$B%;%-%e%j%F%#%[!<%k(B memo - 2007.04

Last modified: Tue Jul 29 18:40:50 2008 +0900 (JST)

$B!!$3$N%Z!<%8$N>pJs$rMxMQ$5$l$kA0$K!"(B$BCm0U=q$-(B$B$r$*FI$_$/$@$5$$!#(B

$B"#(B 2007.04.30

$B"#(B 2007.04.29

$B"#(B $BDI5-(B

$B$$$m$$$m(B (2007.02.21)

$B!!(B[SA24193] Trend Micro OfficeScan Client Unspecified ActiveX Buffer Overflow $B$N7o!#(B

$B!!%&%$%k%9%P%9%?!<(B $B%3!<%]%l!<%H%(%G%#%7%g%s(B 5.58 / 6.5 / 7.0 / 7.3$B!"(B Trend Micro $B%&%$%k%9%P%9%?!<(B $B%S%8%M%9%;%-%e%j%F%#(B 3.0$B!"(B Trend Micro Client/Server Security 2.0 $B$,3:Ev!#(B $B%&%$%k%9%P%9%?!<(B $B%3!<%]%l!<%H%(%G%#%7%g%sMQ$N(B patch $B$O8x3+$5$l$?$,!";D$j$O$^$@$_$?$$!#(B

$B"#(B 2007.04.27

$B"#(B 2007.04.26

$B!!$H$$$&$o$1$G!"$=$m$=$m$J$O$:$J$N$G$9$,!"$$$D$J$s$G$7$g$&$M$(!#(B

  • $B!U(B On non-English versions of Windows Server 2003 and Windows XP, some text in the print dialog box unexpectedly appears in English after you install the .NET Framework 3.0 (Microsoft) $B$N(B patch $B$,<+F099?7$GN.$l$F$-$F$$$k$s$G$9$M!#(B

  • $B!U(B $B$d$C$H#57n>e=\!!%9%.!&%R%N%-2VJ4Ht;6=*B)M=A[!!4D6->J(B (asahi.com, 4/26)$B!#%/%9%j$,$J$/$J$C$?$N$G0{$^$:$K2a$4$7$F$_$k%F%9%HCf$J$N$@$1$I!"$^$@$A$g$C$H$D$i$$46$8!#(B

  • $B!U(B $BO;K\LZ%R%k%:!'%(%l%Y!<%?!<#1#1BfCf#1#0Bf$G%m!<%WB;=}(B ($BKhF|(B, 4/27)$B!#%a!<%+$OF|K\%*!<%A%9!&%(%l%Y!<%?!#(B 4/4 $B$K%(%l%Y!<%?!<5!3#<<$+$i2P:R$,$"$j!"D4::$N2aDx$G%m!<%W$NB;=}(B ($BGKCG(B) $B$,H=L@!#(B

    $B!!$3$N#1#1Bf$K$D$$$F!"F1o$J$7$HJs9p$7$F$$$?!#$7$+$79q8r>J$K$h$k$H!"B?$/$N%m!<%W$NI=LL$K$O$5$S$,IUCe$7!"E@8!$G$-$J$$>uBV$@$C$?!#(B
    $B!!F1J$,!V%m!<%W$ODL>o$5$S$k$3$H$O$[$H$s$I$J$/!"K\Mh$OK!Dj8!::$G$5$S$r

    $B!!$J$s$8$c$=$j$c$"!D!D!#4XO"(B:

    $B!!%*!<%A%9$N%(%l%Y!<%?!"H>7B(B 50m $B0JFb$G$bKhF|;H$C$F$k$+$i$J$!!D!D!#(B

  • $B!U(B JVN $B$N%j%K%e!<%"%k$H@HpJs%G!<%?%Y!<%9$N8x3+$K$D$$$F(B (JPCERT/CC, 4/25)

  • $B!U(B $B%?%_%U%k!'I{:nMQJs9p#1#2#6#8?M!!0[>o9TF0$O#1#8#6?M$K(B ($BKhF|(B, 4/26)$B!"(B $B%j%s;@%*%;%k%?%_%S%k!J%?%_%U%k!K$K78$kI{:nMQJs9pEy$K$D$$$F(B ($B8|@8O+F/>J(B, 4/25)

  • $B!U(B $BF`NIDR$1!&%N%s%"%k%3!<%k%S!<%k!"1?E>$K1F6A$J$7(B (asahi.com, 4/26)

  • $B!U(B $B%\%C%H%M%C%H$,%F!<%^$N%+%s%U%!%l%s%9!V(BHotBots '07$B!W$h$j(B ($BF|7P(B IT Pro, 4/26)

  • $B!U(B $B%^%$%/%m%=%U%H%;%-%e%j%F%#%$%s%F%j%8%'%s%9%l%]!<%H(B (2006 $BG/(B 7 $B7n(B $B!A(B 12 $B7n(B (Microsoft)

  • $B!U(B This Website Wants to Run the Following Add-on (IEblog, 4/25)

    • Windows Media Player: Do not use MediaPlayer.MediaPlayer.1, or other older techniques. Use wmplayer.ocx.
    • QuickTime: Do not use QuickTimeCheckObject.QuickTimeCheck.1. Instead, use QuickTime.QuickTime.
    • MSXML: Do not use MSXML 5.0.  See this sample code to detect the right version of MSXML in IE7.

  • $B!U(B $BK!L3Bg?C!"8=:_$b(B14$B:PL$K~$G>/G/1!$KF~$C$F$$$k$H8mEzJ[(B ($BJ]:dE8?M$N$I$3$I$3F|5-(B, 4/25)

    $B99@8J]8nK!$H$O(B ($BCfN,(B) 50$B?tG/$V$j$NBgI}$JK!2~@5$J$N$G?5=E$J5DO@$OI,MW$@$,!"M?LnE^$,7cFM$9$k$h$&$JK!0F$G$O$J$$!#$H$3$m$,!"LnE^B&$N935D!&H?BP$K$OJ9$/<*;}$?$:$K!"M?E^$O6bMKF|$K;29M?M $B$I$&$b!V6&KE:a!W@.N)$X$N4D6-$E$/$j$G$O$J$$$+$H$$$&5?$$$,$"$k!#(B

  • $B!U(B $B!Z(BRSA Conference$B![!V967b ($BF|7P(B IT Pro, 4/25)

  • $B!U(B $B!Z(BRSA Conference$B![!V?7$7$$%;%-%e%j%F%#@lLg%5%$%H$G8D?M!&4k6H$H$NO"7H$r6/2=!W!=!=%^%$%/%m%=%U%H$N%;%-%e%j%F%#C4Ev%^%M!<%8%c(B ($BF|7P(B IT Pro, 4/25)$B!#(B Microsoft Malware Protection Center Preview $B$N$3$H$i$7$$!#(B

  • $B!U(B $BC/$N$?$a$N%G%8%?%kJ|Aw$+!)!JA0JT!K(B $B%3%T!<%o%s%95DO@6uE>$,1G$9JQ$o$l$J$$6H3&$NBN ($BF|7P(B BP, 4/23)$B!"(B$B!J8eJT!K(B $B!VCx:n8"J]8n!W$O4{F@8"1W$r ($BF|7P(B BP, 4/23)$B!#9B8}$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    • $B"#(B $BDI5-(B

    $B!V(BMac$B%O%C%-%s%0!&%3%s%F%9%H!W$GM%>!^6b(B1$BK|%I%k!=!=$"$i$?$a$FZ$5$l$?(BMac$B4D6-$N4m81$J@H

    $B!!(BWindows $B>e$N(B IE $B$+$i$b96N,$G$-$kLOMM(B: $B!V(BQuickTime$B!W$N@H ($BF|7P(B IT Pro, 2007.04.26)

    $B"#(B $B$$$m$$$m(B (2007.04.26)
    (various)

    $B"#(B Photoshop CS3/CS2$B$K%Q%C%AL$Ds6!$N@H
    (Internet Watch, 2007.04.25)

    $B!!(BPhotoshop CS2 / CS3 $B$K7g4Y$,$"$j!"96N,(B .bmp / .dib / .rle $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$r

    $B!!(Bpatch $B$O$^$@$J$$!#(Bilfa $B$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    2007.05.01 $BDI5-(B:

    $B!!(BPNG $B%U%!%$%k$b$d$P$$LOMM!#(B

    $B"#(B 2007.04.25

    $B"#(B JVN#36628264: Lunascape $B$N(B RSS$B%j!<%@5!G=$K$*$$$FG$0U$N%9%/%j%W%H$,
    (JVN, 2007.04.25)

    $B!!(BLunascape Ver.2 $B!A(B 4.1.3 $B$K7g4Y!#(B RSS $B%j!<%@5!G=$K7g4Y$,$"$j!"G$0U$N%9%/%j%W%H$,CVE-2007-2335

    $B!!(BLunascape 4.2.0 $B$G=$@5$5$l$F$$$k!#(B

    $B"#(B $BDI5-(B

    $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H

    $B!!(B936263 - How to disable remote administration of the DNS Server service in Windows Server 2003 and in Windows 2000 Server (Microsoft)

    Changelog for Opera 9.20 for Windows

    $B!!(BAPSA07-03: Linux$BHG$*$h$S(BSolaris$BHG(BOpera$B%V%i%&%6$G(BAdobe Flash Player$B$r;HMQ$9$k:]$N@H (Adobe)

    $B!V(BMac$B%O%C%-%s%0!&%3%s%F%9%H!W$GM%>!^6b(B1$BK|%I%k!=!=$"$i$?$a$FZ$5$l$?(BMac$B4D6-$N4m81$J@H

    $B!!$3$l!"pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B!!(BSafari / Firefox $B$G(B Java $B$rL58z$K$9$l$P2sHr$G$-$k$=$&$@!#(B

    $B"#(B 2007.04.24

    $B"#(B $BDI5-(B

    $B$$$m$$$m(B (2007.04.11)

    $B!!(BWinamp $BOC$O(B Winamp 5.34 $B$G=$@5$5$l$?$h$&$G$9!#%U%m!<%H$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B"#(B $B56>pJsG[?.$G8rDL:.Mp$b!)!!%+!<%J%S$N%O%C%-%s%0
    (ITmedia, 2007.04.24)

    $B!!(BCanSecWest Vancouver 2007 $B$N!V(BUnusual Car Navigation Tricks - Andrea Barisani & Daniele Bianco, Inverse Path$B!W(B $B$N$3$H$_$?$$!#(B

    $B"#(B ZDI-07-021: GraceNote CDDBControl ActiveX Buffer Overflow Vulnerability
    (ZDI, 2007.04.20)

    $B!!(B$B%0%l!<%9%N!<%H(B$B$N(B CDDBControl ActiveX $B%3%s%H!<%k$K(B buffer overflow $B$9$k7g4Y!#(B $B%;%-%e%j%F%#$K4X$9$k=EMW$J$*CN$i$;(B ($B%0%l!<%9%N!<%H(B, 2006.06.27) $B$N7o$H$OJL$NOC$NLOMM!#(BCVE-2007-0443

    $B!!(B$B%;%-%e%j%F%#$K4X$9$k$*CN$i$;(B $B!JJ?@.(B19$BG/(B4$B7n(B18$BF|!K(B ($B%0%l!<%9%N!<%H(B) $B$K$h$k$H!"%0%l!<%9%N!<%H<+?H$+$i(B$B%"%C%W%G!<%H%W%m%0%i%`$,8x3+$5$l$F$*$j(B$B!"(BOEM $B%Y%s%@!<3F$B%;%-%e%j%F%#$K4X$9$k=EMW$J$*CN$i$;(B ($B%0%l!<%9%N!<%H(B, 2006.06.27) $B$N;~$O!">/$J$/$H$b(B SONY$B!"(Bau$B!"%8%c%9%H%7%9%F%`$+$i=$@5HG$,8x3+$5$l$F$$$?!#(B

    $BJ@e$5$;$k$?$a!":o=|$9$k$3$H$H$$$?$7$^$7$?!#(B ($BCfN,(B) $B$3$N%W%m%0%i%`$O!"%0%l!<%9%N!<%H$N2;3ZG'<15!G=$rM-$9$k@=IJ$r%A%'%C%/$7!"$3$N%9%/%j%W%H5!G=%5%]!<%H$K4X78$9$k%l%8%9%H%j$N@_Dj$K

    $B$H$"$k$N$G!"%0%l!<%9%N!<%H$N%"%C%W%G!<%H%W%m%0%i%`$O(B kill bit $B$r@_Dj$9$k$N$+$J!#(B

    $B"#(B $B$$$m$$$m(B (2007.04.24)
    (various)

    2007.05.24 $BDI5-(B:

    $B!!%^%+%U%#!<$M$?$N(B VSE 8.0i $B$NOC!"$J$<$+:#$4$mF|K\8lHG$,=P$F$$$^$9!#F?L>4uK>$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B"#(B 2007.04.23

    $B"#(B $B!V(BMac$B%O%C%-%s%0!&%3%s%F%9%H!W$GM%>!^6b(B1$BK|%I%k!=!=$"$i$?$a$FZ$5$l$?(BMac$B4D6-$N4m81$J@H
    (Open Tech Press, 2007.04.23)

    $B!!(BSafari $B$N7j$i$7$$$N$@$1$I!">\:YITL@!#(B

    2007.04.25 $BDI5-(B:

    $B!!$3$l!"pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B!!(BJava $B$rL58z$K$9$l$P2sHr$G$-$k$=$&$@!#(B

    2007.04.26 $BDI5-(B:

    $B!!(BWindows $B>e$N(B IE $B$+$i$b96N,$G$-$kLOMM(B: $B!V(BQuickTime$B!W$N@H ($BF|7P(B IT Pro, 2007.04.26)

    2007.05.02 $BDI5-(B:

    $B!!(BQuickTime 7.1.6 $B=P$^$7$?!#$3$N7g4Y$,=$@5$5$l$F$$$^$9!#(B

    $B!!:G6a8x3+$5$l$?0J2<$N7g4Y$O$^$@D>$C$F$$$J$$$h$&$J$N$GCm0U(B:

    $B"#(B $B%&%$%k%9%P%9%?!<$+$i$N7Y9p$K$D$$$F(B
    ($B%"%a!<%P%V%m%0(B $B%9%?%C%U%V%m%0(B, 2007.04.18)

    $B!!OC$rAm9g$9$k$H!"$I$&$b!"$3$&$$$&$3$H$N$h$&$@!#(B

    1. $B%&%$%k%9%P%9%?!<$N%U%#%C%7%s%07Y9p5!G=$K!X!VG$E7F2#D#S%W%l%<%s%H!W$N9-9p$N6H$B%"%a!<%P%V%m%0$N9-9p%9%Z!<%9$K(B 11-ne.com $B$J9-9p$,A^F~$5$l$?(B ($B9-9p<+BN$O(B MicroAd $B$B%&%$%k%9%P%9%?!$B%"%a!<%P%V%m%0$KJ86g;&E~(B
    2. $B%"%a!<%P%V%m%0%9%?%C%U%V%m%0$K>u67$H!V$*;H$$$N%&%$%k%9%P%9%?!<$N(B $B%;%-%e%j%F%#!<%l%Y%k$rCf0J2<$K@_Dj$9$k$3$H$K$h$j!"%V%m%0$r1\Mw$$$?$@$1$k$3$H$,8=:_3NG'$G$-$F$*$j$^$9!W$N9pCN(B
    3. $B%;%-%e%j%F%#!<%l%Y%k$r2<$2$5$;$k$H$O2?;v$+!"$H$NH?1~$,H/@8(B

    $B!!(B11-ne.com $B$K$D$$$F$0$0$C$F$_$k$H$3$s$J(B blog $B$,(B:

    $B!!$J$N$G!"%&%$%k%9%P%9%?!<$N%U%#%C%7%s%07Y9p<+BN$K$O:,5r$,$"$kLOMM!#(B $B$h$C$F!"%"%a!<%P%V%m%0$O$o$+$C$?>e$G(B 11-ne.com $B$rMJ8n$7$F$$$k$N$G$"$m$&!"$H;d$OM}2r$7$?!#(B

    $B!!(B11-ne.com $B$K$D$$$F$0$0$C$F$_$k$H!"

    $B!!$5$i$K$0$0$C$F$_$k$H!"LdBj$H$J$C$F$$$k$N$O(B 11-ne.com $B$@$1$G$O$J$$$_$?$$(B:

    $B!!4XO"(B:

    $B!!$^$C$A$c$@$$$U$/$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B!!$^$"!"(Bweb $B9-9p$H$$$&E[$K$O$3$&$$$&$N$b:.$6$C$F$^$9$h!"%5%$%HA4BN$N?.MQEY$H$O0l@ZL54X78$G$9!"$H$$$&%j%F%i%7!<$,I,MW$J$N$G$7$g$&!#(B

    $B"#(B 2007.04.20

    $B"#(B $BDI5-(B

    JVN#19445002: APOP $B$K$*$1$k%Q%9%o!<%IO3$($$$N@H

    $B!!(BSylpheed Diary(2007-04-19) $B$h$j(B:

    $B$H$j$"$($:%?%$%`%9%?%s%WJ8;zNs$,(BASCII$B$+$I$&$+$r%A%'%C%/$9$l$PKI$2$k$h$&$J$N$G!"(B 2.4.0$B$G$OBP:v:Q$_$K$J$j$^$9(B($B%?%$%_%s%0$,NI$+$C$?(B)$B!#(Bsvn$B$G$OBP:v40N;!#(B

    $B!!$^$!!"(BAPOP $B%9%F$NJ}$,$$$$$H$O;W$$$^$9$1$I$M!#(B

    $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H

    $B!!(BDNS Server$B$N@H (ITmedia, 2007.04.19)$B!#

    $B!!(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H (Microsoft) $B$K!"(Bport 139 $B$K4X$9$k5-=R$,DI2C$5$l$^$7$?!#(B

    GDI $B$N@H

    $B!!(BKB $B8+$l$k$h$&$K$J$j$^$7$?(B: Stop 0x0000007F error when you try to print from computers that are running Windows XP or Windows 2000 and that have GDI security update 925902 installed (Microsoft)$B!#(BMS07-017 patch $B$r%$%s%9%H!<%k$9$k$H(B Stop 0x0000007F $B%(%i!<$,H/@8$9$k>l9g$,$"$k!#$=$N860x$O(B:

    This problem occurs when a printer driver makes a call that has invalid parameters to the Win32K.sys component. Microsoft has confirmed that this problem affects the following printer drivers:
    * Ricoh LAN Fax Driver
    * Gestetner P7026n PCL
    * Ricoh Laser AP2600N PCL
    * HP LaserJet 9050
    * HP LaserJet 4200
    * HP 4050 PCL6
    This problem has also been reported in relation to printing from SQL Reporting Services to a Printer Command Language (PCL) printer.

    $B$H$$$&$o$1$G!"J#?t$N%W%j%s%?%I%i%$%P$,1F6A$9$kLOMM!#(B

    $B!!(BMicrosoft $B<+?H$b(B patch $B$rMQ0U(B$B$7$F$$$k$,!"%W%j%s%?%I%i%$%PB&$GBP1~$G$-$k$N$J$i$=$&$7$F$[$7$$$H$3$m$J$N$@$m$&!#(B

    $B!!4XO"(B:

    $B"#(B About Security Update 2007-004
    (Apple, 2007.04.20)

    $B!!(BMac OS X 10.3.9 / 10.4.9 $BMQ$N%;%-%e%j%F%#=$@5!#(BMOAB $B$M$?$N@Q$_;D$7$b4^$^$l$F$^$9$M!#(B

    $B!!(T_T)$B!#;EJ}$J$$$N$G%O!<%I%j%;%C%H$7$?!#(B $B$J$s$J$s$@!D!D!#(B

    2007.05.02 $BDI5-(B:

    $B!!(BSecurity Update 2007-004 v1.1 $B$,=P$F$$$^$9!#(B

    $B!!(BAirPort $B4X78$G%(%s%P%0$7$F$$$?$b$N!"(Bftp $B%5!<%P4X78$G?7$?$J7g4Y(B CVE-2007-0745 $B$r$D$/$C$F$7$^$C$F$$$?$b$N$r=$@5$7$?$=$&$G$9!#(B

    $B"#(B Oracle Critical Patch Update - April 2007
    (Oracle, 2007.04.17)

    $B!!5(4)(B Oracle patch $B=P$F$^$9!#(B $B4XO"(B: Analysis of the Oracle April 2007 Critical Patch Update (NGSSoftware)

    $B"#(B 2007.04.19

    $B"#(B Winny$B%M%C%H%o!<%/$O$d$C$Q$j??$C9u!$(BNTT$B%3%_%e%K%1!<%7%g%s%:$N>.;3;a$KJ9$/(B
    ($BF|7P(B IT Pro, 2007.04.19)

    $B!!(BUnicode $B$N(B RLO (Right to Left Override) $B$rMxMQ$7$?3HD%;R56Au$,(B Winny $B%M%C%H%o!<%/$G9-$/MxMQ$5$l$F$$$k!"$H$$$&Js9p$,4^$^$l$F$$$k!#(B $B!V(B$B$=$l(B Unicode $B$G(B$B!W(B $B$NCf$N?M$NH?1~$O(B$B$3$A$i(B$B!#4XO"(B:

    $B"#(B JVN#19445002: APOP $B$K$*$1$k%Q%9%o!<%IO3$($$$N@H
    (JVN, 2007.04.19)

    $B!!(BAPOP $B%W%m%H%3%k$K7g4Y!#(B APOP $B$N%A%c%l%s%8(B / $B%l%9%]%s%9$rB??t<}=8$7$?>e$G(B MD5 $B$N%O%C%7%e>WFM$rMxMQ$9$k$H!"%Q%9%o!<%I$r2rFI$G$-$F$7$^$&!#(B CVE-2007-1558

    $B!!%W%m%H%3%k$NLdBj$N$?$a!"=$@5$9$k$K$O(B APOP $B%W%m%H%3%k<+BN$r:F@_7W$7!"$=$N>e$G(B APOP $BBP1~%=%U%H%&%'%"$r=$@5$9$kI,MW$,$"$k!#7g4Y$r2sHr$9$k$K$O!"$?$H$($P(B SSL / TLS $B$rMxMQ$7$?(B POP3 $B@\B3$K$h$kDL?.O)$N0E9f2=$H%[%9%HG'>Z$r9T$$!"(B $B967bZ$K$D$$$F$b5-=R$rDI2C$7$?!#F?L>4uK>$5$s46

    • APOP ($BEN@q$J8&5fAPOP Broken? (Okumura's Blog, 2007.04.19)
      $BD94|E*$K$O(BAPOP$B$O $B$H$$$&$+!"(BMD5 $B$d(B SHA1 $B$r;H$C$F$$$k$b$N$O

      $B!!:4F#$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

      2007.04.20 $BDI5-(B:

      $B!!(BSylpheed Diary(2007-04-19) $B$h$j(B:

      $B$H$j$"$($:%?%$%`%9%?%s%WJ8;zNs$,(BASCII$B$+$I$&$+$r%A%'%C%/$9$l$PKI$2$k$h$&$J$N$G!"(B 2.4.0$B$G$OBP:v:Q$_$K$J$j$^$9(B($B%?%$%_%s%0$,NI$+$C$?(B)$B!#(Bsvn$B$G$OBP:v40N;!#(B

      $B!!$^$!!"(BAPOP $B%9%F$NJ}$,$$$$$H$O;W$$$^$9$1$I$M!#(B

      2008.07.29 $BDI5-(B:

      $B!!(B$B!V(BMD5 $B$N0BA4@-$N8B3&$K4X$9$kD4::8&5f!W$K4X$9$kJs9p=q(B (IPA, 2008.07.25)

      $BD4::$N7k2L!"A[Dj$7$?A4$F$N%Q%9%o!<%I$K$D$$$F!"DL>o;HMQ$5$l$F$$$k(BPC$B$rMQ$$$F!"Hf3SE*C;;~4V$G2rFI$G$-$k$3$H$rZ$7$?!JA4$F$N@_Dj$7$?>r7o2<$GA[Dj;~4VFb$K2rFI!'8=

    $B"#(B $BDI5-(B

    GDI $B$N@H

    $B!!(BCSS $B$rMxMQ$7$??7New variant of ANI (MS07-017) exploit (SANS ISC, 2007.04.17) $B$h$j(B:

    <DIV style="CURSOR: url(hxxp://xxx.xxx.xxx.xxx/mcs2001/chat/css.js)"></DIV>
    <DIV style="CURSOR: url(hxxp://xxx.xxx.xxx/customer/image/css.js)"></DIV>

    $B!!$^$?!"%Y!<%9%"%I%l%96%9g$N1F6A$r$K$b$_$D$+$C$?$=$&$G$9!#(B New updates for Microsoft Knowledge Base Article 925902 (MSRC blog, 2007.04.18) $B$h$j(B:

    BricoPack Vista Inspirat 1.1 (by CrystalXP)
    AVG 7.5 (by Grisoft, Inc)
    BMC PATROL 7.1 (now called Performance Manager, by BMC Software, Inc)

    $B!!(BAVG 7.5 $B$C$F%"%s%A%&%$%k%9%=%U%H$G$9$M!D!D!#(B $B%U%j!$B$b$"$k$N$G9-$/;H$o$l$F$$$k$H;W$$$^$9!#!V(BAVG MS07-017$B!W$G$0$0$k$H!"Ev3:%H%i%V%k$KAx6x$7$?$C$]$$%l%]!<%H$,$"$j$^$9$M!#!V(BMS07-017 site:grisoft.com$B!W$G$0$0$C$F$b2?$b=P$F$3$J$$$N$,%"%l$G$9$,!#(B $B%;%-%e%j%F%#%=%U%H!V(BAVG 7.5$B%7%j!<%:!WF|K\8lHG!"(B4$B7n(B20$BF|$KH/Gd(B (CNET, 2007.04.18) $B$H$$$&%K%e!<%9$b$"$j$^$9$M!#(B

    $B!!(BNew updates for Microsoft Knowledge Base Article 925902 (MSRC blog, 2007.04.18) $B$K$O(B

    Finally, we've posted a new Knowledge Base article 935843 that discusses a new issue for which there is a hotfix available. Specifically, after installing MS07-017 some customers have experienced an issue when printing from SQL Reporting Services to a Printer Command Language (PCL) printer.

    $B$H$$$&5-=R$b$"$k$N$G$9$,!"(B935843 $B$r%/%j%C%/$7$F$b!V(BThe Knowledge Base (KB) Article You Requested Is Currently Not Available$B!W$H8@$o$l$F$7$^$&$N$,%"%l$G$9(B (11:35 AM)$B!#(B

    $B!!$?$@$7!"(B935843 $B$N=$@5%W%m%0%i%`$O%@%&%s%m!<%I$G$-$^$9(B: http://www.microsoft.com/downloads/results.aspx?freetext=KB935843&DisplayLang=ja$B!#(BWindows 2000 / XP $B$,BP>]$G$9!#%U%m!<%H$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    Windows DNS Cache Poisoning by Forwarder DNS Spoofing

    $B!!F|K\8lHG=P$F$^$7$?(B:

    $B!!$O$;$,$o$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B"#(B 2007.04.18

    $B"#(B Vista DRM = rootkit?
    (CNET, 2007.04.13)

    $B!!(BVista$B$N(BDRM$B5!G=$K%;%-%e%j%F%#>e$N7|G0(B (COMPUTERWORLD.jp, 2006.10.13)$B!"(B Vista's DRM features could bedevil AV (infoworld.com, 2006.10.13) $B$G;XE&$5$l$F$$$k$N$HF1$8OC$J$N$+$J!#(B Introducting D-Pin Purr v1.0 - 32bit Edition (Alex Ionescu's Blog, 2007.04.05) $B$G

    $B"#(B 2007.04.17

    $B"#(B Windows DNS Cache Poisoning by Forwarder DNS Spoofing
    (bugtraq, Mon, 16 Apr 2007 15:03:50 +0900)

    $B!!(BWindows 2000 / Server 2003 $B$N(B DNS $B%5!<%P$K!"(Bforwarder $B$rMxMQ$9$k9=@.$K$*$$$F(B DNS $B%-%c%C%7%e1x@w$,H/@8$9$k7g4Y$,$"$k$H$$$&!"1v7n$5$s$K$h$k;XE&!#$3$l!"967b

    According to Microsoft response I've got through IPA/ISEC, this kind of poisoning attack is caused by design of the Windows DNS service, and they are considering the design change at service pack level.

    $B!!%;%-%e%j%F%#%[!<%k$8$c$J$$$C$F$3$H$G$9$+!D!D!#(B

    2007.04.19 $BDI5-(B:

    $B!!F|K\8lHG=P$F$^$7$?(B:

    $B!!$O$;$,$o$5$s!"1v7n$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B"#(B $B$$$m$$$m(B (2007.04.17)
    (various)

    $B"#(B $BDI5-(B

    [Clamav-announce] announcing ClamAV 0.90.2

    $B!!4XO"(B:

    $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H

    $B!!4XO"(B:

    $B"#(B Bugzilla Bug 236585: /tmp race in lha
    (RedHat, 2007.04.16)

    $B!!0l;~%U%!%$%k$K4X$9$k6%9g>uBV$,$"$kLOMM!#(BCVE-2007-2030

    $B!!(Bpatch $B$H(B FreeBSD $B$N(B ports/archivers/lha $B$r8+Hf$Y$F$_$?$i!"(Bxfopen() $B$O(B 2000.07.31 $BIU$N(B patch $B$G;H$o$J$/$J$C$F$$$?(B (files/patch-ae)$B!#(B src/lharc.c $B$N(B 1066 $B9TL\$"$?$j$N=$@5$H(B lhext.c $B$N=$@5$O$5$l$F$$$J$$$h$&$J$N$GDI2C$7$?J}$,$h$5$2$+!#(B

    $B!!(Bports/archivers/lha-ac $B$NJ}$O(B xfopen() $B$r$P$j$P$j;H$C$F$$$k$7!"B>$N$H$3$m$bD>$C$F$J$$$h$&$J$N$G!"F1MM$K=$@5$7$?J}$,$h$5$2$+!#(B

    $B"#(B 2007.04.16

    $B"#(B $BDI5-(B

    $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H

    $B!!4XO"(B:

    $B!!$^$?!"(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H $B$K5-:\$5$l$F$$$k%U%#%k%?%j%s%0>pJs$,2~D{$5$l$F$$$k!#%U%#%k%?%j%s%0$GBP1~$7$F$$$k>l9g$OCm0U$5$l$?$$!#(B

    $B"#(B 2007.04.13

    $B"#(B $B$$$m$$$m(B (2007.04.13)
    (various)

    $B"#(B $BDI5-(B

    Changelog for Opera 9.20 for Windows

    $B!!(BOpera 9.20 for Linux / Solaris / FreeBSD $B$K$O(B Flash Player plug-in $B$,$i$_$N7g4Y$,$"$C$?$=$&$G(B:

    $B!!(BOpera for Linux / Solaris / FreeBSD $B$NMxMQ

    New MS Office Zero-Days

    $B!!4XO"(B:

    $B"#(B $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H
    (Microsoft, 2007.04.13)

    $B!!(BWindows 2000 / Server 2003 $B$N(B DNS $B%5!<%S%9$K7g4Y!#(B RPC $B$r;H$C$?%j%b!<%H4IM}5!G=$K(B buffer overflow $B$9$k7g4Y$,$"$j!"96N,(B RPC $B%Q%1%C%H$K$h$C$F(B DNS $B%5!<%S%98"8B(B (= local SYSTEM) $B$GG$0U$N%3!<%I$rCVE-2007-1748

    $B!!(BMicrosoft Vulnerability in RPC on Windows DNS Server (SANS ISC, 2007.04.13) $B$N7o!#(B $BOC$NN.$l$+$i$9$k$H!"(B0-day $B$G967b$r

    $B!!=$@5%W%m%0%i%`$O$^$@$J$$!#2sHr$9$k$K$O!"%l%8%9%H%j$r@_Dj$7$F(B DNS $B%5!<%S%9$N(B RPC $B%j%b!<%H4IM}5!G=$rL58z$K$7!"(BDNS $B%5!<%S%9$r:F5/F0$9$k!#(B $BL58z$K$7$?>l9g$G$b!"%m!<%+%k$+$i!"$"$k$$$O%?!<%_%J%k%5!<%S%9$r;H$C$F%j%b!<%H$+$i(B DNS $B%5!<%S%9$r4IM}$G$-$k!#(B

    $B!!4XO"(B:

    2007.04.16 $BDI5-(B:

    $B!!4XO"(B:

    $B!!$^$?!"(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H $B$K5-:\$5$l$F$$$k%U%#%k%?%j%s%0>pJs$,2~D{$5$l$F$$$k!#%U%#%k%?%j%s%0$GBP1~$7$F$$$k>l9g$OCm0U$5$l$?$$!#(B

    2007.04.17 $BDI5-(B:

    $B!!4XO"(B:

    2007.04.20 $BDI5-(B:

    $B!!(BDNS Server$B$N@H (ITmedia, 2007.04.19)$B!#

    $B!!(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (935964) Windows DNS $B%5!<%P!<(B $B$N(B RPC $B$N@H (Microsoft) $B$K!"(Bport 139 $B$K4X$9$k5-=R$,DI2C$5$l$^$7$?!#(B

    2007.04.25 $BDI5-(B:

    $B!!(B936263 - How to disable remote administration of the DNS Server service in Windows Server 2003 and in Windows 2000 Server (Microsoft)

    2007.05.09 $BDI5-(B:

    $B!!(Bpatch $B=P$^$7$?(B: Windows DNS $B$N(B RPC $B%$%s%?!<%U%'%$%9$N@H

    $B"#(B [Clamav-announce] announcing ClamAV 0.90.2
    (ClamAV, 13 Apr 2007 10:29:51 +0900)

    $B!!(BClamAV 0.90.2 $BEP>l!#(B

    Changes in this release include some security fixes in CHM, CAB and PDF code and better handling of network problems in freshclam.

    Please see ChangeLog for complete list of changes.

    **Important note**: on April 16th CHM, CAB and PDF handlers will be disabled for 0.90 and 0.90.1 users through the dynamic engine configuration module (DCONF). Please upgrade to 0.90.2 immediately.

    $B!!(BCHM, CAB, PDF $B%U%!%$%k$K4X$9$k%;%-%e%j%F%#7g4Y$,=$@5$5$l$?J70O5$$G$9!D!D!#(B $B!D!D(BFile Release Notes and Changelog $B$K$h$k$H(B: 

      V 0.90.2
  * Bugfixes:
    - libclamav/chmunpack.c: fix fd leak in chm_decompress_stream
      (CVE-2007-1745)
    - libclamav/cab.c: fix buffer overflow, reported through iDefense
      Vulnerability Contributor Program (CVE-2007-1997)

    2007.04.17 $BDI5-(B:

    $B!!4XO"(B:

    2007.05.01 $BDI5-(B:

    $B!!(B0.90.2 $B$GD>$C$F$$$k!"(BPDF $B$G(B DoS $B$9$k7o(B: CVE-2007-2029$B!#(B

    $B"#(B 2007.04.12

    $B"#(B Description of the update for the 2007 Office programs: April 9, 2007 (932080)
    (Microsoft, 2007.04.10)

    $B!!(B932080 $B$O!V%;%-%e%j%F%#0J30$NM%@hEY$N9b$$99?7%W%m%0%i%`!W$N(B 1 $B$D!#(B Microsoft Application Error Reporting (DW 2.0) $B$r(B Office 2007 $B$H$$$C$7$g$K;H$&$H7g4Y$,H/8=$9$k$h$&$G!"(B

    Some 2007 Office programs that run on Microsoft Windows XP Service Pack 2 (SP2) and on Microsoft Windows Server 2003 use Microsoft Application Error Reporting (DW 2.0) to report problems to Microsoft. If an unsafe COM control is detected, these programs may unintentionally send problem reports to Microsoft without first verifying that you have granted permission for the reporting operation. The problem reports that may be sent to Microsoft do not contain personal information.

    $BFCDj$N%(%i!

    $B!!=$@5%W%m%0%i%`$rE,MQ$9$k$H(B DW 2.0 $B$,99?7$5$l!"$A$c$s$H3NG'2hLL$,=P$k$h$&$K$J$k$h$&$G$9!#(B

    $B"#(B Changelog for Opera 9.20 for Windows
    (Opera, 2007.04.11)

    $B!!(BOpera 9.20 $BEP>l!#J#?t$N7g4Y$,=$@5$5$l$F$$$k!#(B

    2007.04.13 $BDI5-(B:

    $B!!(BOpera 9.20 for Linux / Solaris / FreeBSD $B$K$O(B Flash Player plug-in $B$,$i$_$N7g4Y$,$"$C$?$=$&$G(B:

    $B!!(BOpera for Linux / Solaris / FreeBSD $B$NMxMQ

    2007.04.25 $BDI5-(B:

    $B!!(BAPSA07-03: Linux$BHG$*$h$S(BSolaris$BHG(BOpera$B%V%i%&%6$G(BAdobe Flash Player$B$r;HMQ$9$k:]$N@H (Adobe)

    $B"#(B $BDI5-(B

    $B$$$m$$$m(B (2007.03.02)

    $B!!(BAdvisory 03/2007: Multiple Browsers Cross Domain Charset Inheritance Vulnerability (hardened-php.net) $B$N7o$O(B Opera 9.20 $B$G=$@5$5$l$?!#(BChangelog for Opera 9.20 for Windows (opera.com)$B!#(B

    Manipulating FTP Clients Using The PASV Command

    $B!!(BOpera 9.20 $B$G=$@5$5$l$?!#(BChangelog for Opera 9.20 for Windows (opera.com)

    4$B7n$N(B "$B7nNc$N(B" $B%;%-%e%j%F%#>pJs8x3+M=Dj(B

    $B!!(BDetection and deployment guidance for the April 10, 2007 security release (Microsoft)

    New MS Office Zero-Days

    $B!!$3$l$N$3$H$G$9$+$M$((B: CVE-2007-1912 CVE-2007-1911 CVE-2007-1910

    $B"#(B About the security content of Firmware Update 7.1 for AirPort Extreme Base Station with 802.11n
    (Apple, 2007.04.10)

    $B!!(BAirPort Extreme Base Station with 802.11n* $B$K(B 2 $B$D$N7g4Y!#(B

    • $BFb8~$-$N(B IPv6 $B%3%M%/%7%g%s$r%G%U%)%k%H$G5v2D$7$F$7$^$&!#(B CVE-2007-1338
    • $B%m!<%+%k%M%C%H%o!<%/>e$N%f!<%6$+$i!"%Q%9%o!<%IJ]8n$5$l$?(B AirPort Disk $B$N%U%!%$%kL>$,8+$($F$7$^$&!#(B CVE-2007-0734

    $B!!(BFirmware version 7.1 $B$G=$@5$5$l$F$$$k!#(B

    $B"#(B 2007.04.11

    $B"#(B Windows $B%+!<%M%k$N@H:3J$5$l$k(B (931784) (MS07-022)
    (Microsoft, 2007.04.11)

    $B!!(BWindows 2000 / XP (32bit) / Server 2003 (32bit) $B$KJ#?t$N7g4Y!#(B Windows $B%+!<%M%k$K7g4Y$,$"$j!"%a%b%j%;%0%a%s%H$r%^%C%W$9$k:]$KIT@53N$J%"%/%;%95v2D$r9T$&$?$a!"(Blocal user $B$,8"8B>e>:$rCVE-2007-1206

    $B!!=$@5%W%m%0%i%`$rE,MQ$9$l$P$h$$!#4XO"(B:

    2007.05.14 $BDI5-(B:

    $B!!(BWindows $B%+!<%M%k$N@H:3J$5$l$k(B (931784) (MS07-022) (eEye / $B=;>&>pJs%7%9%F%`(B)$B!#9b66$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    2007.06.28 $BDI5-(B:

    $B!!(BNEC PC-98x1 $BHG(B Windows 2000 $BMQ$N=$@5%W%m%0%i%`$KLdBj$,$"$j!"(B $B%;%-%e%j%F%#7g4Y<+BN$O=$@5$5$l$F$$$k$b$N$N!"(B $B=$@5%W%m%0%i%`$rE,MQ$9$k$H(B Windows Update $B$K<:GT$9$k$3$H$,$"$k$=$&$G$9!#(B

    $B!!$3$NLdBj$r=$@5$7$?!"(BNEC PC-98x1 $BHG(B Windows 2000 $BMQ$N?7$7$$=$@5%W%m%0%i%`$,MQ0U$5$l$F$$$^$9!#(B $B%@%&%s%m!<%I%;%s%?!<$+$iF~$B$7$FE,MQ$9$k$+!"$"$k$$$O0lC6%"%s%$%s%9%H!<%k$7$F$+$i(B Windows Update $B$7D>$;$P$h$$$G$9!#(B

    $B"#(B CSRSS $B$N@H
    (Microsoft, 2007.04.11)

    $B!!(BWindows 2000 / XP / Server 2003 / Vista $B$KJ#?t$N7g4Y!#(B

    • MsgBox (CSRSS) $B$N%j%b!<%H$G%3!<%I$,CVE-2006-6696
      CSRSS $B$K$*$1$k%(%i!<%a%C%;!<%8$N=hM}$K7g4Y$,$"$j!"(Bremote $B$+$iG$0U$N%3!<%I$r

    • CSRSS $B$N%m!<%+%k$NFC8"$N>:3J$N@HCVE-2007-1209
      CSRSS $B$K$*$1$k%j%=!<%9$N4IM}$K7g4Y$,$"$j!"(Blocal user $B$,%W%m%0%i%`$r%$%s%9%H!<%k$7$?$jFC8"%"%+%&%s%H$r:n@.$7$?$j$G$-$k!#(B

    • CSRSS $B$N%5!<%S%95qH]$N@HCVE-2006-6797
      CSRSS $B$K$*$1$k%(%i!<%a%C%;!<%8$N=hM}$K7g4Y$,$"$j!"(Blocal user $B$,(B DoS $B967b$r

    $B!!=$@5%W%m%0%i%`$rE,MQ$9$l$P$h$$!#4XO"(B:

    2007.05.14 $BDI5-(B:

    $B!!(BCSRSS $B$N@H (eEye / $B=;>&>pJs%7%9%F%`(B)$B!#9b66$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    2007.08.24 $BDI5-(B:

    $B!!(BEmpty message box appears when you do not have administrative credentials and you use the Certificate Import Wizard to try to install a root certificate on a Windows XP SP2-based computer that has security update MS07-021 installed (Microsoft)$B!#(B $BM-=~(B patch $B$,$"$k$=$&$G$9!#(B

    $B"#(B Microsoft $B%(!<%8%'%s%H$N@H
    (Microsoft, 2007.04.11)

    $B!!(BWindows 2000 / XP / Server 2003 $B$K7g4Y!#(B Microsoft Agent $B$K7g4Y$,$"$j!"96N,(B URL $B$K$h$C$FG$0U$N%3!<%I$rCVE-2007-1205

    $B!!=$@5%W%m%0%i%`$rE,MQ$9$l$P$h$$!#4XO"(B:

    $B"#(B $B%f%K%P!<%5%k(B $B%W%i%0(B $B%"%s%I(B $B%W%l%$$N@H
    (Microsoft, 2007.04.11)

    $B!!(BWindows XP $B$K7g4Y!#(B Universal Plug and Play (UPnP) $B%5!<%S%9$K7g4Y$,$"$j!":Y9)$7$?(B HTTP $B%j%/%(%9%H$K$h$C$FG$0U$N%3!<%I$rCVE-2007-1204

    $B!!=$@5%W%m%0%i%`$rE,MQ$9$l$P$h$$!#$^$?!"(BUPnP $B%5!<%S%9$rDd;_$9$k!"(B 2869/tcp $B$H(B 1900/udp $B$r%V%m%C%/$9$k$H$$$C$?2sHr:v$,$"$k!#(B

    $B!!4XO"(B:

    $B"#(B Microsoft Content Management Server $B$N@H
    (Microsoft, 2007.04.11)

    $B!!(BMicrosoft Content Management Server 2001 / 2002 $B$KJ#?t$N7g4Y!#(B

    • CSS $B$N%a%b%j$NGKB;$N@HCVE-2007-0938
      HTTP $B%j%/%(%9%H$N=hM}$K7g4Y$,$"$j!"(Bremote $B$+$iG$0U$N%3!<%I$r

    • CMS $B$N%/%m%9%5%$%H(B $B%9%/%j%W%F%#%s%0$*$h$S$J$j$9$^$7$N@HCVE-2007-0939
      HTTP $B%j%@%$%l%/%7%g%s(B $B%/%(%j$N=hM}$K7g4Y$,$"$j!"(B XSS $B$,H/@8!#$3$l$rMxMQ$7$F(B web $B%V%i%&%6$d(B proxy/cache $B%5!<%P$N%-%c%C%7%e$rA`:n$9$k$3$H$G!"$J$j$9$^$7$r9T$&$3$H$b$"$jF@$k!#(B

    $B!!=$@5%W%m%0%i%`$rE,MQ$9$l$P$h$$!#$?$@$7!"$3$N=$@5%W%m%0%i%`$O%"%s%$%s%9%H!<%k$G$-$J$$$N$GCm0U!#(B

    $B"#(B New MS Office Zero-Days
    (McAfee blog, 2007.04.11)

    $B!!(B$B!V(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (932553) Microsoft Office $B$N@H$B!W(B $B!V(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (933052) Microsoft Word $B$N@H$B!W(B $B$b$^$@D>$C$F$$$J$$$N$K!"?7$?$J(B 0-day $B$G$9$+!D!D!#(B

    $B!!$A$J$_$K!"D>$C$F$J$$0lMw$O(B The missing Microsoft patches (SANS ISC) $B$r;2>H!#(B

    2007.04.12 $BDI5-(B:

    $B!!$3$l$N$3$H$G$9$+$M$((B: CVE-2007-1912 CVE-2007-1911 CVE-2007-1910

    2007.04.13 $BDI5-(B:

    $B!!4XO"(B:

    $B"#(B $BDI5-(B

    Unpatched Drive-By Exploit Found On The Web (.ani vuln.)

    $B!!4XO"(B:

    4$B7n$N(B "$B7nNc$N(B" $B%;%-%e%j%F%#>pJs8x3+M=Dj(B

    $B!!=P$^$7$?!#6[5^(B x 4$B!"=EMW(B x 1$B!#(B

    $B!!4XO"(B:

    $B!!7k6I!":#7n$b(B $B!V(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (932553) Microsoft Office $B$N@H$B!W(B $B!V(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (933052) Microsoft Word $B$N@H$B!W(B $B$OD>$j$^$;$s$G$7$?!#$b$&(B 2 $B$+7n$J$N$G$9$1$I$M$(!#(B

    $BJ#?t$N(B Kaspersky $B@=IJ$KJ#?t$N7g4Y(B

    $B!!4XO"(B:

    $B"#(B $B$$$m$$$m(B (2007.04.11)
    (various)

    2007.04.24 $BDI5-(B:

    $B!!(BWinamp $BOC$O(B Winamp 5.34 $B$G=$@5$5$l$?$h$&$G$9!#%U%m!<%H$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B"#(B 2007.04.10

    $B"#(B $B$$$m$$$m(B (2007.04.10)
    various()

    $B"#(B $B!V(BPHP$B%P%07n4V!W$X$NBP=hK!!$4m81$J4X?t$rL58z$K$7$h$&(B
    ($BF|7P(B IT Pro, 2007.04.09)

    $B!!(Bphp.ini $B$G(B disable_functions = "shell_exec, suexec, passthru" $B$N$h$&$K$9$k$H!"FCDj$N4X?t$rL58z$K$G$-$k$=$&$G$9!#(B

    $B"#(B $BDI5-(B

    $B0lB@O:$N@H

    $B!!4XO"(B:

    $B!!!D!D(B patch $B=P$^$7$?!#(B$B%@%&%s%m!<%I(B$B!#(B

    Unpatched Drive-By Exploit Found On The Web (.ani vuln.)

    $B!!4XO"(B:

    $B"#(B 2007.04.09

    $B"#(B 2007.04.08

    $B"#(B 2007.04.07

    $B"#(B $B0lB@O:$N@H
    ($B%8%c%9%H%7%9%F%`(B, 2007.04.06)

    $B!!0lB@O:(B 2007 / 2006 / 2005 / $BJ8i:!"0lB@O:%S%e!<%"$K7g4Y!#(B $B96N,0lB@O:J8=q$rFI$_9~$`$HG$0U$N%3!<%I$,l$7$F$$$k$H$$$&!#(B

    $B!!=$@5%W%m%0%i%`$O8=:_3+H/Cf!#(B

    2007.04.10 $BDI5-(B:

    $B!!4XO"(B:

    $B!!!D!D(B patch $B=P$^$7$?!#(B$B%@%&%s%m!<%I(B$B!#(B

    $B"#(B $BDI5-(B

    Unpatched Drive-By Exploit Found On The Web (.ani vuln.)

    $B!!4XO"(B:

    GDI $B$N@H

    $B!!(BWindows XP $B$G$O!"(BMS07-017 $B$K4^$^$l$k(B User32.dll $B$H!"(BMS07-008 $B$K4^$^$l$k(B Hhctrl.ocx $B$H$G!"%Y!<%9%"%I%l%9$N6%9g$,H/@8$9$k$3$H$,H=L@$7$F$$$^$7$?$,!"$3$N1F6A$r$K$bH=L@$7$F$$$^$9!#(B

    $B!!$H$$$&$o$1$G!">e5-%"%W%j$NMxMQ

    $B!!$^$?(B MS07-017 $B=$@5%W%m%0%i%`(B (925902) $B$rE,MQ$9$k$H!"IY;NDL(B VSP4620 $B%W%j%s%?$rMxMQ$7$F$$$k4D6-$GIT6q9g$,@8$8$k$=$&$G$9!#(B $B:G?7$N%W%j%s%?%I%i%$%P$H(B PrintWalker/PM $B$r%$%s%9%H!<%k$9$k$H2r>C$9$k$=$&$G!#(B

    $B!!(BSony DVD Handycam USB Driver 2 $B$GIT6q9g$,H/@8$9$k!"$H$$$&>pJs$b$"$j$^$9!#(B

    $BJ#?t$N(B Kaspersky $B@=IJ$KJ#?t$N7g4Y(B

    $B!!(BKaspersky Anti-Virus 6.0, Kaspersky Internet Security 6.0 - 5 vulnerabilities fixed in Maintenance Pack 2.0 build 6.0.2.614 $B$NLdBj$O!"%?%$%H%k$K$"$k$h$&$K(B orz$B!"(B6.0.2.614 $B$G=$@5$5$l$F$$$^$9(B o.....rz$B!#(B $B0l=o$K$$$k?M$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    $B"#(B 2007.04.06

    $B"#(B GDI $B$N@H
    (Microsoft, 2007.04.04)

    $B!!%"%K%a!<%7%g%s%+!<%=%k$NOC$r=|$1$P!"!V6[5^!W$K%i%s%/$5$l$F$$$k$b$N$O$J$$!#(B

    2007.04.07 $BDI5-(B:

    $B!!(BWindows XP $B$G$O!"(BMS07-017 $B$K4^$^$l$k(B User32.dll $B$H!"(BMS07-008 $B$K4^$^$l$k(B Hhctrl.ocx $B$H$G!"%Y!<%9%"%I%l%9$N6%9g$,H/@8$9$k$3$H$,H=L@$7$F$$$^$7$?$,!"$3$N1F6A$r$K$bH=L@$7$F$$$^$9!#(B

    $B!!$H$$$&$o$1$G!">e5-%"%W%j$NMxMQ

    $B!!$^$?(B MS07-017 $B=$@5%W%m%0%i%`(B (925902) $B$rE,MQ$9$k$H!"IY;NDL(B VSP4620 $B%W%j%s%?$rMxMQ$7$F$$$k4D6-$GIT6q9g$,@8$8$k$=$&$G$9!#(B $B:G?7$N%W%j%s%?%I%i%$%P$H(B PrintWalker/PM $B$r%$%s%9%H!<%k$9$k$H2r>C$9$k$=$&$G!#(B

    $B!!(BSony DVD Handycam USB Driver 2 $B$GIT6q9g$,H/@8$9$k!"$H$$$&>pJs$b$"$j$^$9!#(B

    2007.04.19 $BDI5-(B:

    $B!!(BCSS $B$rMxMQ$7$??7New variant of ANI (MS07-017) exploit (SANS ISC, 2007.04.17) $B$h$j(B:

    <DIV style="CURSOR: url(hxxp://xxx.xxx.xxx.xxx/mcs2001/chat/css.js)"></DIV>
    <DIV style="CURSOR: url(hxxp://xxx.xxx.xxx/customer/image/css.js)"></DIV>

    $B!!$^$?!"%Y!<%9%"%I%l%96%9g$N1F6A$r$K$b$_$D$+$C$?$=$&$G$9!#(B New updates for Microsoft Knowledge Base Article 925902 (MSRC blog, 2007.04.18) $B$h$j(B:

    BricoPack Vista Inspirat 1.1 (by CrystalXP)
    AVG 7.5 (by Grisoft, Inc)
    BMC PATROL 7.1 (now called Performance Manager, by BMC Software, Inc)

    $B!!(BAVG 7.5 $B$C$F%"%s%A%&%$%k%9%=%U%H$G$9$M!D!D!#(B $B%U%j!$B$b$"$k$N$G9-$/;H$o$l$F$$$k$H;W$$$^$9!#!V(BAVG MS07-017$B!W$G$0$0$k$H!"Ev3:%H%i%V%k$KAx6x$7$?$C$]$$%l%]!<%H$,$"$j$^$9$M!#!V(BMS07-017 site:grisoft.com$B!W$G$0$0$C$F$b2?$b=P$F$3$J$$$N$,%"%l$G$9$,!#(B $B%;%-%e%j%F%#%=%U%H!V(BAVG 7.5$B%7%j!<%:!WF|K\8lHG!"(B4$B7n(B20$BF|$KH/Gd(B (CNET, 2007.04.18) $B$H$$$&%K%e!<%9$b$"$j$^$9$M!#(B

    $B!!(BNew updates for Microsoft Knowledge Base Article 925902 (MSRC blog, 2007.04.18) $B$K$O(B

    Finally, we've posted a new Knowledge Base article 935843 that discusses a new issue for which there is a hotfix available. Specifically, after installing MS07-017 some customers have experienced an issue when printing from SQL Reporting Services to a Printer Command Language (PCL) printer.

    $B$H$$$&5-=R$b$"$k$N$G$9$,!"(B935843 $B$r%/%j%C%/$7$F$b!V(BThe Knowledge Base (KB) Article You Requested Is Currently Not Available$B!W$H8@$o$l$F$7$^$&$N$,%"%l$G$9(B (11:35 AM)$B!#(B

    $B!!$?$@$7!"(B935843 $B$N=$@5%W%m%0%i%`$O%@%&%s%m!<%I$G$-$^$9(B: http://www.microsoft.com/downloads/results.aspx?freetext=KB935843&DisplayLang=ja$B!#(BWindows 2000 / XP $B$,BP>]$G$9!#%U%m!<%H$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    2007.04.20 $BDI5-(B:

    $B!!(BKB $B8+$l$k$h$&$K$J$j$^$7$?(B: Stop 0x0000007F error when you try to print from computers that are running Windows XP or Windows 2000 and that have GDI security update 925902 installed (Microsoft)$B!#(BMS07-017 patch $B$r%$%s%9%H!<%k$9$k$H(B Stop 0x0000007F $B%(%i!<$,H/@8$9$k>l9g$,$"$k!#$=$N860x$O(B:

    This problem occurs when a printer driver makes a call that has invalid parameters to the Win32K.sys component. Microsoft has confirmed that this problem affects the following printer drivers:
    * Ricoh LAN Fax Driver
    * Gestetner P7026n PCL
    * Ricoh Laser AP2600N PCL
    * HP LaserJet 9050
    * HP LaserJet 4200
    * HP 4050 PCL6
    This problem has also been reported in relation to printing from SQL Reporting Services to a Printer Command Language (PCL) printer.

    $B$H$$$&$o$1$G!"J#?t$N%W%j%s%?%I%i%$%P$,1F6A$9$kLOMM!#(B

    $B!!(BMicrosoft $B<+?H$b(B patch $B$rMQ0U(B$B$7$F$$$k$,!"%W%j%s%?%I%i%$%PB&$GBP1~$G$-$k$N$J$i$=$&$7$F$[$7$$$H$3$m$J$N$@$m$&!#(B

    $B!!4XO"(B:

    $B"#(B 4$B7n$N(B "$B7nNc$N(B" $B%;%-%e%j%F%#>pJs8x3+M=Dj(B
    ($BF|K\$N%;%-%e%j%F%#%A!<%`$N(B Blog, 2007.04.06)

    $B!!FbMF(B:

    • Windows - 4 $B7o!#:GBg?<9oEY$O!V6[5^!W(B
    • Microsoft Content Management Server - 1 $B7o!#:GBg?<9oEY$O!V6[5^!W(B
    • $B0-0U$N$"$k%=%U%H%&%'%"$N:o=|%D!<%k$N99?7(B
    • $B%;%-%e%j%F%#0J30$NM%@hEY$N9b$$99?7%W%m%0%i%`(B
      • WU / SUS - 2 $B7o(B
      • MU / WSUS - 4 $B7o(B

    $B!!(BOffice $B$d(B Exchange $B$O$J$$$_$?$$!#(B $B!D!D$"$i!"(B$B>\:Y>pJs(B$B$O$I$&$J$C$?$N(B?

    $B$9$G$K;vA0DLCN$r$4Mw$K$J$C$F$$$kJ}$O5$$E$$$?$+$b$7$l$^$;$s$,!"FbMF$,=>Mh$HJQ2=$7$F$$$^$;$s!#:#7n$+$i$O!";vA0DLCN$K@HpJs$rDI2C$9$k;v$rM=Dj$7$F$*$j$^$7$?!#$7$+$7!"3F9q$N$*5RMM$+$i?'!9$H%U%#!<%I%P%C%/$r$$$?$@$-!":#7n$N/$7;~4V$,I,MW$@$H$$$&H=CG$K$h$j!"1d4|$9$k;v$H$J$j$^$7$?!#$7$+$7!"FbMF$N=<

    $B!!$"$i$i!D!D!#$o$/$o$/$7$F$$$?$N$K!#(B

    2007.04.11 $BDI5-(B:

    $B!!=P$^$7$?!#6[5^(B x 4$B!"=EMW(B x 1$B!#(B

    $B!!4XO"(B:

    $B!!7k6I!":#7n$b(B $B!V(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (932553) Microsoft Office $B$N@H$B!W(B $B!V(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (933052) Microsoft Word $B$N@H$B!W(B $B$OD>$j$^$;$s$G$7$?!#$b$&(B 2 $B$+7n$J$N$G$9$1$I$M$(!#(B

    2007.04.12 $BDI5-(B:

    $B!!(BDetection and deployment guidance for the April 10, 2007 security release (Microsoft)

    $B"#(B $BDI5-(B

    $B$$$m$$$m(B (2007.03.30)

    $B!!(BCA Brightstor Backup 11.5.2.0 (r11.5 SP2) Mediasvr.exe $BOC$r$^$H$a$J$*$7$?!#(B

    $B!!$"$H!"(BBrightStor ARCserve Backup r11.5 for Windows Service Pack 3 $B$,EP>l(B$B$7$?$=$&$J$N$@$,!"$3$N7g4Y$,D>$C$F$$$k$+$I$&$+$O$h$/$o$+$i$J$$!#(B

    Teredo Overview

    $B!!(BMicrosoft's Inaccurate Teredo Documentation, and Other Vista CVEs (Symantec blog, 2007.04.03)

    $B"#(B $BJ#?t$N(B Kaspersky $B@=IJ$KJ#?t$N7g4Y(B
    (iDefense, 2007.04.05)

    • 3 vulnerabilities fixed in Kaspersky Anti-Virus for Workstation, File Server version 6.0

      Kaspersky Anti-Virus for Workstations / File Server $B$K(B 3 $B$D$N7g4Y!#(B

      • ARJ $B%U%!%$%k$N=hM}$K(B heap overflow $B$9$k7g4Y$,$"$j!"96N,(B ARJ $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$,CVE-2007-0445
      • klif.sys $B$N%U%C%/4X?t$K(B integer overflow $B$9$k7g4Y$,$"$j!"(B local user $B$,G$0U$N%3!<%I$rCVE-2007-1880
      • klif.sys $B$K(B heap overflow $B$9$k7g4Y$,$"$j!"(B local user $B$,G$0U$N%3!<%I$rCVE-2007-1881

      Kaspersky Anti-Virus for Workstation / File Server 6.0 $B$G=$@5$5$l$F$$$k!#(B

    • Kaspersky Anti-Virus 6.0, Kaspersky Internet Security 6.0 - 5 vulnerabilities fixed in Maintenance Pack 2.0 build 6.0.2.614

      Kaspersky Anti-Virus 6.0, Kaspersky Internet Security 6.0 $B$K(B 5 $B$D$N7g4Y!#Fb(B 3 $B$D$O>e5-(B Kaspersky Anti-Virus for Workstation / File Server 6.0 $B$G=$@5$5$l$?7o$HF1MM!#(B

      • AXKLPROD60Lib.KAV60Info (AxKLProd60.dll) $B$*$h$S(B AXKLSYSINFOLib.SysInfo (AxKLSysInfo.dll) ActiveX $B%3%s%H%m!<%k$K7g4Y$,$"$j!"(Bremote $B$+$i(B local file $B$rCVE-2007-1112
      • KL.SysInfo (AxKLSysInfo.dll) ActiveX $B%3%s%H%m!<%k$K7g4Y$,$"$j!"(Bremote $B$+$i(B local file $B$rCVE-2007-1879

      Kaspersky Anti-Virus / Kaspersky Internet Security 6.0.2.621 6.0.2.614 $B$G=$@5$5$l$F$$$k!#(B$BF|K\$G$O$^$@G[I[$5$l$F$$$J$$(B?

    $B!!4XO"(B:

    2007.04.07 $BDI5-(B:

    $B!!(BKaspersky Anti-Virus 6.0, Kaspersky Internet Security 6.0 - 5 vulnerabilities fixed in Maintenance Pack 2.0 build 6.0.2.614 $B$NLdBj$O!"%?%$%H%k$K$"$k$h$&$K(B orz$B!"(B6.0.2.614 $B$G=$@5$5$l$F$$$^$9(B o.....rz$B!#(B $B0l=o$K$$$k?M$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

    2007.04.11 $BDI5-(B:

    $B!!4XO"(B:

    2007.11.01 $BDI5-(B:

    $B!!4XO"(B:

    $B"#(B $B$$$m$$$m(B (2007.04.06)
    (various)

    $B"#(B 2007.04.05

    $B"#(B Yahoo! $B%a%C%;%s%8%c!<(B 7.x: ActiveX Audio Conferencing $B%"%C%W%G!<%H$N$*CN$i$;(B
    (Yahoo! JAPAN, 2007.04.04?)

    $B!!(BZDI-07-012: Yahoo! Messenger AudioConf ActiveX Control Buffer Overflow (CVE-2007-1680) $B$N7o!#(BYahoo.AudioConf ActiveX $B%3%s%H%m!<%k(B (yacscom.dll) $B$K(B buffer overflow $B$9$k7g4Y$,$"$j!"96N,(B web $B%Z!<%8$K%"%/%;%9$9$k$HG$0U$N%3!<%I$r

    $B!!(BYahoo!$B%a%C%;%s%8%c!<(B 7.0.0.7 $B$G=$@5$5$l$F$$$k!#(B

    $B"#(B $BDI5-(B

    Unpatched Drive-By Exploit Found On The Web (.ani vuln.)

    $B!!4XO"(B:

    $B"#(B 2007.04.04

    $B"#(B $B$$$m$$$m(B (2007.04.04)
    (various)

    $B"#(B 10/100M$B%9%$%C%A%s%0%O%V!V(BLSW10/100-5P$B!WIUB0(BAC$B%"%@%W%?$NL5=~8r49$K$D$$$FBg@Z$J$*CN$i$;$H$*OM$S(B
    (buffalo, 2007.04.04)

    $B!!(BBuffalo $B$N%9%$%C%A%s%0(B HUB LSW10/100-5P $B$KIUB0$9$k(B AC $B%"%@%W%?$,H/1l!&H/2P$9$k>l9g$,$"$k$=$&$G!#L5=~8r49$r9T$C$F$$$k!#(B

    $B"#(B $BDI5-(B

    Unpatched Drive-By Exploit Found On The Web (.ani vuln.)

    $B!!(Bofficial patch $B$,=P$^$7$?(B:

    $B!!:#2s$N7g4Y(B (Windows $B$N%"%K%a!<%7%g%s(B $B%+!<%=%k$N%j%b!<%H$G%3!<%I$,CVE-2007-0038; CVE-2007-1765 $B$H%@%V$C$F$k$C$]$$(B) $B$NB>$K$b(B 6 $B7o$N=$@5$,2C$($i$l$F$$$^$9!#(B $B$?$@$7!"6[5^%l%Y%k$O(B CVE-2007-0038 $B$N$_!#(B

    $B!!$J$*(B Windows XP $B$G$O!"(BMS07-017 $B$K4^$^$l$k(B User32.dll $B$H!"(BMS07-008 $B$K4^$^$l$k(B Hhctrl.ocx $B$H$G!"%Y!<%9%"%I%l%9$N6%9g$,H/@8$9$k$3$H$,$"$k$=$&$G$9!#(B

    $B!!=$@5HG$N(B Hhctrl.ocx $B$,(B KB935448 $B$G8x3+$5$l$F$$$^$9!#8=;~E@$G1F6A$r

    $B!!4XO"(B:

    $B"#(B $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#>pJs$N;vA09pCN$NDs6!FbMF$r(B 4 $B7n$h$jJQ99(B
    (Microsoft, 2007.04.04)

    $B!!pJs$,7G:\$5$l$k$=$&$G$9!#(B

    $B9`L\(B $BJQ99A0(B $BJQ998e(B $B
    $B:GBg?<9oEY(B $B"$(B $B!{(B $B3F%;%-%e%j%F%#>pJs$N?<9oEY$rDs6!(B
    $B@=IJKh$N?<9oEY(B $B!_(B $B!{(B $B@=IJ%P!<%8%g%sKh$N?<9oEY$rDs6!(B
    $B@H $B!_(B $B!{(B $B@H
    $B99?7E83+$N0Y$NJdB->pJs(B $B"$(B $B!{(B $B3F%;%-%e%j%F%#>pJs$NE83+!&E,MQ8e$N8!>Z$K4X$9$kFC5-;v9`(B
    $B1F6A$r $B!_(B $B!{(B $B%;%-%e%j%F%#>pJs$N!V1F6A$rpJs$rDs6!(B

    2007.04.06 $BDI5-(B:

    $B!!$"$C$1$J$/1d4|$5$l$A$c$$$^$7$?!#(B $B;2>H(B: 4$B7n$N(B"$B7nNc$N(B"$B%;%-%e%j%F%#>pJs8x3+M=Dj(B ($BF|K\$N%;%-%e%j%F%#%A!<%`$N(B Blog, 2007.04.06)

    $B"#(B 2007.04.03

    $B"#(B $B<+F0%"%C%W%G!<%H%?%9%/$O@5>o$K=*N;$9$k$,!"Dj5A%U%!%$%k$,99?7$5$l$J$$!#(B
    ($B%^%+%U%#!<(B, 2007.04.02)

    $B!!(BePO Agent $BOC!#(BePO $B$G4IM}$9$k%Q%C%1!<%8?t$,B?$$$H!"(BePO Agent $B$,A4$F$N@=IJ>pJs$rFI$_9~$a$J$$$N$@$=$&$@!#$J$s$8$c$=$l!

    • $B2r7h:v(B: Common Management Agent 3.6.0 $B$K%"%C%W%G!<%H$9$k(B
    • $B2sHr:v(B: $B4IM}$9$k%Q%C%1!<%8?t$r(B 20 $B8D0J2<$K$9$k(B

    $B"#(B SCM Appliance (e250/e500/e1000/3000$B%7%j!<%:(B) Version 4.1$B0J>e(B: $BE>AwCY1d$7$?%a!<%k$,!":GBgJ]B84|4V$KC#$9$kA0$K:o=|$5$l$F$7$^$&(B
    ($B%^%+%U%#!<(B, 2007.03.30)

    $B!!(BSCM Appliance Version 4.1 $B0J>e$rL@<(E*%W%m%-%7!<%b!<%I$GMxMQ$7$?>l9g$K!"(B $BCY1d%a!<%k$,:GBgJ]B84|4V(B ($B%G%U%)%k%H(B: 5 $BF|(B) $B$KC#$9$kA0(B (24 $B;~4V7P2a8e(B) $B$K:o=|$5$l$F$7$^$&LOMM!#(B

    $B!!(BVersion 4.22 $B$G=$@5$5$l$F$$$k$=$&$G$9!#(B

    $B"#(B $B9qFb6bM;5!4X$rAu$C$?%U%#%C%7%s%0%5%$%H$K4X$9$kCm0U4-5/(B
    (JPCERT/CC, 2007.04.03)

    $B!!$=$&$$$&$3$H$G!#(B

    $B"#(B $BDI5-(B

    Unpatched Drive-By Exploit Found On The Web (.ani vuln.)

    $B!!4XO"(B:

    $B"#(B 2007.04.02

    $B"#(B $BDI5-(B

    Unpatched Drive-By Exploit Found On The Web

    $B!!4XO"(B:

    [$B%;%-%e%j%F%#%[!<%k(B memo]
    $B;d$K$D$$$F(B