"%U%!%$%k$r!V3+$/!W$N$r$d$a!"0lC6%@%&%s%m!<%I$7$?>e$G!"%@%&%s%m!<%I$7$?%U%!%$%k$r3+$1$P$h$$!#(B

$B"#(B $B$$$m$$$m(B
(various)

$B"#(B $B%;%-%e%j%F%#%U%i%$%G!
(NetSecurity, 2004.01.30)

$B!!(BFingerprinting through Windows RPC (blackhat.com) $B$N$3$H$N$h$&$G$9!D!D!#(B

2004.02.03 $BDI5-(B:

$B"#(B $BDI5-(B

$B7g4Y$r;XE&$9$k$O$:$,8D?M>pJsN.=P!#%;%-%e%j%F%#@lLg2H$KA\::$N

$B%W%l%<%s;qNA$NN.=P$,H/@8$7$?LOMM(B:

McAfee ePolicy Orchestrator Agent$B$N(BHTTP POST$B$N(I"$B%P%C%U%!8m4IM}$K4X$9$k@H

ePolicy Orchestrator Agent 3.0 SP1 $BMQ$N(B patch $B$,=P$^$7$?!#(B2.5.1 $BMQ$O$^$@$G$9!#(B

$B"#(B InterScan VirusWall NT 3.53J: WORM_MYDOOM(WORM_MIMAIL.R)$B$,8!=P$5$l$:$KDL2a$9$k(B
($B%H%l%s%I%^%$%/%m(B, 2004.01.29)

$B!!GKB;$7$?(B MyDoom $B$,(B InterScan VirusWall NT 3.53J $B$G8!=P$5$l$:$KDL2a$7$F$7$^$$!"%/%i%$%"%s%HB&$G8!=P$5$l$k$3$H$,$"$k!"$H$$$&OC$NLOMM!#(B $B%H%l%s%I%^%$%/%mE*$K$O!"GKB;$7$?(B MyDoom $B$O%Q%?!<%s%U%!%$%k(B 750 $B0J9_$G(B WORM_MYDOOM.DAM $B$H$7$F8!=P$9$k$=$&$@!#(B

$B!!$3$N8=>]$O!V(BWholeMailScan $B5!G=!W$rM-8z$K$9$k$3$H$GBP1~$G$-$k$=$&$@!#(B $B

$B"#(B 2004.01.29

$B"#(B tool $B$$$m$$$m(B
(various)

$B"#(B $B!V%U%)%k%@!W$K8+$;$+$1G$0U$N%U%!%$%k$r
(ITmedia, 2004.01.28)

$B!!85%M%?(B: Self-Executing FOLDERS: Windows XP Explorer Part V$B!#%G%b%U%!%$%k(B: http://www.malware.com/my.pics.zip$B!#(B

  1. Windows XP $B$O!"(B.folder $B3HD%;R$,$D$$$F$$$k$H%U%)%k%@$H$7$FI=<($9$k(B (.folder $B3HD%;R$N%U%!%$%k$K$O%U%)%k%@%"%$%3%s$rI=<($9$k(B)
  2. $B%@%V%k%/%j%C%/;~$K$I$N$h$&$K=hM}$9$k$+$O!"F0E*$K7hDj$9$k(B ($BCf?H$,(B HTML $B$N$h$&$J$i(B HTML $B$H$7$F=hM}$9$k(B)

$B$3$H$rMxMQ$7!"(B

  1. $B967b%W%m%0%i%`$r:n@.$7!"(BBinHex $B7A<0$G%(%s%3!<%I(B
  2. $B>e5-(B BinHex $B$rKd$a9~$_!"$5$i$K!"$=$l$r<+F0E*$K%G%3!<%I$9$k$h$&$J(B JavaScript $B$r5-=R$7$?(B HTML $B%U%!%$%k$rMQ0U(B
  3. HTML $B%U%!%$%k$N3HD%;R$r(B .folder $B$K(B
  4. HTML $B%U%!%$%k$r(B zip $B$G05=L(B

$B$H$7$?$N$,!">e5-%G%b%U%!%$%k$G$"$k$h$&$K8+$($k!#$G!"(B.zip $B$r3+$$$F!"$5$i$K%U%)%k%@$,4^$^$l$F$$$k$H;W$C$F%@%V%k%/%j%C%/$9$k$H!D!D%I%+%s!#(B

$B!!(B.folder $B3HD%;R$N%U%!%$%k$K%U%)%k%@%"%$%3%s$r3d$j$"$F$k!"$H$$$&;EMM$,$=$b$=$b$N4V0c$$$G$"$k$h$&$K;W$($k!#

$B!!(Btypo fixed: $B2CG<$5$s!"(BHanda $B$5$s46

$B"#(B MyDoom $B$M$?(B: $B0!l(B
(various)

$B!!0!l!#(BMyDoom.B $B$O(B

$B$@$=$&$G!#(B

$B!!3F

$B!!(BMyDoom $B4XO"5-;v(B:

$B"#(B Changes to CERT Advisories [INFO#04.20510]
(CERT/CC, Wed, 28 Jan 2004 22:48:15 +0900)

$B!!(BUS-CERT $B$,$i$_$G$$$m$$$m$"$k$h$&$G!#(B $B$H$j$"$($:$*

$B!!4XO"(B: $BJF9qEZ0BA4J]>c>J$,%5%$%P!<%;%-%e%j%F%#$N7Y9p%7%9%F%`(B (MYCOM PC WEB)

$B"#(B eEye Upcoming Advisories
(eEye)

$B!!DLJs:Q$_$@$1$I$^$@=$@5$5$l$F$$$J$$(B ($B$N$G>\:Y$b8x3+$G$-$J$$(B) $B7g4Y$N%j%9%H!#(B remote $B$+$i(B SYSTEM $B8"8B$r

$B!!H>G/7P2a$7$F$b=$@5$G$-$J$$7g4Y$H$$$&$N$O!"$I$&$$$&7g4Y$J$s$G$7$g$&$M!D!D!#(B eEye $B$,!":F8=$K

2004.02.12 $BDI5-(B:

$B!!H>G/7P2a$7$F$$$?$N$O(B ASN.1 $B$N@H $B$@$C$?$h$&$G$9$M!#(B $B$7$+$7!"$^$@$^$@;D$C$F$^$9!D!D!#(B

$B"#(B 2004.01.28

$B"#(B $B$$$m$$$m(B
(various)

$B"#(B JPCERT/CC$B!&(BCERT/CC $B@HpJs%O%s%I%j%s%0%o!<%/%7%g%C%W(B
(JPCERT/CC, 2004.01.28)

$B!!(B2004.03.09 14:00$B!A(B17:00 $BEl5~ET@iBeED6h!#?=9~!:@Z$O(B 2004.02.27 17:00$B!#(B 

[$B;22CBP>]4k6H(B]  $B];22CZ(B/$B4IM}@UG$Z!"4IM}$r9T$&It=p!"$"$k$$(B
  $B$O$=$l$K4XO"$9$k6HL3$K7H$o$k@UG$pJs(B/$B%;%-%e%j%F%#>pJs$rA4(B
  $B

$B!!!VDj0w$K$J$j$B%[%F%k%K%e!<%*!<%?%K(B $BM*$N4V(B $B$@$=$&$J$N$G!"F~$k$@$1F~$l$k$N$G$7$g$&!#(B

$B"#(B MyDoom $B$M$?(B
(various)

$B!!$"$$$+$o$i$:Mh$F$^$9$M!#(B

$B!!%"%s%A%&%#%k%9%Y%s%@!pJs(B ($B$$$m$$$m2~D{$5$l$F$$$^$9$N$G:FFI$7$F$*$$$?J}$,$h$$$G$7$g$&(B):

$B!!WORM_MIMAIL.R ($B%H%l%s%I%^%$%/%m(B) $B$+$i(B:

$B%P%C%/%I%"3hF0(B
$B!!%o!<%`$O30It$HDL?.$7!"30It$+$i$N%j%b!<%H%3%s%H%m!<%k$r2DG=$K$9$k%P%C%/%I%"7?%O%C%-%s%0%D!<%k$H$7$F$N5!G=$r;}$C$F$$$^$9!#30It$N%f!<%6$O$3$N%o!<%`$,?/F~$7$?%3%s%T%e!<%?$r%j%b!<%H%3%s%H%m!<%k$7$F%U%!%$%k$N%@%&%s%m!<%I$H
$B!!%o!<%`$O30It$H$NDL?.$N$?$a$K%]!<%H(B3127$B!A(B3198$B$r;HMQ$7$^$9!#%o!<%`$O%]!<%H(B3127$B$+$i(B3198$B$^$G=gHV$K%]!<%H$N%*!<%W%s$r;n$_$F$$$-!"%*!<%W%s$K@.8y$7$?%]!<%H(B1$B$D$rDL?.$K;HMQ$7$^$9!#$9$Y$F$N%]!<%H$,%*!<%W%s$G$-$J$+$C$?>l9g$O(B3127$B$KLa$C$F$^$?=g$K%*!<%W%s$r;n$_$F$$$-$^$9!#(B

$B!!$3$N%o!<%`$N%P%C%/%I%"5!G=$O(B"SHIMGAPI.DLL"$B$K=8$a$i$l$F$$$^$9!#(B

$B$=$NB>$N>pJs!'(B
$B!&%7%9%F%`F|IU$,!V(B2004$BG/(B2$B7n(B12$BF|!W0J9_$@$C$?>l9g!"%o!<%`$O>e5-$N!V%P%C%/%I%"3hF0!W$N$_$r9T$J$$$^$9!#$=$l0J30$N9TF0$O9T$J$$$^$;$s!#(B

$B!!$I$&$d$i!"?7$?$J;XNa$rBT$D$h$&$@!#$&$X$'!#(B

$B!!(B$B9*$_$J%=!<%7%c%k%(%s%8%K%"%j%s%0$,0z$-5/$3$7$?(BMyDoom$B$N$^$s1d(B (ITmedia) $B$G$b(B [memo:6785] $B$HF1MM!"%(%i!<%a!<%k$K$J$k$3$H$rA@$C$?$N$G$O$J$$$+$H$$$&@b$,<($5$l$F$$$^$9$M!#(Bfrom $B$b(B to $B$b$"$F$:$C$]$&$J%"%I%l%9!"$H$$$&%a!<%k$,B8:_$9$k$N$G(B [memo:6786]$B!"I,$:$7$b$=$&$G$O$J$$$h$&$J5$$,8D?ME*$K$O$9$k$N$G$9$,!D!D!#(B $BA@$C$?$K$;$h7k2LE*$K$=$&$J$C$?$K$;$h!"8z2L$,$"$C$?$N$O3N$+$J$h$&$G$9$,!#(B

2004.01.28 $BDI5-(B:

$B!!(B$B%"%I%l%956$j%&%$%k%9H/?.!!Bh#44I6h3$J](B ($B6&F1DL?.(B)$B!#$"$N!A!"$=$s$J>u67$O$=$3$i$8$e$&$GH/@8$7$F$$$k$s$G$9$,!D!D(B > $B3$J](B & $B6&F1!#(B $B$^$D$@$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B 834489 - Microsoft plans to release a software update that modifies the default behavior of Internet Explorer for handling user information in HTTP and HTTPS URLs
(Microsoft, 2004.01.28)

$B!!(BIE$B$K(BURL$B$r56Au$G$-$k%Q%C%AL$8x3+$N@H $BOC!"$h$&$d$/(B fix $B$,(B$B6aF|EP>l(B$B$9$k$h$&$G$9!#(B Stay tuned.

$B!!!D!D$^$"!"(Bfix $B$H$$$&$h$j$O;EMMJQ99(B (URL $B$G$N(B username:password $B$rL58z$K$9$k(B) $B$J$N$G$9$,!"$3$l$@$10-MQ$5$l$F$$$k0J>e!";EJ}$J$$$N$G$7$g$&!#(B

$B"#(B $BDI5-(B

IE$B$K(BURL$B$r56Au$G$-$k%Q%C%AL$8x3+$N@H

IE $BMQ(B fix $B$,6aF|EP>l$N$h$&$G$9(B: 834489 - Microsoft plans to release a software update that modifies the default behavior of Internet Explorer for handling user information in HTTP and HTTPS URLs $B!#$^$"!"(Bfix $B$H$$$&$h$j$O;EMMJQ99(B (URL $B$G$N(B username:password $B$rL58z$K$9$k(B) $B$J$N$G$9$,!"$3$l$@$10-MQ$5$l$F$$$k0J>e!";EJ}$J$$$N$G$7$g$&!#(B

$B$^$?(B koricoli $B$5$s$K$h$k$H(B ($B>pJs$"$j$,$H$&$4$6$$$^$9(B)$B!"@h$4$mEP>l$7$?(B Mozilla 1.6 $B$G$O!"%9%F!<%?%9%P!<$K$D$$$F$b(B $B!{(B $B$K$J$C$F$$$k$=$&$G$9(B (koricoli $B$5$s$K$h$k%-%c%W%A%c2hA|(B)$B!#(B

APPLE-SA-2004-01-26 Security Update 2004-01-26

[VulnWatch] MacOS X TruBlueEnvironment Buffer Overflow

$B"#(B [mod_python] [ANNOUNCE] Mod_python 2.7.10
(Full-Disclosure ML, Wed, 28 Jan 2004 01:41:33 +0900)

$B!!(Bmod_python 2.7.9 $B$GD>$C$?$O$:$N(B DoS $B7j$,!"$C$F$$$J$+$C$?LOMM!#:F=$@5HG$N(B 2.7.10 $B$,%j%j!<%9$5$l$?!#(B Apache 2.x $BMQ$N(B mod_python 3.0.4 $B$K$O$3$NLdBj$O$J$$$=$&$@!#(B

$B!!$7$+$7!"(B2.7.10 $B$K$bLdBj$,;D$C$F$$$k$H$$$&;XE&$,(B: [mod_python] Re: [ANNOUNCE] Mod_python 2.7.10$B!#(B

$B"#(B symlink vul for Antivir / Linux Version 2.0.9-9 (maybe lower)
(bugtraq, 13 Jan 2004 18:37:30 -0000)

$B!!(BH+BEDV AntiVir $B$N(B Linux $BHG(B 2.0.9-11 $B0JA0$K7g4Y!#0l;~%U%!%$%kL>$rM=A[$G$-$F$7$^$&$?$a!"(Bsymbolic link $B967b$r

$B!!(BAntiVir 2.0.9-12 $B$G=$@5$5$l$?(B$B$=$&$G$9!#(B antivir --update $B%3%^%s%I$G<+F0%"%C%W%G!<%H$G$-$kB>!"(B $B%@%&%s%m!<%I%Z!<%8(B $B$+$iF~

$B"#(B 2004.01.27

$B"#(B APPLE-SA-2004-01-26 Security Update 2004-01-26
(security-announce@lists.apple.com, Tue, 27 Jan 2004 09:26:51 +0900)

$B!!(BMac OS X 10.3.2 / 10.2.8 $BMQ$NB>!"$J$s$H(B 10.1.5 $BMQ$N(B patch $B$,MQ0U$5$l$?!#(B $B$9$P$i$7$$!#(B$B8EJkNC;a$K$h$kK.LuHG(B$B!#(B

$B!!(BCVE: CAN-2003-0542 CAN-2003-0789 (Apache) CAN-2004-0089 (Classic) CAN-2004-0085 CAN-2004-0086 (Mail) CAN-2004-0092 (Safari) CAN-2004-0087 CAN-2004-0088 (System Configuration) CAN-2004-0090 (Windows File Sharing)$B!#(B

2004.01.28 $BDI5-(B:

$B!!(B[VulnWatch] MacOS X TruBlueEnvironment Buffer Overflow (CAN-2004-0089)

$B"#(B $B$$$m$$$m(B
(various)

$B"#(B 2004.01.26

$B"#(B $BDI5-(B

CERT Advisory CA-2004-01 Multiple H.323 Message Vulnerabilities

H.323 Vulnerability (checkpoint.com)$B!#(BFireWall-1 $B$G(B H.323 $B$7$F$$$k>l9g$O!"(Bhotfix $B$rE,MQ$7$h$&!#(B

MDAC $B5!G=$N%P%C%U%!%*!<%P!<%i%s$K$h$j!"%3!<%I$,

Windows Update $B$K@\B3$9$k$H(B $B!V(BMicrosoft Data Access Components $BMQ%;%-%e%j%F%#LdBj$N=$@5%W%m%0%i%`(B (KB832483)$B!W(B $B$,2?EY$bI=<($5$l$k(B $B$H$$$&LdBj$,H/@8$9$k$3$H$,$"$k$=$&$@!#%$%s%9%H!<%k$5$l$F$$$k(B MDAC $B$N%P!<%8%g%s$,!"=$@5%W%m%0%i%`$,MQ0U$5$l$F$$$k(B MDAC $B$N%P!<%8%g%s$KE,9g$7$J$$>l9g$K$=$&$J$k$h$&$G!#(B835173 - INF: MDAC $B%;%-%e%j%F%#=$@5%b%8%e!<%k$NE,MQ$K4XO"$9$kJdB-;v9`(B (Microsoft) $B$K$h$j%$%s%9%H!<%k$5$l$F$$$k(B MDAC $B$N%P!<%8%g%s$r3NG'$7!"I,MW$G$"$l$P(B MDAC $B$r(B$B%"%C%W%0%l!<%I(B$B$7$F$+$i(B Windows Update $B$9$l$P$h$$LOMM!#(B $B=$@5%W%m%0%i%`$,MQ0U$5$l$F$$$k(B MDAC $B%P!<%8%g%s$O(B:

  • MDAC 2.5 SP2 / SP3
  • MDAC 2.6 SP2
  • MDAC 2.7 gold / SP1 / SP1 refresh
  • MDAC 2.8

$B$U$D$&$N?M$O!"(BMDAC 2.7 SP1 Refresh $B$+(B MDAC 2.8 $B$,$h$m$7$$$G$7$g$&!#4XO"(B:

$B"#(B [Full-Disclosure] bzip2 bombs still causes problems in antivirus-software
(Full-Disclosure, Sat, 10 Jan 2004 02:37:52 +0900)

$B!!(B0 $B$@$1$H$+(B 1 $B$@$1$H$+$N5pBg$J%U%!%$%k$r:n$C$?>e$G!"(Bbzip2 $B$G05=L$9$k$H!"$H$C$F$b>.$5$/$J$k(B ($B%5%s%W%k(B)$B!#(B $B$=$&$$$&$b$N$r%"%s%A%&%#%k%9%W%m%@%/%H$G8!::$9$k$H!"%G%#%9%/$,0n$l$?$j!"0n$l$J$$$^$G$b(B CPU $B$rBgNL$K>CHq$7$?$j$9$k!"$H$$$&OC!#(B $B$3$NOC$O(B [Full-Disclosure] AV "feature" does more DDoS than Sobig $B$G$9$G$K;XE&:Q$_$@$,!"!V(B2GB $B$N(B 0 $B$J%U%!%$%k!W$N$+$o$j$K!V(B2GB $B$N(B 1 $B$J%U%!%$%k!W$rMQ0U$7$?$j$9$k$H0MA3$H$7$FM-8z$@!"$H$7$F$$$k!#(B

$B!!;XE& 

* kavscanner of
   Kaspersky AntiVirus for Linux 5.0.1.0 (probably all versions since 4.0.3.0)
* vscan of
   Trend Micro InterScan VirusWall 3.8 Build 1130 (probably other versions, too)
* uvscan of
   McAfee Virus Scan for Linux v4.16.0 (probably other versions, too)
* AMaViS 0.2.x/0.3.x, amavisd below amavisd-new-20021116, amavis-ng

$B!!%H%l%s%I%^%$%/%m$K$D$$$F$O@=IJ(B Q&A $B$,8x3+$5$l$F$$$k(B:

$B!!F|K\8lHG(B Q&A $B$b$$$/$D$+$"$k$,!"1Q8lHG$HF14|$7$F$$$k$o$1$G$OI,$:$7$b$J$$$_$?$$(B:

$B!!(BAMaViS $B$+$i$b>pJs$,=P$F$$$k!#(Bamavis-ng $B$H(B amavisd-new-20021116 $B0J9_$K$O2sHrJ}K!$,$"$kLOMM(B:

$B!!H,Hx$5$s!";3K\$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

2004.02.04 $BDI5-(B:

$B!!(Bbzip2$B$N(BDoS$B967b$N2DG=@-$K$D$$$F(B (NAI)$B!#%G%U%)%k%H$G(B 15 $BJ,$O(B CPU $B2aIi2Y967b$,8z$/!"$H$bM}2r$G$-$k$N$@$,!#(B $BE83+;~$N%G%#%9%/$"$U$l7O$NLdBj$K$D$$$F$O5-:\$5$l$F$$$J$$$h$&$@$,!"H/@8$7$J$$$N$@$m$&$+!#(B

2004.02.13 $BDI5-(B:

$B!!(BVirusScan ASaP - bzip2$B$N(BDoS$B967b$K4X$7$F(B (NAI)$B!#(BVirusScan ASaP $B$G$N>u67!#(B

$B"#(B 2004.01.23

$B"#(B $BDI5-(B

$B7g4Y$r;XE&$9$k$O$:$,8D?M>pJsN.=P!#%;%-%e%j%F%#@lLg2H$KA\::$N

ASKACC $B$K!V;v8ND4::0Q0w2q!W$+$i$N!VD4::Js9p=q!W$,(B 2004.01.22 $BIU$G7G:\$5$l$F$$$k7o$J$I!#(B

$B"#(B 2004.01.22

$B"#(B $BDI5-(B

Windows 98 $B$N1dD9%5%]!<%H%U%'!<%:$,(B 2006 $BG/(B 6 $B7n(B 30 $BF|$^$G$K1dD9$5$l$?(B

$B!V1dD9%5%]!<%H%U%'!<%:!W$N1dD9$@!"$H8@$$$D$E$1$F$$$k$3$H$K$=$b$=$b$NLdBj$,$"$k$H;W$&$N$G$9$,!#(B

[RHSA-2004:007-01] Updated tcpdump packages fix various vulnerabilities
[Full-Disclosure] lftp buffer overflows

Turbolinux: Turbolinux Security Advisory TLSA-2004-2

$B"#(B 2004.01.21

$B"#(B 2004.01.20

$B"#(B $BDI5-(B

Windows 98 $B$N1dD9%5%]!<%H%U%'!<%:$,(B 2006 $BG/(B 6 $B7n(B 30 $BF|$^$G$K1dD9$5$l$?(B

$BM-=~%5%]!<%H7@Ls$J$s$F7k$s$G$$$J$$$U$D$&$N?M$K$H$C$F$O!V(BWindows 98 / 98 SE / Me $B$O$b$&=*$j!W$H$$$&M}2r$G@5$7$$!#(B $BM-=~%5%]!<%H7@Ls$r7k$s$G$$$l$P!"Ld$$$"$o$;%Y!<%9$G!"(BIE $B$J$I$N%3%s%]!<%M%s%H$r4^$a$F!"?75,%;%-%e%j%F%#(B hotfix $B$rF~

$B"#(B [Full-Disclosure] Lame crash in qmail-smtpd and memory overwrite according to gdb, yet still qmail much better than windows yet still qmail much better than windows
(Full-Disclosure ML, )

$B!!(Bqmail 1.03 $B$K7g4Y!#(B2GB $B$r1[$($kD9Bg$J(B SMTP $B%;%C%7%g%s$K$h$j!"(Bqmail-smtpd $B$G(B integer overflow $B$,H/@8!"(Bqmail-smtpd $B$,%/%i%C%7%e$7$F$7$^$&!#(B Guninski $B;a$O(B it is possible to overwrite memory in qmail-smtpd 1.03 $B$H$7$F$$$k$,!"$3$l$K$OH?O@$,(B$BEj9F(B$B$5$l$F$$$k!#(B

$B!!2sHr$9$k$K$O%a%C%;!<%8%5%$%:$N:GBgCM$H$7$F(B 2GB $B0JFb$N?t;z$r(B /var/qmail/control/databytes $B$K@_Dj$7$F$*$/!"$H(B Secunia Advisories SA10649 (secunia.com) $B$G$O@bL@$5$l$F$$$k!#(B $B$7$+$7(B databytes$B$O%G%#%9%/$KJ]B8$5$l$k%P%$%H?t(B!? (slashdot.jp) $B$G$O!"(Bdatabytes$B$O%G%#%9%/$KJ]B8$5$l$k%P%$%H?t$G$"$C$F!"%M%C%H%o!<%/$rDL2a$9$k%P%$%H?t$G$O$J(B (qmail.jp) $B$H;XE&$5$l$F$$$k!#(B databytes $B$N@_Dj$G$OIT==J,$+$b$7$l$J$$!#(B

$B!!(Bqmail$B$K%P%C%U%!%*!<%P!<%U%m!<$N@H (slashdot.jp) $B$G$O(B unofficial patch $B$,$$$/$D$+>R2p$5$l$F$$$k!#4NItJ,$OF1$8$_$?$$!#(B

$B!!5FCO$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B NetScreen Security Advisory 58290: Communications between devices running ScreenOS 5.0 and NetScreen-Security Manager not encrypted
(NetScreen, 2004.01.14)

$B!!(BScreenOS 5.0 $B$H(B NetScreen-Security Manager $B$H$N4V$NDL?.$,!"%G%U%)%k%H$G$O0E9f2=$5$l$F$$$J$$$H$$$&OC!#@_Dj$5$($9$l$P(B 128 bit AES $B$G0E9f2=$5$l$k$=$&$G$9!#(B $B$^$?(B NetScreen-Security Manager 2004 Feature Pack 1 $B$G=$@5$5$l$k$=$&$G$9!#(B

$B"#(B 2004.01.19

$B"#(B [vine-users:063783] $B5/F0;~$N(Bfsck $B$K$F%U%!%$%kGKB;5Z$S5/F0ITNI(B
(vine-users ML, Thu, 08 Jan 2004 00:31:24 +0900)

$B!!(BVine Linux 2.6r3 $B$r%/%j!<%s%$%s%9%H!<%k$7$?4D6-$K$*$$$F!"(Bext3 $B%U%!%$%k%7%9%F%`$r:n@.$9$k$H!"(Bfsck $B$,$+$+$C$?;~E@$G%U%!%$%k%7%9%F%`$,GK2u$5$l$k!"$H$$$&OC!#$?$H$($P(B shutdown -r -F now (-F = $B:F5/F0;~$K6/@)E*$K(B fsck $B$9$k(B) $B$G%@%a$K$J$k$=$&$@(B [vine-users:063787]$B!#EvLL$N2sHr:v$H$7$F$O!"(BVine Linux 2.6r3 $B$G(B ext3 $B%U%!%$%k%7%9%F%`$r:n@.$7$?>l9g!"$?$H$($P$=$l$,(B /dev/hda2 $B$J$i(B tune2fs -O ^dir_index /dev/hda2 $B$N$h$&$K$7$F$*$1$P$h$$LOMM(B [vine-users:063789] [vine-users:063968]$B!#(B

$B"#(B $BCO?LGH$,5pBg9=B$J*$r=1$&(B
(NHK $B%9%Z%7%c%k(B, 2004.01.18)

$B!!El3$!&ElFn3$!&Fn3$CO?L$K$h$C$FH/@8$9$k!VD9<~4|CO?LF0!W$K$h$C$F!"@PL}%3%s%S%J!<%H$N%?%s%/$O$*$m$+!"9bAX%S%k$,BgBG7b$ru67$O$3$l$^$GC/$bA[Dj$7$F$$$J$$LOMM!#$^$:$9$.!"$d$P$9$.!#(B $BCFF;%_%5%$%kKI1R$K(B 7000 $B2/1_$+$1$F$k>l9g$8$c$J$$$H;W$&$N$@$,!#(B $BCO?L$N$[$&$,!"$h$C$]$I!V:#$=$3$K$"$k4m5!!W$@$>!D!D!#(B

$B!!(B$B:FJ|Aw(B $B$O(B 1/20 24:40 $B$+$i!#9bAX%S%k$K%*%U%#%9$,$"$k!"$J$s$F?M$OI,$:8+$F$*$-$^$7$g$&!#(B

2004.03.01 $BDI5-(B:

$B!!(B$B5~MUNW3$$N@PL}%?%s%/!"5pBgCO?L$GH>?tHo:R!DAaBgM=B,(B ($BFIGd(B)$B!#(B $BHVAHCf$G$b

$B"#(B Shadow Penguin Security $BJD:?$N$*CN$i$;(B
(SPS, 2004.01.18)

$B!!FCDj>/?t$X$N>pJsDs6!$K0\9T$5$l$k$N$@$=$&$G$9!D!D!#(B (T_T)

$B"#(B $BDI5-(B

SRT2004-01-9-1022 - Symantec LiveUpdate allows local users to become SYSTEM

$B%*%U%#%7%c%k(B: SYM04-001 2004$BG/(B1$B7n(B12$BF|(B Symantec $B<+F0(BLiveUpdate$B$N@H:3J$5$l$k(B ($B%7%^%s%F%C%/(B)$B!#!V(BLiveUpdate v2.0$B$N:G?7%j%j!<%9!W$GBP1~$5$l$F$$$k$N$@$=$&$G$9!#(BCVE: CAN-2003-0994

$B"#(B 2004.01.16

$B"#(B SecurityFocus Newsletter #227, 228
(bugtraq-jp)

$B"#(B $BDI5-(B

Linux kernel do_mremap local privilege escalation vulnerability

http://isec.pl/vulnerabilities/isec-0013-mremap.txt $B$,(B 2004.01.15 $B$K2~D{$5$l$?!#(B/bin/bash $B$r5/F0$9$k(B exploit $B$,E:IU$5$l$?>\:Y>pJs$,5-:\$5$l$F$$$k!#(B

$B"#(B 2004.01.15

$B"#(B $B$$$m$$$m(B
(various)

$B"#(B $BDI5-(B

IE $B$b$N(B

[Full-Disclosure] Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV $B$K$D$$$F$O!"(BPivX $B$N(B Thor Larholm $B;a$,H?O@$r=P$7$F$$$k(B: RE: Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part IV$B!#(B

$B4XO"5-;v(B: IE$B$K(B2$B ($BF|7P(B IT Pro)$B!#F|7P(B IT Pro $B>!B<;a$K$h$k2r@b5-;v!#(B

$B6d9T%+!<%I56B$!"0E>ZHV9f3d=P$7$NFf$,(B

RFID$B%?%0$O(B20$BG/A0$N2a$A$r7+$jJV$9$+(B ($B9bLZ9@8w!w0q>k8)$D$/$P;T(B $B$NF|5-(B, 2003.12.08) $B$G$b8@5Z$5$l$F$$$?$N$GDI5-!#(B (info from $B$_$c!<;a$J%Z!<%8(B) (link fixed: $B$7$P$F$s$5$s46

Windows 98 $B$N1dD9%5%]!<%H%U%'!<%:$,(B 2006 $BG/(B 6 $B7n(B 30 $BF|$^$G$K1dD9$5$l$?(B

$B%K%e!<%9%j%j!<%9=P$^$7$?(B: Microsoft(R) Windows(R) 98$B!"(BMicrosoft Windows 98 Second Edition$B$*$h$S(BMicrosoft Windows Millennium Edition $B$N1dD9%5%]!<%H4|4V$r(B2006$BG/(B6$B7n(B30$BF|$^$G$5$i$K1dD9$9$k$3$H$r7hDj(B (Microsoft)

$B"#(B 2004.01.14

$B"#(B $B6d9T%+!<%I56B$!"0E>ZHV9f3d=P$7$NFf$,(B
(TBS, 2004.01.13 (info from $B%?%l%3%_(B))

$B!!(BATM $B$@$H(B 3 $B2s4V0c$($?$"$?$j$G%m%C%/$5$l$F$7$^$&$,!"<+F02;@<0FFb$r;H$($P!"2?EY$G$b;n$;$k>e$K!"(B1 $BF|(B 3 $B2sDxEY$N%H%i%$$J$i5?$o$l$J$$$N$@$=$&$@!#(B $B$J$s$8$c$=$j$c!

$B!!$7$P$F$s$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

2004.01.15 $BDI5-(B:

$B!!(BRFID$B%?%0$O(B20$BG/A0$N2a$A$r7+$jJV$9$+(B ($B9bLZ9@8w!w0q>k8)$D$/$P;T(B $B$NF|5-(B, 2003.12.08) $B$G$b8@5Z$5$l$F$$$?$N$GDI5-!#(B (info from $B$_$c!<;a$J%Z!<%8(B)

$B"#(B Windows 98 $B$N1dD9%5%]!<%H%U%'!<%:$,(B 2006 $BG/(B 6 $B7n(B 30 $BF|$^$G$K1dD9$5$l$?(B
(various)

$B!!1dD9$5$l$?$N$O!V1dD9%5%]!<%H%U%'!<%:!W$G$9!#!VHs%5%]!<%HBP>]%U%'!<%:!W$G$O$"$j$^$;$s!#$H$$$&$+!"$3$l$^$G!V5l%i%$%U%5%$%/%k%,%$%I%i%$%s!W$K=>$&$H$5$l$F$-$?(B Windows 98 / 98 SE / Me $B$r!V?7%i%$%U%5%$%/%k%,%$%I%i%$%s!W$K=>$&$b$N$H$9$kJQ99$N$h$&$G$9!#(B Windows $B%G%9%/%H%C%W@=IJ$N%i%$%U%5%$%/%k(B (Microsoft) $B$O$=$N$&$A=q$-D>$5$l$k$N$G$7$g$&!#(B

$B!!:#=5Cf$K$OA4BNA|$,$O$C$-$j$7$=$&$G$9!#(B

$B!!$7$+$7!D!D$3$l$G(B Windows 9x/Me $B%5%]!<%H$r$d$a$i$l$J$/$J$C$?%=%U%H%Y%s%@!<$O$I$N$/$i$$=P$F$/$k$N$G$7$g$&!#(B Windows 9x/Me $B$J$s$F!"$?$$$F$$$O(B low spec $B$J5!3#$GF0$-$D$E$1$F$$$k$N$G$7$g$&$7!#(B $B@5D>$>$C$H$9$k$b$N$,$"$k$N$G$9$,!D!D!#(B

2004.01.15 $BDI5-(B:

$B!!%K%e!<%9%j%j!<%9=P$^$7$?(B: Microsoft(R) Windows(R) 98$B!"(BMicrosoft Windows 98 Second Edition$B$*$h$S(BMicrosoft Windows Millennium Edition $B$N1dD9%5%]!<%H4|4V$r(B2006$BG/(B6$B7n(B30$BF|$^$G$5$i$K1dD9$9$k$3$H$r7hDj(B (Microsoft)

$BDs6!%5%]!<%HFbMF!'(B $BM-=~%5%]!<%H7@Ls$r$*;}$A$N$*5RMM$KBP$7!"@=IJ%5%]!<%H!J(B*1$B!K!"$*$h$S%;%-%e%j%F%#=$@5%W%m%0%i%`!J%j%/%(%9%H%Y!<%9!K(B
*1$B!'(BQA$BBP1~!"4{B8%[%C%H%U%#%C%/%9$NDs6!!#(B

$B!!(BWindows $B%G%9%/%H%C%W@=IJ$N%i%$%U%5%$%/%k(B (Microsoft) $B$N(B [6]:

Windows98$B!"$*$h$S(B Windows98 Second Edition (SE) $B$N@=IJ%5%]!<%H$r(B 2006 $BG/(B 6 $B7n(B 30 $BF|$^$G$4Ds6!$$$?$7$^$9!#M-=~%5%]!<%H7@Ls$r$*;}$A$N$*5RMM$O!"(B2006 $BG/(B 6 $B7n(B 30 $BF|$^$G!"DL>o$4MxMQ$$$?$@$/%5%]!<%HAk8}$K$F4{B8%;%-%e%j%F%#%[%C%H%U%#%C%/%9$rL5=~$K$F$4Ds6!$$$?$7$^$9!#$^$?F1$8$h$&$K!"M-=~%5%]!<%H7@Ls$r$*;}$A$N$*5RMM$O!"(B2006 $BG/(B 6 $B7n(B 30 $BF|$^$GDL>o$4MxMQ$$$?$@$/%5%]!<%HAk8}$K$F?75,%;%-%e%j%F%#%[%C%H%U%#%C%/%9$r%j%/%(%9%H$7$F$$$?$@$/$3$H$,2DG=$G$9!#$*5RMM$N4D6-$K$*$$$F=$@5%W%m%0%i%`$NDs6!$,I,?\$HH=CG$5$l$?>l9g$K%;%-%e%j%F%#%[%C%H%U%#%C%/%9$r$4Ds6!$$$?$7$^$9!#%*%s%i%$%s%;%k%U(B $B%X%k%W(B $B%5%]!<%H$O!"@=IJ%5%]!<%H=*N;8e!":GC;$G$b(B 1 $BG/4V(B (2007 $BG/(B 6 $B7n(B 30 $BF|$^$G(B ) $B$4MxMQ$$$?$@$1$^$9!#4{$K$40FFb$5$;$F$$$?$@$$$F$$$k$H$*$j!"%a%$%s%9%H%j!<%`%5%]!<%H$O(B 2002 $BG/(B 6 $B7n(B 30 $BF|$G=*N;!"$^$?!"L5=~%5%]!<%H!"$*$h$S%;%-%e%j%F%#0J30$N%[%C%H%U%#%C%/%9(B $B%5%]!<%H$K$D$$$F$O(B 2003 $BG/(B 6 $B7n(B 30 $BF|$G=*N;$7$F$$$^$9!#(B

2004.01.20 $BDI5-(B:

$B!!>e5-$r0zMQ$7$?$H$-$K$O(B [6] $B$@$C$?$N$@$,!":#$G$O(B [5] $B$K$J$C$F$$$k!#Cf?H$OF1$8$h$&$@!#(B

$B!!$G!"!V1dD9!W$Ne5-$N(B

$BM-=~%5%]!<%H7@Ls$r$*;}$A$N$*5RMM$O!"(B2006 $BG/(B 6 $B7n(B 30 $BF|$^$GDL>o$4MxMQ$$$?$@$/%5%]!<%HAk8}$K$F?75,%;%-%e%j%F%#%[%C%H%U%#%C%/%9$r%j%/%(%9%H$7$F$$$?$@$/$3$H$,2DG=$G$9!#$*5RMM$N4D6-$K$*$$$F=$@5%W%m%0%i%`$NDs6!$,I,?\$HH=CG$5$l$?>l9g$K%;%-%e%j%F%#%[%C%H%U%#%C%/%9$r$4Ds6!$$$?$7$^$9!#(B

$B$,4N$N$h$&$@!#$D$^$j(B

$B"#(B MDAC $B5!G=$N%P%C%U%!%*!<%P!<%i%s$K$h$j!"%3!<%I$,
(Microsoft, 2004.01.14)

$B!!(BMDAC 2.5$B!A(B2.8 $B$K7g4Y!#(BMDAC $B$rMxMQ$9$k%/%i%$%"%s%H$,H/@8$5$;$kFCDj$N%V%m!<%I%-%c%9%H%j%/%(%9%H$KBP$7$F!":Y9)$7$?%j%W%i%$$rJV$9$H(B buffer overflow $B$,H/@8!#(B $B$3$l$r0-MQ$9$k$3$H$GG$0U$N%3!<%I$r

$B!!6qBNE*$K$O$3$s$J46$8$N$h$&$@(B:

  1. $B%V%m!<%I%-%c%9%H%I%a%$%sFb$K%K%;(B SQL Server $B$r@_CV(B
  2. $BI8E*$,%M%C%H%o!<%/>e$N%3%s%T%e!<%?0lMw$rF@$h$&$H$7$F!"%j%/%(%9%H%Q%1%C%H$r%V%m!<%I%-%c%9%H(B
  3. $B%K%;(B SQL Server $B$,967b%j%W%i%$%Q%1%C%H$rJV$9"*967b=*N;(B

$B!!(BMDAC 2.5$B!A(B2.8 $BMQ$N=$@5%W%m%0%i%`$,MQ0U$5$l$F$$$k$N$GE,MQ$9$l$P$h$$!#(B $B;ve!"@$$NCf$N$[$H$s$IA4$F$N(B MDAC $B$K$3$N7g4Y$,B8:_$9$k$N$GCm0U$5$l$?$$!#(B

$B!!(BCVE: CAN-2003-0903$B!#(BKB: 832483$B!#(B

2004.01.26 $BDI5-(B:

$B!!(BWindows Update $B$K@\B3$9$k$H(B $B!V(BMicrosoft Data Access Components $BMQ%;%-%e%j%F%#LdBj$N=$@5%W%m%0%i%`(B (KB832483)$B!W(B $B$,2?EY$bI=<($5$l$k(B $B$H$$$&LdBj$,H/@8$9$k$3$H$,$"$k$=$&$@!#%$%s%9%H!<%k$5$l$F$$$k(B MDAC $B$N%P!<%8%g%s$,!"=$@5%W%m%0%i%`$,MQ0U$5$l$F$$$k(B MDAC $B$N%P!<%8%g%s$KE,9g$7$J$$>l9g$K$=$&$J$k$h$&$G!#(B835173 - INF: MDAC $B%;%-%e%j%F%#=$@5%b%8%e!<%k$NE,MQ$K4XO"$9$kJdB-;v9`(B (Microsoft) $B$K$h$j%$%s%9%H!<%k$5$l$F$$$k(B MDAC $B$N%P!<%8%g%s$r3NG'$7!"I,MW$G$"$l$P(B MDAC $B$r(B$B%"%C%W%0%l!<%I(B$B$7$F$+$i(B Windows Update $B$9$l$P$h$$LOMM!#(B $B=$@5%W%m%0%i%`$,MQ0U$5$l$F$$$k(B MDAC $B%P!<%8%g%s$O(B:

$B!!$U$D$&$N?M$O!"(BMDAC 2.7 SP1 Refresh $B$+(B MDAC 2.8 $B$,$h$m$7$$$G$7$g$&!#4XO"(B:

$B"#(B Exchange Server 2003 $B$N@H:3J$9$k(B (832759) (MS04-002)
(Microsoft, 2004.01.14)

$B!!(BExchange 2003 and Outlook Web Access Issue $B$NOC!#(BOutlook Web Access (OWA) $B$rZ$rMxMQ$7$F$$$k>l9g$K7g4Y!#(B HTTP $B@\B3$r:FMxMQ$9$kJ}K!$K7g4Y$,$"$j!"$"$k(B OWA $B%f!<%6$,JL$N(B OWA $B%f!<%6$N%a!<%k%\%C%/%9$K%"%/%;%9$G$-$F$7$^$&(B ($B$?$@$7!"%i%s%@%`$K(B)$B!#(B OWA for Microsoft Exchange Server 2003 $B$r

$B!!%U%m%s%H%(%s%I%5!<%P$KE,MQ$9$k$?$a$N=$@5%W%m%0%i%`$,MQ0U$5$l$F$$$k$N$GE,MQ$9$l$P$h$$!#$^$?!"(B$B2sHr:v(B$B$K5-:\$5$l$F$$$kJ}K!$G2sHr$G$-$k!#(B

$B!!(BCVE: CAN-2003-0904$B!#(B KB: 832759$B!#(B

$B"#(B CERT Advisory CA-2004-01 Multiple H.323 Message Vulnerabilities
(CERT/CC, 2004.01.14)

$B!!(BH.323 $B%W%m%H%3%k$rNISCC Vulnerability Advisory 006489 (uniras.gov.uk)$B!#(B $B8=:_L@$i$+$K$J$C$F$$$k7g4Y$"$j$b$N$H$7$F$O(B:

$B!!(BCVE: CAN-2003-0819$B!#(B CERT/CC Vulnerability Note: VU#749342

$B4XO"(B:

2004.01.26 $BDI5-(B:

$B!!(BH.323 Vulnerability (checkpoint.com)$B!#(BFireWall-1 $B$G(B H.323 $B$7$F$$$k>l9g$O!"(Bhotfix $B$rE,MQ$7$h$&!#(B

$B"#(B Helix Server / Gateway $B$N%5!<%S%91?MQK832(B (DoS) $B967b$K4X$9$k@H
(RealNetworks, 2004.01.12)

$B!!(BHelix Universal Server / Gateway 9$B!"(BHelix Mobile Server / Gateway 10 $B$K7g4Y!#(BRealNetworks Administration System plug-in $B$K7g4Y$,$"$j!"FCDj$N(B HTTP POST $B%a%C%;!<%8$K$h$k(B DoS $B967b$ru67$G$OLdBj$K$J$i$J$$$N$+$J!#(B

$B!!$3$N7g4Y$r=$@5$7$?(B plug-in $B$,MQ0U$5$l$F$$$k$N$GF~$l$+$($l$P$h$$!#(B

$B!!1Q8lHG(B: Potential Server/Proxy Denial-of-Service Vulnerability (real.com)

2004.03.02 $BDI5-(B:

$B!!(BHelix Server / Gateway $B$N@x:_E*$J@H (real.com)$B!#(B Helix Universal Server / Gateway 9 $B$N%"%C%W%G!<%HHG$,EP>l!#(B

$B"#(B $BDI5-(B

CVS security update

Debian GNU/Linux: [SECURITY] [DSA-422-1] multiple CVS improvements

$B"#(B 2004.01.13

$B"#(B $BDI5-(B

CVS security update

Red Hat Linux: [RHSA-2004:003-01] Updated CVS packages fix minor security issue

$B"#(B 2004.01.09

$B"#(B $BDI5-(B

$B%O%$%Q!<(B $B%9%l%C%G%#%s%0BP1~%^%7%s$K$F=$@5%W%m%0%i%`$r%"%s%$%s%9%H!<%k$9$k$HH/@8$9$kLdBj(B

$BCSED$5$s$+$i>pJs$r$$$?$@$-$^$7$?(B ($B$"$j$,$H$&$4$6$$$^$9(B)$B!#(B

Norton AntiVirus 2003 $B$G(B 2004 $BG/(B 1 $B7n(B 7 $BF|IU$N%&%$%k%9Dj5A%U%!%$%k$r99?78e!"%3%s%T%e!<%?$NF0:n$,IT0BDj$K$J$C$?(B

$B%k!<%H>ZL@=q$r99?7$9$k$HDI2C$5$l$k$b$N!"(B2004/01/08 $B$GM-8z4|4V$,@Z$l$k%k!<%H>ZL@=q$K4X$9$k5-=R$rDI5-!#(B

$B4XO"5-;v(B:

$B$b$7$+$7$F!"$3$l$C$FF|K\8lHG8GM-$N8=>]$@$C$?$j$7$^$9(B? $B!D!D$=$&$G$O$J$$$h$&$@(B:

$B$"$H!"%7%^%s%F%C%/$N?d>)BP1~:v$,!V(B[$BH/9T85>ZL@=q$NC$7$r3NG'$9$k(B] $B$N%A%'%C%/$r30$9!W$KJQ99$5$l$F$$$^$9(B:

  • 2004 $BG/(B 1 $B7n(B 7 $BF|0J9_!"%3%s%T%e!<%?$NF0:n$,0[>o$KCY$/$J$j!"(BMicrosoft Word $B$d(B Excel $B$,5/F0$G$-$J$/$J$C$?(B ($B%7%^%s%F%C%/(B)

    $B$3$N8=>]$O!"(B2004 $BG/(B 1 $B7n(B 7 $BF|$+$i(B 1 $B7n(B 8 $BF|$K$+$1$F!"%Y%j%5%$%so$J?t$N!V>ZL@=q<:8z%j%9%H!W$N%@%&%s%m!<%I$rMW5a$9$k@\B3$,9T$o$l$?$3$H$K5/0x$7$F$$$^$9!#(B2004 $BG/(B 1 $B7n(B 7 $BF|0J9_!"%@%&%s%m!<%IMW5a$N@\B3$,5^7c$KA}2C$7$?$?$a!"%Y%j%5%$%s7$/$3$H$K$J$j$^$7$?!#(B

    $B%W%m%0%i%`$N%;%-%e%j%F%#0];}$N$?$a!"%7%^%s%F%C%/@=IJ$ODj4|E*$K%7%9%F%`%3%s%]!<%M%s%H$N@09g@-$r3NG'$9$k:n6H$r9T$C$F$$$^$9$,!">e=R$NM}M3$K$h$j%Y%j%5%$%sZ$r9T$&$3$H$,$G$-$J$/$J$C$F$$$^$7$?!#$=$N$?$a!"%3%s%T%e!<%?$NF0:n$,0[>o$KCY$/$J$k$J$I$N8=>]$r0z$-5/$3$7$F$$$^$7$?!#(B

$B"#(B 834374 - Windows Update $B$G%(%i!<$,H/@8$7$?>l9g$N%(%i!
(Microsoft, 2003.01.09)

$B!!(BWindows Update $B;~$N%(%i!pJs$"$j$,$H$&$4$6$$$^$9!#(B $B0J2<$O8D?ME*$K6=L#?<$+$C$?E@(B:

$B!!Mh=5$N?eMKF|(B (2004.01.14) $B$O(B Windows Update $B$NF|$G$9!#Hw$($^$7$g$&!#(B

$B"#(B [SECURITY] INN: Buffer overflow in control message handling
(bugtraq, Thu, 08 Jan 2004 11:16:38 +0900)

$B!!%M%C%H%K%e!<%9%5!<%P(B INN 2.4.0 $B$K7g4Y!#%3%s%H%m!<%k%a%C%;!<%8$r=hM}$9$k%3!<%I$K(B buffer overflow $B7j$,$"$j!"(Bremote $B$+$i(B INN $BF0:n8"8B$GG$0U$N%3!<%I$r

$B"#(B 2004.01.08

$B"#(B Norton AntiVirus 2003 $B$G(B 2004 $BG/(B 1 $B7n(B 7 $BF|IU$N%&%$%k%9Dj5A%U%!%$%k$r99?78e!"%3%s%T%e!<%?$NF0:n$,IT0BDj$K$J$C$?(B
(Symantec, 2004/01/08)

$B!!I=Bj$N$H$*$j!#8=>]$H$7$F$O!"%"%$%3%s>e$G1&%/%j%C%/$7$?>l9g$N1&%/%j%C%/%a%K%e!<$NI=<($d!"(BMicrosoft Office $B$NF0:n$,CY$/$J$C$?$j$9$k$=$&$@!#(B $B860xITL@$J$l$I!"$$$/$D$+$NA`:n$G2~A1$5$l$k$3$H$,$"$k$=$&$G$9!#(B

$B!!$&!<$`!#$b$7$+$7$F!"(BCA$B>ZL@=q$r99?7$7$?(BJDK1.4.2_03$B%j%j!<%9(B $B$d(B [memo:6762] $BCf4V#C#A6I>ZL@=q$N4|8B@Z$l(B $B$,4XO"$@$C$?$j$9$k$s$@$m$&$+!#(B $B

$B!!$_$c!<$5$s!">.;3ED$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#!V@2$l;Q!W$K$b4|BT$7$F$*$j$^$9(B > $B$_$c!<$5$s!#(B

2004.01.08 $BDI5-(B:

$B!!(Bi_to_shi $B$5$s$+$i>pJs$r$$$?$@$-$^$7$?(B ($B$"$j$,$H$&$4$6$$$^$9(B):

$B$3$N7o$G$9$,!"$*$=$i$/%Y%j%5%$%s$NCf4V(BCA$B6I>ZL@=q$N4|8B@Z$l$,860x$G$9!#(B
http://www.verisign.co.jp/server/cus/rootcert/gsid_intermediate.html

$B%W%m%0%i%`$NCf$K%Y%j%5%$%s$N%G%8%?%k=pL>$r;HMQ$7$F$$$k$b$N$,4^$^$l$F$$$k$N$@$H;W$$$^$9!#(B
$BfIW$G$7$?(B)$B!"(B $B0c$$$rD4$Y$F$$$k$H!"$I$&$b%k!<%H>ZL@=q$N99?7$,4X78$7$F$$$k$h$&$G$7$?!#(B OS$B$,;}$C$F$$$k>ZL@=q$N4|8B$,@Z$l$F$7$^$$!"%G%8%?%k=pL><+BN$,%@%a$K$J$j!"(B $B%W%m%0%i%`$,%@%a%@%a$K!D(B $B1F6A$rZL@=q$N99?7$7:F5/F0$7$?$H$3$mD>$j$^$7$?!#(B
WindowsUpdate$B$N!V%$%s%9%H!<%k$9$k99?7$NA*Br!W$N(BOS$BL>$N$H$3$m$K%k!<%H>ZL@=q$N99?7$,$"$j$^$9!#(B $B!V=EMW$J99?7!W$KF~$C$F$$$J$$$N$G!"%k!<%H>ZL@=q$r99?7$7$F$$$J$$?M$OB?$$$N$G$O$J$$$G$7$g$&$+!#(B

$BZCf$@$H;W$$$^$9!#(B $B%@%a%b%H$G$b!";~4V$rJQ99$9$k$h$j$O$O$k$+$K%^%7$J
$B!V(BWindowsUpdate$B$G%k!<%H>ZL@=q$r99?7$7$F$/$@$5$$!W(B

$B$H0l9T:\$;$F$/$l$k$H$$$$$N$G$9$,!D(B $B%k!<%H>ZL@=q$r99?7$7$?$H$3$H$G!"B>$N%W%m%0%i%`$K1F6A$,=P$k$H$b;W$($J$$$G$9$7!#(B

$B!t$J$<%Y%j%5%$%s$r5?$C$?$N$+$H$$$&$H!"4|8B@Z$l$N1F6A$G8aA0Cf$:!<$C$HBP1~$K(B
$B!tDI$o$l$F$*$j$^$7$?!D(B

$B!!%k!<%H>ZL@=q$r99?7$7$F$b!"(BIE $B$KIUB0$9$k%Y%j%5%$%sCf4V(B CA $B6I>ZL@=q<+?H$O99?7$5$l$J$$$h$&$G$9!#$G$b$=$l$G$&$^$/$$$C$?Nc$,$"$k!"$H$$$&$3$H$O!"!D!D$d$C$Q$jFf!#(B

$B!!!D!D(B Windows 2000 SP4 + Norton AntiVirus 2003 $B$J4D6-$N(B $B%k!<%H>ZL@=q$r8+$F$$$?$N$G$9$,!"!V(BSymantec Root CA$B!W$H$$$&$b$N(B ($BM-8z4|8B(B 2011/05/01) $B$,F~$C$F$$$k$s$G$9$M!#(B

2004.01.09 $BDI5-(B:

$B!!%k!<%H>ZL@=q$r99?7$9$k$H!"(BVeriSign $B4X78$G$O0J2<$N$b$N$,DI2C$5$l$k$h$&$K8+$($^$9(B:

[$B%$%s%?!<%M%C%H%*%W%7%g%s(B - $B%3%s%F%s%D(B - $B>ZL@=q(B $B$N2hLL(B]

$B!!(B2004/01/08 $B$GM-8z4|4V$,@Z$l$F$$$k%k!<%H>ZL@=q$b$$$/$D$+$"$j$^$9$M(B:

[$B%$%s%?!<%M%C%H%*%W%7%g%s(B - $B%3%s%F%s%D(B - $B>ZL@=q(B $B$N2hLL(B]

$B!!4XO"5-;v(B:

$B!!$b$7$+$7$F!"$3$l$C$FF|K\8lHG8GM-$N8=>]$@$C$?$j$7$^$9(B? $B!D!D$=$&$G$O$J$$$h$&$@(B:

$B!!$"$H!"%7%^%s%F%C%/$N?d>)BP1~:v$,!V(B[$BH/9T85>ZL@=q$NC$7$r3NG'$9$k(B] $B$N%A%'%C%/$r30$9!W$KJQ99$5$l$F$$$^$9(B:

$B"#(B $BDI5-(B

Linux kernel do_mremap local privilege escalation vulnerability

Fedora fix $B$G$O(B RTC $BLdBj$N=$@5$O4^$^$l$F$$$J$+$C$?!#(B RTC $BLdBj$O$5$i$K?7$7$$%Q%C%1!<%8(B 2.4.22-1.2140.nptl $B$G=$@5$5$l$F$$$k!#(B

Linux Kernel do_mremap Improved Test$B!#(B Red Hat Linux 7.1$B!A(B8 $BMQ(B package $B$,$"$k$N$O!VFCJL$K!W$G$J$/!"(B2003.12.31 $B0JA0$KMQ0U$5$l$F$$$?$+$i$@$C$?(B: $BHD3@$5$s46

$B7g4Y$r;XE&$9$k$O$:$,8D?M>pJsN.=P!#%;%-%e%j%F%#@lLg2H$KA\::$N

$B!!4XO"5-;v(B:

$B"#(B 2004.01.07

$B"#(B $BDI5-(B

$B7g4Y$r;XE&$9$k$O$:$,8D?M>pJsN.=P!#%;%-%e%j%F%#@lLg2H$KA\::$N

Motoyuki's Diary 2004/1/6(Tue) $B$K4XO"$9$kOC!#(B

$B"#(B JPCERT/CC $B%$%s%?!<%M%C%HDjE@4QB,%7%9%F%`(B Welchia/Nachi $B%o!<%`$N46@w3hF0$,8:>/$7$F$$$k$3$H$r4QB,(B
(JPCERT/CC, 2004.01.07)

$B!!(BISDAS $B$r8+$k$H!"(BICMP ECHO $B$*$h$S(B 135/tcp $B$,BgI}$K8:>/$7$F$$$^$9!#(B $B0lJ}!"(B$BG/KvG/;O$K$*$1$k%o!<%`$N3hF0>u67$K$D$$$F(B(01/06) (@police) $B$G$O(B ICMP ECHO $B$O8:$C$F$$$k$,(B 135/tcp $B$OHyA}$@$H$7$F$$$^$9!#(B

$B!!$3$l$K$D$$$F!"$$$L$$$5$s$+$i0J2<$N;XE&$r$$$?$@$-$^$7$?(B ($B$"$j$,$H$&$4$6$$$^$9(B):

$B$4;XE&$N$H$*$j!"(B135/tcp$B$N8!CN7o?t$K$D$$$F!"(B @police$B$H(BJPCERT$B$N?t;z$N798~$,0lCW$7$F$$$J$$$h$&$G$9!#(B $B$3$NM}M3$K$D$$$F!">/$79M;!$7$F$_$^$7$?$N$G!"(B $B;29M$K$7$F$$$?$@$1$l$P9,$$$G$9!#(B

Nachi$B$N46@wF0:n$O!"(B($B$4B8CN$H$O;W$$$^$9$,(B) ICMP ECHO REQUEST$B$K1~Ez$9$k(BIP$B%"%I%l%9$KBP$7$F!"(B 135/tcp$B$G$N%"%/%;%9$K$$$/$H$N$3$H$G$9$N$G!"(B ICMP ECHO REQUEST$B$K1~Ez$9$k$+$I$&$+$G!"(B $B$=$N8e$N(B135/tcp$B$K%"%/%;%9$,$/$k$+$I$&$+$,(B $BJQ$o$C$F$/$k$N$G$O$J$$$G$7$g$&$+!#(B

@police$B$NDjE@4QB,$N%Z!<%8$r8+$F$_$k$H!"(B $B85!9(BICMP$B$N8!CN7o?t$KHf$7$F!"(B 135/tcp$B$N8!CN7o?t$,7e$,(B1$B$D0c$&$[$I>/$J$$$h$&$G$9!#(B $B5U$K(BJPCERT$B$NDjE@4QB,$N?t;z$r8+$k$H!"(B ICMP$B$KHf$7$F(B135/tcp$B$,/$J$$$G$9$,!"(B $B7e$,0c$&$H$$$&:9$G$O$J$$$h$&$G$9!#(B
$B$3$N>u67$+$i!"(B
@police$B$N4QB,5!4o$O!"(BICMP ECHO REQUEST$B$K(BECHO REPLY$B$rJV$5$J$$!"(B
JPCERT$B$N4QB,5!4o$O!"(BICMP ECHO REQUST$B$K(BECHO REPLY$B$rJV$9!"(B
$B$H@_Dj$5$l$F$$$k?dB,$7$F$$$^$9!#(B

$B$I$A$i$b4QB,5!4o$N@_Dj$N>\:Y$r8x3+$7$F$$$J$$$N$G!"(B $B@52r$+$I$&$+$O$o$+$j$^$;$s$,!"(B $B3d$H9gM}E*$J@bL@$K$J$C$F$$$k$+$J$H;W$$$^$9!#(B

$B!!

$B!!!D!D(BJPCERT/CC $B$N;32l$5$s$K3NG'>pJs$r$$$?$@$-$^$7$?(B ($B$"$j$,$H$&$4$6$$$^$9(B)$B!#(B $B>e5-$G@5$7$$$=$&$G$9(B ($B7Y;!D#$5$sN;2r:Q(B)$B!#(B

$B"#(B 2004.01.06

$B"#(B Linux kernel do_mremap local privilege escalation vulnerability
(Full-Disclosure, Mon, 05 Jan 2004 21:30:32 +0900)

$B!!(BLinux $B%+!<%M%k(B 2.2 / 2.4 / 2.6 $B7OA4$F$K7g4Y!#(Bmremap(2) $B$N6-3&%A%'%C%/$K7g4Y$,$"$j!"D9$5(B 0 $B$N0[>o$J2>A[5-21NN0h$r:n@.$9$k$3$H$,$G$-$F$7$^$&!#(B $B$3$l$rMxMQ$9$k$H!"(Blocal user $B$,(B root $B8"8B$rC%

$BEv=i(B Linux $B%+!<%M%k(B 2.2 $B$K$b$3$N7g4Y$,$"$k$H$5$l$F$$$?$,!"(B2.2 $B$K$O$3$N7g4Y$O$J$$$3$H$,L@$i$+$K$J$C$F$$$k!#;2>H(B: [Full-Disclosure] Linux mremap bug correction

$B!!(BLinux $B%+!<%M%k(B 2.4.24 / 2.6.1-rc2 $B$G=$@5$5$l$F$$$k!#$^$?3F%G%#%9%H%j%S%e!<%?$+$i=$@5%Q%C%1!<%8$,EP>l$7(B {$B$F$$$k(B|$B$7$D$D$"$k(B} $B$N$GF~$l$+$($l$P$h$$!#(B CAN-2003-0984 $B$N7g4Y$b$"$o$;$F=$@5$5$l$F$$$k$h$&$G$9$M!#(B

$B4XO">pJs(B:

fix / patch:

Changelog:

2004.01.07

Linux $B%+!<%M%k(B 2.2 $B$K$O$3$N7g4Y$O$J$$OC!#(B [SECURITY] [DSA 413-1] New Linux 2.4.18 packages fix locate root exploit $B!#(B

2004.01.08

Fedora $B$G$O(B RTC $BLdBj$N=$@5$O4^$^$l$F$$$J$+$C$?!#(B RTC $BLdBj$O(B 2.4.22-1.2140.nptl $B$G=$@5$5$l$F$$$k!#(B

Linux Kernel do_mremap Improved Test$B!#(B Red Hat Linux 7.1$B!A(B8 $BMQ(B package $B$,$"$k$N$O!VFCJL$K!W$G$J$/!"(B2003.12.31 $B0JA0$KMQ0U$5$l$F$$$?$+$i$@$C$?(B: $BHD3@$5$s46

2004.01.16

[ 2004,01,11 ] kernel $B$K%;%-%e%j%F%#%[!<%k(B

$B"#(B $BDI5-(B

CA$B>ZL@=q$r99?7$7$?(BJDK1.4.2_03$B%j%j!<%9(B

$B!!(BOracle $B@=IJ$K$bF1$8LdBj$,$"$C$?$h$&$G$9!#;07nEF$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B $B7g4Y$r;XE&$9$k$O$:$,8D?M>pJsN.=P!#%;%-%e%j%F%#@lLg2H$KA\::$N
(slashdot.jp, 2004.01.04)

$B!!(BACCS$B1?1D%[!<%`%Z!<%8$N%;%-%e%j%F%#LdBj$K$D$$$F!J(B2003/11/11$B!K(B $B$NOC$J$N$@$1$I!"$H$j$"$($:$NOC$H$7$F!"(B $B!V%M%C%H$N@Hb!W9qN)Bg8&5f0w$,8D?M>pJs$r8xI=(B (asahi.com) $B$H!"$?$H$($P(B $BD+F|?7J9%*%s%i%$%s5-;v%G!<%?%Y!<%9!VJ9B"!J$-$/$>$&!K(BDNA for Libraries$B!W(B $B$G8!:w$9$k$H=P$F$/$k(B

$B$H$rFI$_Hf$Y$k$H!"$+$J$j?4>Z$,0c$&$o$1$G!#(B $B!X8&5f0w$N%5%$%H?/F~(B $B7Y>b0oC&$72a7c2=(B $B!V$7Gw$m$&$HA{$.!W!Y$K$"$k2r@bItJ,(B

$B!{;v6H
$B!!!T2r@b!U?H6a$J%$%s%?!<%M%C%H%5%$%H$K$b8D?M>pJsN.=P$N4m81@-$,;D$kGX7J$K$O!"%5%$%H$N0BA4@-$rI>2A$9$k;EAH$_$,IT==J,$G$"$k$3$H$H!"BP:v$NI,MW@-$K$D$$$F0U<1$NDc$$%5%$%H1?1D/$J$/$J$$$3$H$,$"$k!#(B

$B!!:#2s!"8D?M>pJs$r0z$-=P$7$?8&5f0w$O!"MM!9$J%5%$%H$N!V7g4Y!W$rF?L>$G;XE&$7$?$,!"B?$/$OL5;k$5$l!"BP:v$,$H$i$l$F$b$=$N7P2a$,MxMQ
$B!!%5%$%H1?1D$G;XE&$5$l$F$bJVEz$dBP1~$r$7$E$i$$LL$,$"$k!#Aj
$B!!@lLg2H$+$i$O!"4k6H$dCDBN$N%5%$%H$N0BA4@-$rD4::!"8xI=$9$k;EAH$_$r5a$a$k@<$,=P$F$$$k!#7P:Q;:6H>J$N303TCDBN!&>pJs=hM}?66=;v6H6(2q$O!"30It$+$i4s$;$i$l$k7g4Y>pJs$r$I$N$h$&$K07$&$+$r8!F$$7$F$$$k!#(B

$B!!0lJ}!"F|K\$G$OBh;0
$B!!#0#2G/#57n!"%(%9%F%F%#%C%/%5%m%sBgpJs$,N.=P$7$?!#8x3+$N>pJs$HF1$8>l=j$K!"Hs8x3+$K$9$Y$->pJs$,J]B8$5$l$F$$$?=iJbE*$J7g4Y$@$C$?!#(B

$B!!$3$l0J9_!"F1$8e$NF?L>7G<(HD$GK=O*$5$l$?!#:#$G$O$3$N7g4Y$r;}$D%5%$%H$OBgI}$K8:$C$?$H$5$l$k!#(B

$B!!7P:Q;:6H>J$O%5%$%H$N0BA4@-$K$D$$$F@lLg2H$N8!::$rp$@!#(B

$B!!%M%C%HLdBj$K>\$7$$KRLnFsO:J[8n;N$O!V8D?M>pJsJ]8n$,

$B$,$6$C$/$jH4$1$F$$$k(B $B!V%M%C%H$N@Hb!W9qN)Bg8&5f0w$,8D?M>pJs$r8xI=(B (asahi.com) $B$O!V(Boffice $B%4%i%!!W$G=*$C$F$7$^$$!"%P%i%s%9$K7g$1$k5-;v$K$J$C$F$7$^$C$F$$$k$H;W$&$N$@$,!#(B

$B!!4XO"(B: Tea Room for Conference No.1642$B!#(B

2004.01.06 $BDI5-(B:

$B!!(B$BHo32$r3HBg!"?<9o2=$5$;$kJ}8~$K1?MQ$5$l$O$8$a$?!VIT@5%"%/%;%96X;_K!!W(B(2004.1.6) (netsecurity.ne.jp)$B!#(B

$BI.

2004.01.07 $BDI5-(B:

$B!!(Bfrom Motoyuki's Diary 2004/1/6(Tue) :

$BEv3:%+%s%U%!%l%s%9$K=P@J$7$?(B ($B$H;W$o$l$k(B) $B>.Eg$5$s$N(B $B%;%-%e%j%F%#%[!<%k(B memo$B$d(B office $B;a$N7G<(HD$K=PF~$j$7$F$$$k?M$NO@D4$rFI$s$GHs>o$K5$$K$J$C$?E@!#(B

* $B!V?7J9$N0U?^!W$J$k$b$N$NJ,@O$K6=L#$,$"$k$i$7$$!#(B
* $B!V(Boffice $B;a%4%i%!!W$G=*$o$k5-;v$G$O%P%i%s%9$K7g$1$k$i$7$$!#$J$ * $BB??t$,8+$F$$$k>l=j$GF~pJs$r8x3+$9$kI,MW$,$"$C$?$N$+$H$$$&OCBj$K$O$"$^$j?($l$?$/$J$$$h$&$K8+$($k!#(B

$B!!0J2

  • 2 $B$+7n$bA0$K$9$G$KCN$C$F$$$?$N$@$+$i!V$J$<:#:"$K$J$C$F(B?$B!W(B $B$H;W$&$7!"$=$N5?Ld$,!V2?$N0U?^$r$b$C$F(B?$B!W$KJQ2=$9$k$N$O(B 1 $BIC$G==J,!#>/$J$/$H$b;d$K$H$C$F$O$=$&$@$C$?!#(B

  • $BC1$K0l8D?M$r%P%C%7%s%0$9$l$P@$$NCf$N4m81$J(B CGI $B$,$J$/$J$k$o$1$G$O$J$$$7!"4m81$J(B CGI $B$r2TF/$5$;$F$$$k%5%$%H$N8D?M>pJs$,$-$A$s$HJ]8n$5$l$k$h$&$K$J$k$o$1$G$b$J$$!#(B

  • $B8@$o$9$b$,$J$N$3$H$r$o$6$o$65-=R$7$J$$$H!V$"$^$j?($l$?$/$J$$$h$&$K8+$($k!W$o$1$G$9$+!#$J$s$@$+$J$"!#(B

    office $B;a$N9T0Y$H$$$&4QE@$G$O%]%$%s%H$O(B 4 $B$D$"$k!#(B

    1. ACCS $B%5%$%H$N(B CGI $B$+$i8D?M>pJs$r0z$-=P$7$F$7$^$C$?E@!#(B
    2. ACCS $B%5%$%H$N(B CGI $B$+$i8D?M>pJs$r0z$-=P$9:]$NACCS $B%5%$%H$N(B CGI $B$+$i8D?M>pJs$r0z$-=P$9:]$NACCS $B%5%$%H$N(B CGI $B$+$i8D?M>pJs$r0z$-=P$9:]$NpJs$N0lIt$r!"%b%6%$%/$dKOEI$j$J$7$K$=$N$^$^<($7$F$7$^$C$?E@!#(B

    $BB?$/$N?M$,;XE&$7$F$$$k$h$&$K!">/$J$/$H$b(B 4. $B$OHr$1$k$Y$-9T0Y!#(B 3. $B$bM@$a$i$l$?$b$N$G$O$J$$!#(B 1. $B$K$D$$$F$O!V(BCGI $B$N%=!<%9$,FI$a$?CJ3,$GDLJs$9$k!W$,9M$($i$l$k$,!"$G$O$=$l$GAj

$B8=;~E@(B (2004/01/07 1:00 AM) $B$G(B office $B;a$N%5%$%H(B (www.office.ac) $B>e$K!V(BACCS $B$N%f!<%6MM(B ($BCfN,(B) $B$X$NpJs$,4^$^$l$k;qNA$rB??t$N%+%s%U%!%l%s%9;22C

$B!!!V(Boffice $B;a<+?H$,8D?M>pJs$,4^$^$l$k;qNA$rB??t$N%+%s%U%!%l%s%9;22ClFb$Ku67$K$"$C$?$N$J$i!"

$B!!!VH/I=;qNA(B (Microsoft PowerPoint $B$i$7$$(B) $B$r;22C

2004.01.08 $BDI5-(B:

$B!!4XO"5-;v(B:

2004.01.23 $BDI5-(B:

2004.01.30 $BDI5-(B:

$B!!%W%l%<%s;qNA$NN.=P$,H/@8$7$?LOMM(B:

2004.02.04 $BDI5-(B:

$B!!(B$BIT@5%"%/%;%9!'(B $B8D?M%G!<%?0z$-=P$9!!5~Bg$N8&5f0w$rBaJa(B ($BKhF|(B)$B!#$D$$$KMh$F$7$^$$$^$7$?$M!D!D!#(B

$B2O9gMF5?

$B%G!<%?A4It!"$H

$BIT@5%"%/%;%99T0Y6X;_K!0cH?$H0RNO6HL3K832$NMF5?$GBaJa$7$?!#(B
($BCfN,(B)
$BF17n#8F|$K=BC+6hFb$G3+$+$l$?%$%Y%s%H$G$3$N%G!<%?$r8x3+$7$?$&$(!">pJs$,O3$l$?$3$H$r%a!<%k$G6(2q$KCN$i$;!"%5%$%H$NJD:?$KDI$$9~$s$@5?$$!#(B

$B$($'$C(B?! $B!V%a!<%k$G6(2q$KCN$i$;!W$k$H!V0RNO6HL3K832!W$N!V5?$$!W$GBaJa$5$l$k$N$J$i!"$b$O$dC/$b2?$bCN$i$;$?$j$O$7$J$/$J$k$G$7$g$&$M!#$=$7$F7g4Y$@$1$,;D$j(B black hat $B$NE72

$B2O9gMF5?

CGI $B$=$l<+?H$r=q$-49$($?$o$1$G$O$J$$$N$@$,!D!D!#(B

$B4XO"(B:

2004.02.05 $BDI5-(B:

2004.02.06 $BDI5-(B:

2004.02.09 $BDI5-(B:

$B"#(B $B%O%$%Q!<(B $B%9%l%C%G%#%s%0BP1~%^%7%s$K$F=$@5%W%m%0%i%`$r%"%s%$%s%9%H!<%k$9$k$HH/@8$9$kLdBj(B
(Microsoft, 2004.01.06)

ntoskrnl.exe $B$r4^$`=$@5%W%m%0%i%`$r%$%s%9%H!<%k8e$K!"%O%$%Q!<%9%l%C%G%#%s%0$N@_Dj$rJQ99$7$?>l9g$K$O!"(Bntoskrnl.exe $B$r4^$`=$@5%W%m%0%i%`$N%"%s%$%s%9%H!<%k$r9T$J$o$J$$$G2<$5$$!#(B

$B!!!D!D$J$s$@$+$J$"!D!D$J$s$A$e$&(B OS $B$@!D!D!#(B

2004.01.10 $BDI5-(B:

$B!!CSED$5$s$+$i>pJs$r$$$?$@$-$^$7$?(B ($B$"$j$,$H$&$4$6$$$^$9(B)$B!#(B

$B!V%O%$%Q!<(B $B%9%l%C%G%#%s%0BP1~%^%7%s$K$F=$@5%W%m%0%i%`$r%"%s%$%s%9%H!<%k$9$k$HH/@8$9$kLdBj(B $B!W$K$D$$$F$O$"$kDxEY!"M}M3$O?dB,$G$-$^$9!#%O%$%Q!<%9%l%C%G%#%s%0$Ne!"%O%$%Q!<%9%l%C%G%#%s%0$rM-8z$K$7$?CJ3,$G!"%^%k%A%W%m%;%C%5%+!<%M%k$,%$%s%9%H!<%k$5$l$F$$$k$O$:$G$9!#(B

$B$G!"$=$l$rG0F,$K$*$$$F!"8=>]$NJ8>O$r8+$k$H!"(B

$B%O%$%Q!<%9%l%C%G%#%s%0$r(B OFF $B$K@_Dj$7$?>uBV$G!"(Bntoskrnl.exe $B$r4^$`=$@5%W%m%0%i%`$r%7%9%F%`$K%$%s%9%H!<%k8e!"(B $B%O%$%Q!<%9%l%C%G%#%s%0$N@_Dj$r(B ON $B$KJQ99$7!"(Bntoskrnl.exe $B$r4^$`=$@5%W%m%0%i%`$r%"%s%$%s%9%H!<%k$7$?>l9g!"%*%Z%l!<%F%#%s%0%7%9%F%`$,5/F0$G$-$J$/$J$k8=>]$,H/@8$9$k$3$H$,$"$j$^$9!#(B

$B=$@5%W%m%0%i%`$NA08e$G!"%O%$%Q!<%9%l%C%G%#%s%0$N(BON/OFF$B$r@Z$jBX$($F$$$k$N$G!"%+!<%M%k$O%^%k%A%W%m%;%C%5!&%7%s%0%k%W%m%;%C%5$G9T$-Mh$7$F$$$k$3$H$,$o$+$j$^$9!#$3$$$D$O!"K\Mh!"%+!<%M%k<+BN$r:F9=C[$7$J$1$l$P!"$$$1$J$$$/$i$$Bg$-$J%$%s%Q%/%H$rM?$($k$O$:$G$9!#(B

$B$*$=$i$/!"$=$NA08e$G!"%$%s%9%H!<%k$5$l$k%U%!%$%k$KIT@09g$,H/@8$9$k$N$G$7$g$&!#B?J,!"%^%k%A%W%m%;%C%59=@.$K$7$J$1$l$P$J$i$J$$$H$3$m$K!"%7%s%0%k$N$r;}$A9~$s$@$j$9$k$N$G$7$g$&!#(B

$B"#(B 2004.01.05

$B"#(B $B%D!<%k$b$N(B
(various)

$B"#(B IE $B$b$N(B
(various)

$B!!

$B!!4XO"5-;v(B: IE$B$K(B2$B ($BF|7P(B IT Pro)$B!#F|7P(B IT Pro $B>!B<;a$K$h$k2r@b5-;v!#(B

$B"#(B $B$$$m$$$m(B
(various)

$B"#(B $BDI5-(B

IE$B$K(BURL$B$r56Au$G$-$k%Q%C%AL$8x3+$N@H

$B!!(BNAI VirusScan $B$N(B $B%&%#%k%9Dj5A%U%!%$%k(B 4311 $B0J9_$G!"$3$N7g4Y$KBP1~$5$l$F$$$k!#(B

[$B%;%-%e%j%F%#%[!<%k(B memo]
$B;d$K$D$$$F(B