$B%;%-%e%j%F%#%[!<%k(B memo - 2008.04

Last modified: Sun Apr 19 02:31:59 2009 +0900 (JST)

$B!!$3$N%Z!<%8$N>pJs$rMxMQ$5$l$kA0$K!"(B$BCm0U=q$-(B$B$r$*FI$_$/$@$5$$!#(B

$B"#(B 2008.04.30

$B"#(B CORE-2008-0320 - Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls
(Core Security Technologies, 2008.04.29)

$B!!(BBitDefender Antivirus 2008, Comodo Firewall Pro, Sophos Antivirus 7.x, Rising Antivirus $B$K7g4Y!#%U%C%/$7$?(B SSDT $B4X?t$N0z?t$N8!>Z$,IT==J,$J$?$a!"(BDoS $B967b$dG$0U$N%3!<%I$N

$B"#(B SQL $B%$%s%8%'%/%7%g%s967b$H$=$NBP:v(B
(Microsoft, 2008.04.30)

$B!!(BMicrosoft $B$,!V$=$m$=$m(B SQL $B%$%s%8%'%/%7%g%s967b$K$D$$$F$R$H$3$H8@$C$H$/$+!W$H;W$C$?$_$?$$!#(B $B4XO"(B:

$B"#(B $B8_49@-LdBj$K$h$C$F(BWindows XP SP3$B$N0lHL8x3+$,1d4|$5$l$k(B
(slashdot.jp, 2008.04.30)

$B!!(BWindows XP SP3 $B$N(B Windows Update / Download Center $B$G$N8x3+$,Cf;_$5$l$?$=$&$G$9!#(B

$BF1

$B!!<+

$B!!(B$B85$M$?(B$B$K$h$k$H!"F1MM$N8_49@-LdBj$O(B Windows Vista SP1 $B$K$b$"$k$=$&$G!"<+F099?7$G$N(B Vista SP1 $B$NDs6!$,Cf;_$5$l$?$=$&$G$9!#$?$@$7!"(BWindows Update $B$d(B Download Center $B$G$O$R$-B3$-8x3+$5$l$F$$$k$=$&$G$9!#(B

$B"#(B 2008.04.29

$B"#(B Vista SP1$B$G(BCPU$B$NB.EYDc2<$K$D$$$F(BAMD$B$,%3%a%s%H(B
($BF|7P(B BP, 2008.04.28)

$B!!$3$&$$$&$3$H$i$7$$!#(B

  1. $B!V(BB2 Stepping $B$N(B CPU (Phenom 9500/9600/9600 Black Edition$B!"F1(BX3 8400/8600$B!"F1(BX4 9100e)$B!W$K(B errata $B$,B8:_!#$7$+$7(B AMD $B[)$/!"!V0lHLE*$J%/%i%$%"%s%H(BPC$B$NMQES$@$H(B errata $B$K$h$kLdBj$,H/@8$9$k3NN($ODc$$!#<+:n(BPC$B$J$I$G$O=$@5%3!<%I$rE,MQ$7$J$/$F$bLdBj$J$$!W$=$&$@!#(B $B$J$*!"$3$N(B errata $B$O!V(BB3 Stepping $B$N(B CPU (Phenom X4 9550/9650/9750/9850 Black Edition$B!"F1(BX3 8450/8650/8750$B!W$K$OB8:_$7$J$$!#(B
  2. errata $B$N=$@5%W%m%0%i%`$,B8:_$9$k$,!"$3$l$rE,MQ$9$k$H%a%b%j4XO"$N%Q%U%)!<%^%s%9$,Dc2<$7$F$7$^$&!#%^%6!<%\!<%I%Y%s%@!<$O(B BIOS $B$K$*$$$F(B errata $B=$@5%W%m%0%i%`$N(B on/off $B$rA*Br$G$-$k$h$&$K$9$k$N$,0lHLE*$@$C$?!#(B
  3. Vista SP1 $B$O$3$N(B errata $B=$@5%W%m%0%i%`$r6/@)E*$KE,MQ$7$F$7$^$&$?$a!"%Q%U%)!<%^%s%9Dc2<$,H/@8$7$F$7$^$&!#(B

$B!!$G!"(BAMD OverDrive (AMD) $B$r;H$&$H!"(BVista SP1 $B$K$*$$$F$b(B errata $B=$@5$rL58z$K$G$-$kLOMM!#(B

$B"#(B $BDI5-(B

Microsoft - 2008 $BG/(B 4 $B7n$N%;%-%e%j%F%#>pJs(B

$B!!(BMS08-020 $B7g4Y$NH/8+MS08-020 : How predictable is the DNS transaction ID? (Security Vulnerability Research & Defense, 2008.04.09) $B$O4V0c$C$F$k$<$H

$B"#(B Wordpress 2.5 Cookie Integrity Protection Vulnerability
(Steven J. Murdoch, 2008.04.26)

$B!!(BWordpress 2.5 $B$K7g4Y!#FC$GEPO?$9$k$H!"B>$N%"%+%&%s%H$NG'>Z%/%C%-!<$r@8@.$G$-$F$7$^$&!#(BCVE-2008-1930

$B!!(BWordpress 2.5.1 $B$G=$@5$5$l$F$$$k!#%j%j!<%9%N!<%H$G$O!"$3$NB>$K!V(BAlex Concha $B$+$iJs9p$N$"$C$?(B XSS $BOC!W$b=$@5$7$?$H$5$l$F$$$k!#(B

$B"#(B 2008.04.28

$B"#(B $BDI5-(B

QuickTime Zero-Day Hits Windows XP, Vista

$B!!(BQuickTime 0day for Vista and XP (gnucitizen, 2008.04.25)$B!#%G%b%`!<%S!<$"$j!#(B

$B"#(B LHaplus: ZOO $BE83+;~$N%P%C%U%!%*!<%P!<%U%m!<(B
(HoeHoe.com $B@WCO(B, 2008.04.28)

$B!!(BLhaplus 1.56 $B0JA0$K7g4Y!#(BZOO $B%U%!%$%k$N07$$$K7g4Y$,$"$j!"(Bbuffer overflow $B$,H/@8!"96N,(B ZOO $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$rCVE-2008-2021

$B!!(BLhaplus 1.57 $B$G=$@5$5$l$F$$$k!#(B1.50 $B0J9_MQ$N%"%C%W%G!<%?$bMQ0U$5$l$F$$$k!#(B $B4XO"(B:

$B"#(B 2008.04.27

$B"#(B $BDI5-(B

Potential vulnerability in Photoshop Album Starter Edition 3.2

$B!!(BAdobe Album Starter 3.2 Unchecked Local Buffer Overflow Exploit (milw0rm)

$B"#(B 2008.04.26

$B"#(B HPSBGN02333 SSRT080031 rev.1 - HP Software Update HPeDiag Running on Windows, Remote Disclosure of Information and Execution of Arbitrary Code
(HP, 2008.04.24)

$B!!(BHP $B%=%U%H%&%'%"99?7(B (HP Software Update) v4.000.009.002 $B0JA0$K7g4Y!#(B HPeDiag ActiveX $B%3%s%H%m!<%k$K7g4Y$,$"$j!"96N,(B Web $B%Z!<%8$K$h$C$FG$0U$N%3!<%I$rCVE-2008-0712

$B!!(Bv4.000.010.008 $B0J9_$G=$@5$5$l$F$$$k!#(BHP $B%=%U%H%&%'%"99?7<+?H$r;H$C$F99?7$G$-$k!#(B

$B!!4XO"(B: HP HPeDiag $B$N(B ActiveX $B%3%s%H%m!<%k$K$*$1$kJ#?t$N@H (vuln.sg, 2008.04.25)

$B"#(B 2008.04.25

$B"#(B $BDI5-(B

$B!V(BAdobe Reader 8.1.2$B!W8x3+!"@H

$B!!$3$N7g4Y$r0-MQ$7$?I8E*7?967b$,N.9T$C$F$$$k$=$&$G$9!#(B

$B!!(BAdobe Reader / Acrobat 8.x $B$O(B 8.1.2 $B$K%"%C%W%G!<%H$9$l$P$h$$$N$G$9$,!"(BAdobe Reader / Acrobat 7.x $BMQ$N(B patch $B$O$$$^$@$K8x3+$5$l$F$$$^$;$s!#(B

$B%P!<%8%g%s(B7.0.9$B$*$h$S$=$l0JA0$N(BAcrobat$B$*$h$S(BAdobe Reader$B$b$3$N@H

$B!!$J$s$H$bM*D9$J$3$H$G!#(B

Potential vulnerability in Photoshop Album Starter Edition 3.2

$B!!(BPhotoshop Album Starter Edition $B$O!"F|K\$G$O(B Photoshop Album Mini $B$H$$$&L>A0$J$N$G$9$M!#(B

$B"#(B 2008.04.24

$B"#(B $B$$$m$$$m(B (2008.04.24)
(various)

$B"#(B $BDI5-(B

APSB08-11 - Flash Player update available to address security vulnerabilities

$B!!F|K\8lHG(B: APSB08-11 - Flash Player$B$N%;%-%e%j%F%#@H (Adobe)

$B$$$m$$$m(B (2008.04.11)

$B!!(BAPSB08-12 - Update available for ColdFusion 8 CFC method access level issue (Adobe, 2008.04.08) $B$NF|K\8lHGEP>l(B: APSB08-12 - ColdFusion 8 CFC$B%a%=%C%I$N%"%/%;%9%l%Y%k$K4X$9$k%"%C%W%G!<%H8x3+(B (Adobe)

JVN#76788395 - $B%=%K!<@=(B mylo COM-2 $B$K$*$1$k%5!<%P>ZL@=q$r8!>Z$7$J$$@H

$B!!(B$B?77?(Bmylo$B$N%*%l%*%l>ZL@=q$r8!=P$7$J$$@H ($B9bLZ9@8w!w<+Bp$NF|5-(B, 2008.04.23)

$B"#(B Windows$BHG(BSafari 3.1.1$B$KJ#?t$N@H
($BF|7P(B IT Pro, 2008.04.24)

$B!!$3$NOC(B:

$B!!(BCVE-2008-1999 CVE-2008-2000 CVE-2008-2001

$B"#(B Trend Micro Control Manager 3.5 Patch 4 $B8x3+$N$*CN$i$;(B
($B%H%l%s%I%^%$%/%m(B, 2008.04.24)

$B!!(BTrend Micro Control Manager 3.5 Patch 4 $BEP>l!#!V(BControl Manager$B$N@H

$B"#(B Potential vulnerability in Photoshop Album Starter Edition 3.2
(Adobe, 2008.04.21)

$B!!(BPhotoshop Album Starter Edition 3.2 $B$K7g4Y!#96N,(B .BMP $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1765

$B!!(BPhotoshop / Photoshop Elements $B$K$D$$$F$O!":rG/(B 7 $B7n$N(BAPSB07-13 - Photoshop CS2$B$*$h$S(BCS3$B$N%;%-%e%j%F%#@H $B$GBP1~$5$l$F$$$k!#$^$@BP1~$7$F$$$J$$(B Photoshop / Photoshop Elements $BMxMQ

2008.04.25 $BDI5-(B:

$B!!(BPhotoshop Album Starter Edition $B$O!"F|K\$G$O(B Photoshop Album Mini $B$H$$$&L>A0$J$N$G$9$M!#(B

2008.04.27 $BDI5-(B:

$B!!(BAdobe Album Starter 3.2 Unchecked Local Buffer Overflow Exploit (milw0rm)

$B"#(B QuickTime Zero-Day Hits Windows XP, Vista
(eWeek, 2008.04.22)

$B!!(BGNUCitizen $B$NCf$N?M$,(B QuickTime for Windows $B$N(B 0-day $B$J7g4Y$rH/8+!"Z%3!<%I(B ($B96N,(B .mov $B%U%!%$%k(B) $B$N:n@.$K$b@.8y$7$?LOMM!#>\:Y$OITL@!#(B CVE-2008-2010

2008.04.28 $BDI5-(B:

$B!!(BQuickTime 0day for Vista and XP (gnucitizen, 2008.04.25)$B!#%G%b%`!<%S!<$"$j!#(B

$B"#(B 2008.04.23

$B"#(B JVN#76788395 - $B%=%K!<@=(B mylo COM-2 $B$K$*$1$k%5!<%P>ZL@=q$r8!>Z$7$J$$@H
(JVN, 2008.04.23)

$B!!%=%K!<$H8@$($P!D!D$H;W$C$F

2008.04.24 $BDI5-(B:

$B!!(B$B?77?(Bmylo$B$N%*%l%*%l>ZL@=q$r8!=P$7$J$$@H ($B9bLZ9@8w!w<+Bp$NF|5-(B, 2008.04.23)

$B"#(B 2008.04.22

$B"#(B Kaspersky Internet Security$BA{F0$NN"$K1#$5$l$???
(ITmedia, 2008.04.22)

$B!!(BKaspersky Internet Security 7.0 $B$K(B 4/18 $B$N99?7$rE,MQ8e!"(BWindows $B$N5sF0$,$*$+$7$/$J$C$?OC(B ($B%U%)%s%H$,@5>o$KI=<($5$l$J$$!"$J$I(B)$B!#%*%*%+%o$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(BITmedia $B5-;v$NCxu67$O!"C1$J$k%a%b%j%j!<%/$G$O$J$/!"%a%b%jGK2u$J$s$8$c$J$$$N(B?

$B!!(Bhttp://www.just-kaspersky.jp/ $B$K%*%U%#%7%c%k>pJs=P$F$$$^$9!#(B

2008.04.22
Kaspersky Internet Security 7.0$B$K$*$$$F!"(B4/17$BLk4V$KG[?.$7$?%I%i%$%P$N99?7$KIT6q9g$,$"$j!"0lIt$N4D6-$G$O(BWindows$B$NI=<($,IT@5$K$J$C$?$j!"F0:n$,CY$/$J$k8=>]$,(B4/17$B0J9_$K3NG'$5$l$F$$$^$9!#(B4/21 20:00$B0J9_$NDj5A%G!<%?%Y!<%9$NG[?.$G=$@5$7$F$*$j$^$9$N$G!"8=>]$,H/@8$7$F$$$k$*5RMM$O!":G?7$NDj5A%G!<%?%Y!<%9$NE,MQ$r$*4j$$$$$?$7$^$9!#$*5RMM$K$O$4LBOG$r$*3]$1$7$F?=$7Lu$4$6$$$^$;$s!#(B
$B8=>]$,2r7h$7$J$$>l9g$O!"%+%9%Z%k%9%-!<@lMQ%5%]!<%H%;%s%?!<$K$*Ld$$9g$o$;$/$@$5$$!#(B

$B!!(BKIS 7 $BMxMQ

$B"#(B $BDI5-(B

Buffalo LinkStation LS-GL / LS-LGL / LS-HGL / HS-DHGL $B$K@H

$B!!B3Js!#(BRay $B$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B 2008.04.21

$B"#(B $B!V%Q%C%A$+$i967b%W%m%0%i%`$r<+F0@8@.!W!"JF8&5f
($BF|7P(B IT Pro, 2008.04.21)

$B!!$d$C$F$_$?$i$G$-$F$7$^$C$?$=$&$G!#(B

$B!!BP93:v$H$7$F$O!"!V(Bpatch $B$r$h$jAa4|$KE,MQ!W$H$+!V(Bpatch $B$rE,MQ$7$J$/$F$b0lDj8BEYBP1~$G$-$k$h$&$K$9$k!W(B($B2sHr:v$N

$B"#(B $B%M%C%H;~Be$N%9%Q%$3hF0!"H/?.8;$OCf9q$K$"$j!!(B $B%5%$%P!<967b$,7cA}!"I8E*$O@/I\5!4X$dKI1R4XO"4k6H(B
($BF|7P(B BP, 2008.04.21)

$B!!Cf9q$+$i$N4k6HFb%M%C%H%o!<%/?/F~!&5!L)>pJsC%

$B"#(B $BDI5-(B

$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (951306) Windows $B$N@H:3J$,9T$o$l$k(B

$B!!4XO"(B:

$BIT@5%"%/%;%9$KH<$&$*5RMM>pJsN.=P$K4X$9$k$*OM$S$H$*CN$i$;(B

$B!!(BSQL $B%$%s%8%'%/%7%g%s$NJ}K!(B:

$B!!4XO"%3%a%s%H(B:

$B"#(B 2008.04.18

$B"#(B $B$$$m$$$m(B (2008.04.18)
(various)

2008.05.03 $BDI5-(B:

$B!!(BMicrosoft Works 7 WkImgSrv.dll ActiveX Remote BOF Exploit (milw0rm)$B!#(B

2008.06.15 $BDI5-(B:

$B!!(BWkImgSrv.dll $B$N7o(B: Why there won't be a security update for WkImgSrv.dll (Security Vulnerability Research & Defense, 2008.06.10)

$B"#(B [SA29852] OpenOffice Multiple Vulnerabilities
(secunia, 2008.04.18)

$B!!(BOpenOffice $B$KJ#?t$N7g4Y!#96N,(B OLE / ODF / Quattro Pro / EMF $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$r

$B!!(BOpenOffice 2.4.0 $B$G=$@5$5$l$F$$$k!#(B$B%@%&%s%m!<%I(B$B!#(B

$B"#(B $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (951306) Windows $B$N@H:3J$,9T$o$l$k(B
(Microsoft, 2008.04.18)

$B!!(BIIS / SQL Server / MSDTC $B$K$*$$$F!"G'>Z$5$l$?%f!<%6$,(B LocalSystem $B8"8B$rC%

$B!!$J$s$+!"Lu$R$I$/$J$$(B? > Microsoft$B!#(B

$B86J8(B
How is IIS affected?
User-provided code running in IIS, for example ISAPI filters and extensions, and ASP.NET code running in full trust may be affected by this vulnerability. IIS is not affected in the following scenarios:
$BLuJ8(B
IIS $B$O$I$N$h$&$J1F6A$r $B%f!<%6!<$KDs6!$5$l$?(B IIS $B$G

$B!!3HD%;R$C$F2?!D!D(B

2008.04.21 $BDI5-(B:

$B!!4XO"(B:

2008.05.20 $BDI5-(B:

$B!!(BA Mileage Report from BlueHat (SANS ISC, 2008.05.18)$B!#(BMicrosoft BlueHat Security Briefings: Spring 2008 Sessions (Microsoft) $B$NOC!#(BToken Kidnapping (argeniss.com) $B$O$3$s$JOC(B:

This presentation is about a new technique for elevating privileges on Windows, mostly from services. This technique exploits design weaknesses in Microsoft Windows XP, Windows Server 2003, Windows Vista, and even Windows Server 2008.

The presentation will explain how it's possible in Windows XP and Windows Server 2003 to elevate privileges to LOCAL SYSTEM from any process that has impersonation rights, and how it's possible in Windows Vista and Windows Server 2008 to elevate privileges to LOCAL SYSTEM from processes running under NETWORK SERVICE and LOCAL SERVICE accounts, demonstrating that running code under NETWORK SERVICE or LOCAL SERVICE is nonsense since it's always possible to end up running code under LOCAL SYSTEM account. It will also show zero-day code for elevating privileges in SQL Server 2005 and Internet Information Services 6 and 7.

$B!!(BANNOUNCE: Security Implications of Windows Access Tokens Whitepaper $B$NOC$G$9$M!#%W%l%<%s;qNA$N:G8e$O$3$&$J$C$F$^$9(B:

Conclusions
  • On Windows XP and Windows 2003
    • If a user can impersonate then game is over
      • User can execute code as SYSTEM
  • On Windows Vista and 2008
    • LocalService==SYSTEM
    • NetworkService==SYSTEM
    • New services protections are almost useless

2008.08.28 $BDI5-(B:

$B!!(B$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (951306) Windows $B$N@H:3J$,9T$o$l$k(B $B$,2~D{$5$l$F$$$^$9!#(B

2008/08/28: $B$3$N%"%I%P%$%6%j$r99?7$7!"1F6A$r

$B!!4{$K(B 4 $B$+7n7P2a$7$^$7$?$,!"$$$^$@$KD>$C$F$$$J$$$o$1$G$9$M!D!D!#(B

2008.10.10 $BDI5-(B:

$B!!(B$B1Q8lHG%"%I%P%$%6%j(B$B$,2~D{$5$l$F$$$^$9!#(BPoC $B$,8x3+$5$l$?$=$&$G$9!#(B $BF|K\8lHG%"%I%P%$%6%j(B$B$b$=$N$&$A2~D{$5$l$k$G$7$g$&!#(B

$B!!;2>H(B: Token Kidnapping Windows 2003 PoC exploit (No More Root, 2008.10.07)

2008.10.17 $BDI5-(B:

$B!!4XO"(B:

2009.04.19 $BDI5-(B:

$B!!(BMS09-012 - $B=EMW(B: Windows $B$N@H:3J$5$l$k(B (959454) $B$G?k$K=$@5$5$l$?!#(BMS09-012: Fixing $B!H(BToken Kidnapping$B!I(B (Microsoft Security Research & Defense blog, 2009.04.14) $B$b;2>H!#(B

In the upcoming release of Windows 7 and Windows Server 2008 R2 systems, a new feature named Managed Service Accounts (http://technet.microsoft.com/en-us/library/dd367859.aspx) has been introduced which creates a more streamlined and flexible solution to the issues surrounding service isolation. It provides for services, which have opted to use the feature, the ability to run as a separate account which remotely authenticates with a managed domain SPN. It also provides seamless and automatic password management, similar to the computer account, which frees up time that administrators would previously have used to update user account passwords for these services. You can read more about creating Managed Service Accounts here http://technet.microsoft.com/en-us/library/dd548356.aspx.

$B"#(B $B!V(BVista$B$OH/E8ES>e$N@=IJ!W!=!=%^%$%/%m%=%U%H$N%P%k%^!<(BCEO
(computerworld, 2008.04.18)

$B!!(BSP1 $B$,=P$?$N$K:#$@$KH/E8ES>e$@$H$O!D!D!#!V(BWindows Vista $B$O(B Windows Me $B$N:FMh!W@b$K$^$?0l$D?.Xa@-$,2C$o$C$?!#(B

$B%9%F%#!<%V!&%P%k%^!e$N@=IJ$G$"$kE@$r6/D4$7$?!#(B

$B!!(BMVP Global Summit $B$G!"$G$9$+!D!D!#(B

Ballmer$B;a$O!"!V(BMicrosoft$B$,??7u$K2>A[2=$XA[2=$rI,$:L1A[2=$5$l$F$$$k$N$O(B5$B!sL$K~$K$9$.$J$$$H$$$&!#!V$"$^$j$K$b!J2>A[2=%=%U%H$,!K9b2A$G!"$7$+$b!J2>A[2=4D6-$N!K4IM}$,J#;($9$.$k!#:#8e$O$3$N(B2 $B$D$r%F!<%^$K$7$FBg!9E*$K2>A[2=$X

$B!!(BVMware ESX Server $B$O9b$9$.$k$+$i$M$(!#(B

$B"#(B $BIT@5%"%/%;%9$KH<$&$*5RMM>pJsN.=P$K4X$9$k$*OM$S$H$*CN$i$;(B
($B%5%&%s%I%O%&%9(B, 2008.04.18)

$B!!%5%&%s%I%O%&%9$K$*$1$k8D?M>pJsN.=P;v7o$K4X$9$k!">\:Y$JJs9p=q!#%/%l%8%C%H%+!<%I2q!"860xEy$K$D$$$F$b>\=R$5$l$F$$$k!#F?L>4uK>$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B!!$=$l$K$7$F$b!D!D!#%/%l%8%C%H%+!<%I3FlEv$?$jE*$9$.$J$$$+!#$^$!!"$=$&$$$&$b$N$r;vA0$KMQ0U$7$F$$$J$$%5%&%s%I%O%&%9$,0-$$!"$H8@$C$F$7$^$($P$=$l$^$G$J$N$@$,!"$=$s$J$b$N$rMQ0U$G$-$k$h$&$J2q

$B!!$"$H!"(B

$B$=$NFb!"@$4V$G$O%O%C%-%s%0$N;v7o$,5^A}$7!"FC$K(B2005$BG/0J9_$O!"(BSQL$B%$%s%8%'%/%7%g%s$K$h$kHo32$bB?!9%l%]!<%H$5$l$F$$$k$K$b4X$o$i$:!"$=$l$i$N>pJs$r==J,$KF@$F!"MM!9$JB>u67$rF|!9!"GD0.!"%G!<%?2=$7$F$$$k$K$b4X$o$i$:!"%"%i!<%H$r=P$7$F6qBNE*$JBP:v$r<($5$J$$%/%l%8%C%H%+!<%I2qpJs$r$b$C$H%?%$%`%j!<$K<}=8$7$F!"@$4V$KBg!9E*$K9pCN$9$k0Y$KG=F0E*$KF0$+$J$$9T@/$K$b@UG$$,$"$k$b$N$H9M$($^$9!#(B

$B!!%5%&%s%I%O%&%9$NCf$N?M$O(B IPA $B$b(B JPCERT/CC $B$bCN$i$J$$$C$F$3$H$G$9$+$M!#(B

$BK\Mh$J$i$P!"%/%l%8%C%H%+!<%I$N/$J$/$H$b:G>.8B$N%;%-%e%j%F%#%l%Y%k$,L@<($5$l$F$$$k$Y$-$G$9!#$H$3$m$,!"$I$3$^$G$d$l$P==J,$+!"$H$$$&L@3N$J4p=`$,L5$$$?$a!"2CLAE9$O!"$=$l$>$l$,FHCG$G

$B!!$=$N!V4p=`!W$O:#$d(B PCI DSS $B$K$J$j$D$D$"$k$h$&$K8+$($k$N$@$1$I!"(B

$B!!%/%l%8%C%H%+!<%I$N:F3+$K$"$?$C$F$O!"6/NO$7$F$/$@$5$k$I$3$m$+!"6C$/$[$I9b3[$JD4::HqMQ$N$+$+$k%5!<%S%9$r!":F3+$N>r7o$H$7$FDs<($7$F$-$^$7$?!#(B($BCfN,(B) 1 $B$D$O%5%$%P!<%H%i%9%HpJsJ]8n$N0Y$K:vDj$7$?9q:]4p=`$K=`5r$9$k$?$a$N;vA0D4::$r9T$$$^$9!#(B

$B!!%5%&%s%I%O%&%9DxEY$N5,LO$N2q5I~$7Fq$$M=;;$,I,MW$K$J$k$H$$$&$3$H$G$9$+$M!#6H

2008.04.21 $BDI5-(B:

$B!!(BSQL $B%$%s%8%'%/%7%g%s$NJ}K!(B:

$B!!4XO"%3%a%s%H(B:

2008.06.05 $BDI5-(B:

$B!!(B$B8D?M>pJsN.=P$K4X$9$kJdB-$N$*CN$i$;(B ($B%5%&%s%I%O%&%9(B, 2008.06.04)$B!#%/%l%8%C%H%+!<%I$O$^$@;H$($^$;$s$,!"$b$&$9$0;H$($k$h$&$K$J$k$C$]$$(B?

$BB~:#%/%l%8%C%H%+!<%I2q

$B!!$"$H!"!V%W%l%9%j%j!<%9$rH/I=$7$?M}M3!W$,6=L#?<$$$G$9$M$(!#(B

$B$=$l$K$OBg$-$/#2$D$NM}M3$,$"$j$^$7$?!#$^$:!"Ho32$N>\:Y$r%;%-%e%j%F%#2q $B!!$b$&0l$D$NM}M3$O!"%/%l%8%C%H%+!<%I2q

$B!!!V$b$&0l$D$NM}M3!W$NJ}$,5-=RNL$,B?$$$G$9$M!D!D!#$d$C$Q$j$=$A$i$,

$B!!J@e$2$N(B3$B3dDxEY$G$"$j!"6H3&$N:GBgl$+$i!"22$9$k$3$H$J$/!"%/%l%8%C%H%+!<%I2q

$B!!!VGd$j>e$2$N(B3$B3dDxEY!W$G$7$+$J$$$N$K!"MxMQ:F3+$N$?$a$K$+$1$J$1$l$P$J$i$J$$%3%9%H$,Bg$-$9$.$k!"$H$$$&$3$H$J$N$@$m$&$J$"!#(B

$B"#(B $B!V%&%'%V%5%$%H$N(BSQL$B%$%s%8%'%/%7%g%s@H
(IPA, 2008.04.18)

$B!!5<;w967b$G$b$9$k$N$+$H;W$C$?$i!"$=$&$G$O$J$/$F!"(B

$B!!$=$3$G!"(BIPA$B$G$O!"%&%'%V%5!<%P$N%"%/%;%9%m%0$NCf$+$i!"%&%'%V%5%$%H$N967b$K$h$/MQ$$$i$l$kJ8;zNs$r8!=P$7!"%&%'%V%5%$%H$,F|:"$I$l$@$1$N967b$r ($BCfN,(B)
$B!!(BiLogScanner$B$O!"%D!<%kMxMQe$G

$B!!%m%02r@O%D!<%k$G$9!#(BLAC $B@=!#(B

$B"#(B 2008.04.17

$B"#(B $B$$$m$$$m(B (2008.04.17)
(various)

$B"#(B $BDI5-(B

Secunia Research 14/04/2008 - ClamAV Upack Processing Buffer Overflow Vulnerability -

$B!!(BClamAV 0.92.2 $B$G$O$J$/(B 0.93 $B$,8x3+$5$l$?$N$G$9$M!#(B [Clamav-announce] announcing ClamAV 0.93$B!#8M0f$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B!!4XO"(B:

MacBook Air$B$r%O%C%-%s%0!"%3%s%F%9%H$G>!

$B!!(BSafari 3.1.1 $B$G=$@5$5$l$?!#(BSafari $B$G$O$J$/(B WebKit $B$N7g4Y$@$C$?!#(BCVE-2008-1026

$B"#(B About the security content of Safari 3.1.1
(Apple, 2008.04.17)

$B!!(B Safari 3.1.1 $BEP>l!#(B4 $B$D$N7g4Y$,=$@5$5$l$F$$$k!#Fb(B 2 $B$D$O(B Safari $B$G$O$J$/(B WebKit $B$N7g4Y!#(B MacBook Air $B$,96N,$5$l$?OC(B$B$N7g4Y$b=$@5$5$l$?$=$&$@!#(B

$B"#(B Firefox 2.0.0.14 $B%j%j!<%9%N!<%H(B
(mozilla.com, 2008.04.16)

$B!!(BFirefox 2.0.0.14 $BEP>l!#(BCritical $B$J7g4Y!"(BMFSA 2008-20: Crash in JavaScript garbage collector $B$,=$@5$5$l$F$$$k!#(BCVE-2008-1380 $B$3$N7g4Y$O(B Thunderbird 2.0.0.14 / SeaMonkey 1.1.10 $B$K$*$$$F$b=$@5$5$l$k$,!"$3$l$i$O$^$@EP>l$7$F$$$J$$!#(B

$B"#(B 2008.04.16

$B"#(B 2008.04.15

$B"#(B Secunia Research 14/04/2008 - ClamAV Upack Processing Buffer Overflow Vulnerability -
(secunia, 2008.04.14)

$B!!(BClamAV 0.92.1 $B0JA0$K7g4Y!#(Blibclamav/pe.c $B$N(B cli_scanpe() $B4X?t$G(B buffer overflow $B$,H/@8$9$k$?$a!"96N,(B Upack $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1100

$B!!$^$b$J$/8x3+$5$l$kM=Dj$N(B ClamAV 0.92.2 $B$G=$@5$5$l$k!#(B2008.03.10 $B0J9_!"(BPE $B%9%-%c%s%b%8%e!<%k$O(B remote $B$+$iL58z2=$5$l$F$$$k!#(B($B$C$F$I$&$d$C$F(B? $B%&%$%k%9Dj5A%U%!%$%k$G(B?)

2008.04.17 $BDI5-(B:

$B!!(BClamAV 0.92.2 $B$G$O$J$/(B 0.93 $B$,8x3+$5$l$?$N$G$9$M!#(B [Clamav-announce] announcing ClamAV 0.93$B!#8M0f$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B!!4XO"(B:

2008.04.29 $BDI5-(B:

$B"#(B $B$$$m$$$m(B (2008.04.15)
(various)

2008.05.15 $BDI5-(B:

$B!!(BDebian Bug report logs - #469296 - rxvt: [SECURITY] opens terminal on unspecified display (CVE-2008-1142) $B4XO"(B:

$B"#(B $BDI5-(B

Microsoft - 2008 $BG/(B 4 $B7n$N%;%-%e%j%F%#>pJs(B

$B!!(BMS08-021 exploit maker$B!#(B

$B:#F|$N%&%$%k%9%a!<%k(B (2008.04.14)

$B!!>e5-$N%a!<%k$O(B To: $B$d(B recipient $B$J$I$r$$$8$C$F$$$k$3$H$rL@5-!#

$B!!5~Bg$KMh$F$$$?$b$N$bF1$8$H$3$m(B 84.18.200.200 $B$+$i$@$C$?LOMM!#$?$@$7FbMF$O0[$J$k(B?!

$B!!(BSymantec blog $B$K$b=P$F$$$k!#(B

$B!!$5$-$[$I$b$&0lEY(B VirusTotal $B$7$F$_$?7k2L!#(B

$B!!%^%+%U%#!<$O(B Extra.dat $B$"$j$^$9!#(B

$B"#(B 2008.04.14

$B"#(B $B:#F|$N%&%$%k%9%a!<%k(B (2008.04.14)
($BN6Bg(B, 2008.04.14)

$B!!(BTo: $B$d(B recipient $B$J$I$r$$$8$C$F$"$k$1$I!"$3$s$J46$8!#(B 

Received: from mod.go.jp (unknown [84.18.200.200])
        by hiryu.st.ryukoku.ac.jp (Postfix) with ESMTP id B4235DEF24
        for <nobody@rins.ryukoku.ac.jp>; Mon, 14 Apr 2008 11:43:04 +0900 (JST)
Received: from 2E275A22C1E14FA[192.168.1.121] by mod.go.jp
  with SMTP id 45E4E03A; Mon, 14 Apr 2008 11:42:53 +1000
From: $BKI1R>J(B <infomod@mod.go.jp>
Subject: $BKI1R>J=j4I8x1WK!?M0lMw(B
To: "nobody" <nobody@rins.ryukoku.ac.jp>
Date: Mon, 14 Apr 2008 11:43:02 +0900
Content-Type: multipart/mixed;
 boundary="=_NextPart_2rfkindysadvnqw3nerasdf";
        charset="jis"
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

This is a multi-part message in MIME format

--=_NextPart_2rfkindysadvnqw3nerasdf
Content-Type: text/plain
Content-Transfer-Encoding: 7bit

$B4X783F0L(B

$B!!$*Hh$lMM$G$9!#(B
$B!!KI1R>J=j4I8x1WK!?M$K0[F0;v9`$,$"$j$^$7$?$N$G!"(B
4$B7n(B14$BF|IU$N:G?7HG$rE:IU$7$^$9(B


(attached file:0414.zip)

---------------------------
 Ministry of Defense
 Tel: +81-3-5366-3111
 Email: infomod@mod.go.jp
----------------------------

--=_NextPart_2rfkindysadvnqw3nerasdf
Content-Type: application/octet-stream;
        name="0414.zip"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
        filename="0414.zip"

UEsDBBQAAAAIAKBRjjjTFzu5Ui0AAACyAAAIAAAAMDQxNC54bHPsWwt0VNW53ifJhEl4JYAxpAop
($BCfN,(B)
AAAgAAAAeC0AADA0MTQuZXhlUEsFBgAAAAACAAIAbAAAAMBsAAAAAA==

--=_NextPart_2rfkindysadvnqw3nerasdf--

$B!!(B0414.zip $B$NCf?H(B: 

% unzip -l 0414.zip
Archive:  0414.zip
  Length     Date   Time    Name
 --------    ----   ----    ----
    45568  04-14-08 10:13   0414.xls
    45056  04-14-08 04:47   0414.exe
 --------                   -------
    90624                   2 files

$B!!(B0414.xls $B$H(B 0414.exe $B$r(B VirusTotal $B$K$+$1$F$_$?!#(B

$B!!$H$j$"$($:(B JPCERT/CC $B$K$OJs9p$7$?!#(B

2008.04.15 $BDI5-(B:

$B!!>e5-$N%a!<%k$O(B To: $B$d(B recipient $B$J$I$r$$$8$C$F$$$k$3$H$rL@5-!#

$B!!5~Bg$KMh$F$$$?$b$N$bF1$8$H$3$m(B 84.18.200.200 $B$+$i$@$C$?LOMM!#$?$@$7FbMF$O0[$J$k(B?!

$B!!(BSymantec blog $B$K$b=P$F$$$k!#(B

$B!!$5$-$[$I$b$&0lEY(B VirusTotal $B$7$F$_$?7k2L!#(B

$B!!%^%+%U%#!<$O(B Extra.dat $B$"$j$^$9!#(B

$B"#(B 2008.04.13

$B"#(B $BDI5-(B

Microsoft 2007 $BG/(B 11 $B7n$N%;%-%e%j%F%#>pJs(B

$B!!(BMS07-062 patch $B$rE,MQ$9$k$H!"(BWindows Server 2003 $B$G$O%a%b%j%j!<%/$,H/@8$9$k$=$&$G$9!#(BOn a Windows Server 2003-based computer that has the update from security bulletin MS07-062 installed, you may experience a memory leak in DNS (Microsoft KB946565) $B;2>H!#(B

Microsoft - 2008 $BG/(B 4 $B7n$N%;%-%e%j%F%#>pJs(B

$B!!4XO"(B:

$B"#(B Symantec Endpoint Protection 11.0 MR2 + Windows Vista / Server 2008 $B$GIT6q9g(B
(Microsoft, 2008.04.11)

$B!!(BSymantec Endpoint Protection 11.0 MR2 $B$r(B Windows Vista / Server 2008 $B$GMxMQ$9$k$H!"(BStop 0x000000E3 $B%(%i!<$,H/@8$9$kIT6q9g$,$"$k$=$&$G$9!#(B Windows $BB&$G$N(B NTFS file system exception handling $B$KLdBj$,$"$k$=$&$G!"(Bpatch $B$O$^$@$"$j$^$;$s!#(B

$B!!$7$+$7!"$G$O(B MR1 $B$KLa$;$P$$$$$+$H$$$&$H!"$=$l$O$=$l$GLdBj$,$"$k$+$b$7$l$^$;$s!#(B

2008.05.07 $BDI5-(B:

$B!!?7$?$J(B KB $B$,(B: Error message when Symantec Endpoint Protection MR2 quarantines a file in Windows Vista or in Windows Server 2008: "Stop 0x000000E3" (Microsoft KB951250)$B!#(BWindows Vista $BMQ$N(B patch $B$,$"$k$=$&$G$9!#(BKB951580 $B$HF1$8LdBj$N$h$&$J5$$,$9$k$N$@$1$I!"$J$

$B"#(B EMC DiskXtender $BJ}LL(B
(iDefense, 2008.04.10)

$B!!(BEMC DiskXtender $B$KJ#?t$N7g4Y!#(B

$B!!%5%]!<%H$+$i(B patch $B$rF~

$B"#(B 2008.04.12

$B"#(B 2008.04.11

$B"#(B $B$$$m$$$m(B (2008.04.11)
(various)

2008.04.24 $BDI5-(B:

$B!!(BAPSB08-12 - Update available for ColdFusion 8 CFC method access level issue (Adobe, 2008.04.08) $B$NF|K\8lHGEP>l(B: APSB08-12 - ColdFusion 8 CFC$B%a%=%C%I$N%"%/%;%9%l%Y%k$K4X$9$k%"%C%W%G!<%H8x3+(B (Adobe)

$B"#(B $BDI5-(B

$B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (950627) Microsoft Jet Database Engine (Jet) $B$N@H

$B!!4XO"(B: $B!V(BMicrosoft Jet$B!W$N$<$$ ($BF|7P(B IT Pro, 2008.04.11)$B!#(BAnother Reason to Patch Microsoft Jet Vulnerabilities (Symantec blog, 2008.03.20) $B$NK]Lu5-;v!#(B

Microsoft - 2008 $BG/(B 4 $B7n$N%;%-%e%j%F%#>pJs(B

$B!!(B Windows GDI$B$N@H]$K(B (computerworld, 2008.04.11)

$B"#(B 2008.04.10

$B"#(B Microsoft - 2008 $BG/(B 4 $B7n$N%;%-%e%j%F%#>pJs(B
(Microsoft, 2008.04.09)

$B!!6[5^(B x 5$B!"=EMW(B x 3$B!#(B

$B!!(Bpatch $B$,$"$k$N$GE,MQ$9$l$P$h$$!#(B

2008.04.11 $BDI5-(B:

$B!!(B Windows GDI$B$N@H]$K(B (computerworld, 2008.04.11)

2008.04.14 $BDI5-(B:

$B!!4XO"(B:

2008.04.15 $BDI5-(B:

$B!!(BMS08-021 exploit maker$B!#(B

2008.04.29 $BDI5-(B:

$B!!(BMS08-020 $B7g4Y$NH/8+MS08-020 : How predictable is the DNS transaction ID? (Security Vulnerability Research & Defense, 2008.04.09) $B$O4V0c$C$F$k$<$H

$B"#(B APSB08-11 - Flash Player update available to address security vulnerabilities
(Adobe, 2008.04.08)

$B!!(BFlash Player 9.0.115.0 $B0JA0(B / 8.0.39.0 $B0JA0!"(BFlex 3.0 $B0JA0!"(BAIR 1.0 $B0JA0$KJ#?t$N7g4Y!#(B

$B!!(BFlash Player 9.0.124.0 $B$G=$@5$5$l$F$$$k!#(B

2008.04.24 $BDI5-(B:

$B!!F|K\8lHG(B: APSB08-11 - Flash Player$B$N%;%-%e%j%F%#@H (Adobe)

2008.07.16 $BDI5-(B:

$B!!(BFlash Player 9.0.124.0 $B$r%$%s%9%H!<%k$7$?4D6-$G$O!"(BVeriSign $B$N!V%;%-%e%"%I%7!<%k!W(B(Flash $BHG(B) $B$r@5>o$K3NG'$G$-$J$$LOMM!#(B

$B!!(BVeriSign $B$O!"(BGIF $BHG$OLdBj$J$$$N$G(B GIF $BHG$r;H$C$F$/$l!"$H8@$C$F$$$k$h$&$G$9!#(B Benjamin $B$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

2008.07.23 $BDI5-(B:

$B!!%Y%j%5%$%s%;%-%e%"%I%7!<%k$N7o!"BP1~$5$l$?$h$&$G$9(B: $B%Y%j%5%$%s%;%-%e%"%I%7!<%k(B(Flash$B7A<0(B)$B$N8!>Z%Z!<%8$,I=<(=PMh$J$$;v>]$N2r>C$N$*CN$i$;(B (VeriSign, 2008.07.22)$B!#(BBenjamin $B$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B 2008.04.09

$B"#(B $BDI5-(B

$B$$$m$$$m(B (2008.02.05)

$B!!(BUltraVNC $B$N7o!#(B$B%j%b!<%HA`:n%U%j!<%=%U%H!V(BUltraVNC$B!W$K%;%-%e%j%F%#!&%[!<%k!$F|K\8l4D6-$G$NBP1~K!$r>R2p(B ($BF|7P(B IT Pro, 2008.04.09) $B$K$*$$$F!">e5-(B vncviewer $B$OF|K\8l%-!<%\!<%I$KBP1~$7$F$$$J$$7o$H$=$NBP1~$K$D$$$F!"(B $B;32\:Y$K2r@b$7$F$$$^$9!#%]%$%s%H$O$3$&$_$?$$(B:

  • $B;vA0$K(B UltraVNC 1.0.2 $BF|K\8lHG(B Release 2 $B$r:o=|$7!":F5/F0$7$?8e$K(B UltraVNC 1.0.4 RC14 $B$r%$%s%9%H!<%k$9$k(B ($B>e=q$-%$%s%9%H!<%k$O%@%a(B)
  • UltraVNC 1.0.4 RC14 $B$G$OF|K\8l%-!<%\!<%I$KBP1~$7$F$*$j!"@_Dj$9$l$PMxMQ$G$-$k(B ($B@_Dj$7$J$$$HMxMQ$G$-$J$$(B)

$B"#(B 2008.04.08

$B"#(B $BDI5-(B

mixi$B$,5,LsJQ99M=Dj!"F|5-$NL5CG=PHG$,2DG=$K(B

$B!!(B$B%_%/%7%#$NMxMQ5,Ls2~DjLdBj$,<($9(BCGM$B;~Be$N8"Mx=hM}$N$"$jJ}(B ($BF|7P(B BP, 2008.04.03)

$B"#(B [SA29665] CA Products Alert Notification Server Multiple Vulnerabilities
(Secunia, 2008.04.05)

$B!!(BCA Anti-Virus for the Enterprise (eTrust Antivirus) 7.1 / r8 / r8.1$B!"(B BrightStor ARCserve Backup r11 / r11.1 / r11.5$B!"(BCA Threat Manager for the Enterprise (eTrust Integrated Threat Management) r8 / r8.1 $B$K4^$^$l$k(B Alert Notification Server $B%5!<%S%9(B (Alert.exe 7.1.758.0 / 8.0.450.0 / 8.1.586.0) $B$KJ#?t$N7g4Y$,$"$j!"(Bremote $B$+$iG$0U$N%3!<%I$rCVE-2007-4620

$B!!=$@5%W%m%0%i%`$,8x3+$5$l$F$$$k$N$GE,MQ$9$l$P$h$$!#(B Security Notice for Alert Notification Server (CA) $B$r;2>H!#(B

$B"#(B HP USB Keys Shipped with Malware for your Proliant Server
(SANS ISC, 2008.04.07)

$B!!(BHP USB$B%U%m%C%T!<(B $B%I%i%$%V(B $B%-!<(B$B$N0lIt(B (?) $B$K%&%$%k%9$,F1:-$5$l$F$$$kLOMM!#(B

$B"#(B 2008.04.07

$B"#(B $BIT6q9g$H6[5^%a%s%F%J%s%9$K$D$-$^$7$F(I%%%$B$=$l$@$1!)(B
($B%V%m%0L1(B - $B%7%g%\!<%s(B, 2008.04.05)

$B!!(B$B%V%m%0L1(B$B$H$$$&%5%$%H$K$*$$$F!"(B2008 $BG/(B 2 $B7n0J9_$KJ#?t2s(B iframe $B$rA^F~$5$l$k967b$,9T$o$l$F$$$k$K$b$+$+$o$i$:!"MxMQ

$B!!%j%M!<%8%e;qNA<<$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B OpenSSH 5.0 Release Notes
(OpenSSH.com, 2008.04.03)

$B!!(BOpenSSH 5.0/5.0p1 $B=P$F$$$^$9!#8M0f$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B $B

CVE-2008-1483: Avoid possible hijacking of X11-forwarded connections by refusing to listen on a port unless all address families bind successfully.

$B"#(B 2008.04.04

$B"#(B $BDI5-(B

[SA29315] RealPlayer ActiveX Control "Console" Property Memory Corruption

$B!!(BUnpatched RealPlayer Vulnerability Being Exploited in the Wild (Symantec blog, 2008.04.03) $B$K$h$k$H!"(B $B$3$N7g4Y$O(B RealPlayer 11.0.2 $B$K4^$^$l$k(B rmoc3260.dll (6.0.10 .50) $B$G=$@5$5$l$F$$$k$=$&$@!#(BRealPlayer $B%@%&%s%m!<%I%Z!<%8(B$B$+$i(B RealPlayer11GOLD_ja.exe $B$r%@%&%s%m!<%I$7$F%$%s%9%H!<%k$7$F$_$?$H$3$m!"(BRealPlayer 11.0.2 $B$@$C$?!#(B

$B!!(BPoC

[openmya:038862] Re: $B@H

$B!!(B$B!V>pJs%;%-%e%j%F%#Aa4|7Y2|%Q!<%H%J!<%7%C%W%,%$%I%i%$%s!W$N(B2008$BG/HG$r8x3+(B $B!A%&%'%V%5%$%H1?1D (IPA, 2008.04.04)

2008$BG/(B3$B7nKv$^$G$K%=%U%H%&%'%"@=IJ5Z$S%&%'%V%5%$%H$N@H

$B!!(B$B%=%U%H%&%'%"Ey$N@HpJs$K4X$9$kFO=P>u67(B [2007$BG/Bh(B4$B;MH>4|!J(B10$B7n!A(B12$B7n!K(B] (IPA) $B$K$h$k$H!"(B2007 $BG/Kv$G(B 1123 + 626 = 1749 $B$J$N$G!"(B2008Q1 $B$O(B 2046 - 1749 = 297$B!#(B 2007$BG/$O(B

2007Q1 37 + 96 = 133
2007Q2 46 + 95 = 141
2007Q3 49 + 103 = 152
2007Q4 66 + 80 = 146

$B$J$N$G!"(B2008Q1 $B$N(B 297 $B$H$$$&?t;z$O!V$3$l$^$G$NG\!W$G$9$J!#?ME*;q8;$,BP1~$G$-$J$/$J$C$F$$$k$N$G$9$+$M$(!#(B

$B"#(B SYM08-009 - Symantec AutoFix Support Tool ActiveX Control Vulnerabilities
(Symantec, 2008.04.02)

$B!!(BNorton 360 version 1.0$B!"(BNorton AntiVirus / Norton Internet Security / Norton System Works 2006 $B!A(B 2008 $B$K4^$^$l$k(B Symantec AutoFix Tool $B$KMxMQ$5$l$k(B ActiveX $B%3%s%H%m!<%k(B (SYMADATA.DLL) $B$K(B 2 $Bu67$,H/@8$7F@$k!#(B

$B!!=$@5HG$N(B AutoFix Tool $B$O<+F0E*$K%$%s%9%H!<%k$5$l$k!#$^$?(B https://www-secure.symantec.com/techsupp/asa/install.jsp $B$+$i$bF~

$B"#(B $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#>pJs$N;vA0DLCN(B - 2008 $BG/(B 4 $B7n(B
(Microsoft, 2008.04.04)

$B!!6[5^(B: 5$B!"=EMW(B: 3 $B$H!":#7n$b@9$j$@$/$5$s$G$9!#(BWindows Vista SP1 / Server 2008 $B$bNc30$G$O$J$$$h$&$G!#(B

$B"#(B Changelog for Opera 9.27 for Windows
(Opera, 2008.04.04)

$B!!(BOpera 9.27 $BEP>l!#(B2 $B7o$N%;%-%e%j%F%#7g4Y$,=$@5$5$l$F$$$k!#(B

$B!!2C$($F!"%Q%9%o!<%IF~NO;~$N%-!<%\!<%I=hM}$,2~A1$5$l$F$$$k$=$&$@!#(B

$B"#(B 2008.04.03

$B"#(B $B$$$m$$$m(B (2008.04.03)
(various)

$B"#(B About the security content of QuickTime 7.4.5
(Apple, 2008.04.03)

$B!!(BQuickTime 7.4.5 $BEP>l!#(B11 $B

  • QuickTime for Java $B$K8"8B>e>:$r5v$97g4Y$,$"$k!#(B CVE-2008-1013

  • $B3+$/$HFCDj$N30It(B URL $B$X<+F0E*$K%"%/%;%9$9$k$h$&$J96N,(B QuickTime $B%`!<%S!<$r:n@.$9$k$3$H$,$G$-!"(B $B$3$l$K$h$C$F>pJsO31H$,H/@8$9$k!#(B CVE-2008-1014

  • data reference atom $B$N=hM}$K7g4Y$,$"$j(B buffer overflow $B$,H/@8!"96N,(B QuickTime $B%`!<%S!<$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1015

  • movie media track $B$N=hM}$K7g4Y$,$"$j%a%b%jGK2u$,H/@8!"96N,(B QuickTime $B%`!<%S!<$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1016

  • 'crgn' atom $B$N=hM}$K7g4Y$,$"$j(B buffer overflow $B$,H/@8!"96N,(B QuickTime $B%`!<%S!<$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1017

  • 'chan' atom $B$N=hM}$K7g4Y$,$"$j(B buffer overflow $B$,H/@8!"96N,(B QuickTime $B%`!<%S!<$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1018

  • PICT $B%l%3!<%I$N=hM}$K7g4Y$,$"$j(B buffer overflow $B$,H/@8!"96N,(B PICT $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1019

  • PICT $B2hA|$N=hM}$K$*$1$k%(%i!<=hM}$K7g4Y$,$"$j(B buffer overflow $B$,H/@8!"96N,(B PICT $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1020

  • $B%"%K%a!<%7%g%s(B CODEC $B$N=hM}$K7g4Y$,$"$j(B buffer overflow $B$,H/@8!"96N,%`!<%S!<%U%!%$%k$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1021

  • 'obji' atom $B$N=hM}$K7g4Y$,$"$j(B buffer overflow $B$,H/@8!"96N,(B QuickTime VR $B%`!<%S!<$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1022

  • Clip opcode $B$N=hM}$K7g4Y$,$"$j(B buffer overflow $B$,H/@8!"96N,(B PICT $B%U%!%$%k$K$h$C$FG$0U$N%3!<%I$rCVE-2008-1023

$B!!(BWindows $BHG$N(B Apple Software Update $B$G$b99?7$G$-$k$h$&$G$9!#$?$@$7!"(BiTunes $B$d(B Safari $B$r%$%s%9%H!<%k$7$F$$$J$/$F$b$=$l$i$N9`L\$,8=$l$k$N$GCm0U$7$^$7$g$&!#(B $B=|30@_Dj$b$G$-$J$$$7$J$"!#(BApple Software Update $B$N(B [$B%D!<%k(B] $B%a%K%e!<$K$O(B [$BA*Br$5$l$?99?7$rL5;k(B] $B$H$$$&$b$N$,$"$j$^$9$,(B ($BEDCg$5$s>pJs$"$j$,$H$&$4$6$$$^$9(B)$B!"$3$l!"(BApple Software Update $B$r=*N;$9$k$H8z2L$,>C$($A$c$&$_$?$$!#(B $B

$B"#(B 2008.04.02

$B"#(B 2008.04.01

$B"#(B WordPress 2.3.3 Invaded by Wily JavaScript
(trendmicro blog, 2008.03.31)

$B!!(BWordPress 2.3.3 $B$KG$0U$N(B JavaScript $B$rA^F~$5$l$k7g4Y$,$"$j!"%3%a%s%H$9$k$K$OEPO?$,I,MW$H$J$k$h$&$J%5%$%H$K$*$$$F!"9-HO0O$K967b$5$l$F$$$kLOMM!#(B patch $B$O$^$@$J$$$H$$$&!#2sHr:v$H$7$F$O(B:

As a workaround, users may want to close their registration feature. Also, be wary of third-party plug-ins you install in your blog sites.

$B"#(B $BDI5-(B

wnpa-sec-2008-02 - Multiple problems in Wireshark versions 0.99.2 to 0.99.8

$B!!=P$^$7$?(B: Wireshark 1.0 Released (wireshark.org, 2008.03.31)

$B"#(B OpenID.ne.jp$B$N!D(B
($B$F$/$F$/;e4,$-(B, 2008.03.30)

$B!!(Bhttp://www.openid.ne.jp/ $B$K7g4Y!#(B $B%"%+%&%s%H:n@.2hLL(B$B$G!"%?%0$D$-$NCM$rF~NO$G$-$F$7$^$&LOMM!#;vNc$K$D$$$F$O(B http://guest.openid.ne.jp/ $B$r;2>H!#(Bitochan $B$5$s>pJs$"$j$,$H$&$4$6$$$^$9!#(B

$B"#(B Vista$B!$L$8x3+$N(BFlash$B@H
($BF|7P(B IT Pro, 2008.03.31)

$B!!(BFlash Player ($B%P!<%8%g%sITL@(B) $B$K(B 0-day $B7g4Y$,$"$j!"$3$l$rDL$8$F(B Windows Vista $B$,96N,$5$l$?LOMM!#F1%3%s%F%9%H$G$O4{$K(B MacBook Air $B$,96N,$5$l$F$$$k(B$B$,!"$3$l$KB3$/@.2L!#2q>l$K$O(B Linux $B$b$"$C$?$N$@$,!"$"$^$jAj $B%O%C%-%s%0!&%3%s%F%9%H$G(BMac$B$H(BVista$B$O4YMn!=!=(BLinux$B$@$1$,L5=}(B (computerworld, 2008.03.31) $B$h$j(B:

$B!!(B400$BL>$K5Z$V;22C!$D$?$a$K967b%3!<%I$r=q$/$N$O!"H`$i$NBgH>$,7y$@$H9M$($?$=$&$@!#(B

$B!!F|K\8mLu!V(BLinux $B%^%s%I%/%;!W(B

[$B%;%-%e%j%F%#%[!<%k(B memo]
$B;d$K$D$$$F(B