SecurityFocus Newsletter #184 2003-2-10->2003-2-14

To: bugtraq-jp@securityfocus.com
Subject: SecurityFocus Newsletter #184 2003-2-10->2003-2-14
From: SAKAI Yoriyuki <sakai@lac.co.jp>
Date: Tue, 25 Feb 2003 20:36:59 +0900
Delivered-To: mailing list bugtraq-jp@securityfocus.com
Delivered-To: moderator for bugtraq-jp@securityfocus.com
List-Help: <mailto:bugtraq-jp-help@securityfocus.com>
List-Id: <bugtraq-jp.list-id.securityfocus.com>
List-Post: <mailto:bugtraq-jp@securityfocus.com>
List-Subscribe: <mailto:bugtraq-jp-subscribe@securityfocus.com>
List-Unsubscribe: <mailto:bugtraq-jp-unsubscribe@securityfocus.com>
Mailing-List: contact bugtraq-jp-help@securityfocus.com; run by ezmlm
References: <Pine.LNX.4.43.0302171204220.21909-100000@mail.securityfocus.com>
$B:d0f(B@$B%i%C%/$G$9!#(B

SecurityFocus Newsletter $BBh(B 184 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

---------------------------------------------------------------------------
BugTraq-JP $B$K4X$9$k(B FAQ($BF|K\8l(B):
http://www.securityfocus.com/popups/forums/bugtraq-jp/faq.shtml
$B!&(BSecurityFocus Newsletter $B$NOBLu$O(B BugTraq-JP $B$G0lH$/$@$5$$(B
---------------------------------------------------------------------------
---------------------------------------------------------------------------
SecurityFocus Newsletter $B$K4X$9$k(BFAQ($B1Q8l(B):
http://www.securityfocus.com/popups/forums/securityfocusnews/intro.shtml
BugTraq $B$K4X$9$k(B FAQ($B1Q8l(B):
http://www.securityfocus.com/popups/forums/bugtraq/faq.shtml
---------------------------------------------------------------------------
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B SecurityFocus $B$N5v2D$r3t<02qe$G9T$o$l$F$$$^$9!#(B
$B!&(BSecurityFocus Newsletter $B$NOBLu$r(B Netnews, Mailinglist, World Wide Web,
  $B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$NA4J80zMQ$r$*4j$$$7$^$9!#(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;$s$,!"(B
  $B=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurityFocus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k7A<0$N(B
  $B%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://online.securityfocus.com/archive/79
---------------------------------------------------------------------------
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02ql9g!"(BBugTraq-JP $B$X(B Errata $B$H$7$F=$@5(B
  $BHG$r$4Ej9FD:$/$+!"4F=$l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
---------------------------------------------------------------------------
This translation is encoded and posted in ISO-2022-JP.

$B86HG(B:
Date: Mon, 17 Feb 2003 12:06:49 -0700 (MST)
Message-ID: <Pine.LNX.4.43.0302171204220.21909-100000@mail.securityfocus.com>

SecurityFocus Newsletter #184
-----------------------------

This Issue is Sponsored by: GuardedNet - Transforming Security Data into
Knowledge

I. FRONT AND CENTER
	1. Are You Infected? Detecting Malware Infection
	2. Forensics on the Windows Platform, Part Two
	3. New Linux Support Policies are Ominous
	4. Suing Over Slammer
	5. The First Honeyd Challenge
	6. SecurityFocus DPP Program
	6. InfoSec World Conference and Expo/2003(March10-12,2003,Orlando,FL)
II. BUGTRAQ SUMMARY
	1. W3M Frame Enabled Browsing Cross Site Scripting Vulnerability
	2. W3M Image Attribute Cross Site Scripting Vulnerability
	3. HPUX Wall Message Buffer Overflow Vulnerability
	4. Red Hat Linux User Mode Linux SetUID Installation Vulnerability
	5. WinZip File Encryption Scheme Limited Key Space Vulnerability
	6. Gupta SQLBase EXECUTE Buffer Overflow Vulnerability
	7. Netgear FM114P Wireless Firewall File Disclosure Vulnerability
	8. Nethack Local Buffer Overflow Vulnerability
	10. Opera Username URI Warning Dialog Buffer Overflow Vulnerability
	11. Gallery Insecure File Permissions Vulnerability
	12. CryptoBuddy Unused Encryption Passphrase Vulnerability
	14. Opera opera.PluginContext Native Method Buffer Overflow...
	15. Eset Software NOD32 Antivirus Local Buffer Overflow Vulnerability
	16. Alt-N MDaemon/WorldClient Form2Raw Mail Header Spoofing...
	17. Cedric Email Reader Global Configuration Script Remote File...
	18. Cedric Email Reader Skin Configuration Script Remote File...
	19. RARLAB FAR File Manager Buffer Overflow Vulnerability
	20. Cisco IOS ICMP Redirect Routing Table Modification Vulnerability
	21. Ericsson HM220dp DSL Modem World Accessible Web Administration...
	22. APC apcupsd Client Syslog Format String Vulnerability
	23. Microsoft Windows NT/2000 cmd.exe CD Buffer Overflow...
	24. CGI Lite Perl Module Metacharacter Input Validation Vulnerability
	25. HP-UX landiag/lanadmin Local Buffer Overflow Vulnerability
	26. HP-UX rpc.yppasswd Unspecified Buffer Overflow Vulnerability
	27. HP-UX stmkfont Unspecified Buffer Overflow Vulnerability
	28. HP-UX rs.F3000 Unspecified Unauthorized Access Vulnerability
III. SECURITYFOCUS NEWS ARTICLES
	1. Mitnick Banned From Security Group
	2. A Short History of Computer Viruses and Attacks
	3. Make Love To Your IT Manager on Valentine's Day
	4. P2P virus fakes nude Zeta Jones pics
IV. SECURITYFOCUS TOP 6 TOOLS
	1. Intrusion Detection Exchange Architecture v1.0.1
	2. trollhunter v0.7
	3. FWReport v1.0.1
	4. CVS-SSH2 Plug-in for Eclipse v0.0.3
	5. StatFreak v0.5.3 beta
	6. elfsign v0.1.0

I. FRONT AND CENTER($BF|K\8lLu$J$7(B)
---------------------------------

II. BUGTRAQ SUMMARY
-------------------
1. W3M Frame Enabled Browsing Cross Site Scripting Vulnerability
BugTraq ID: 6793
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 07 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6793
$B$^$H$a(B:

W3M $B$O(B CUI $B7?(B Web $B%V%i%&%6$G$"$k!#$3$N%=%U%H%&%'%"$O(B Linux $B$d(B Unix $BM3Mh(B
$B$N(B OS $B$r4^$`$$$/$D$+$N4D6-8~$1$K3+H/$5$l$F$$$k!#(B

$B$3$N%=%U%H%&%'%"$G%U%l!<%`$,M-8z2=$5$l$F$$$k>l9g$K%/%m%9%5%$%H%9%/%j%W(B
$B%F%#%s%0$NLdBj$,B8:_$9$k$3$H$,H/8+$5$l$F$$$k!#FCDj$N(B HTML $B%?%0$K4X$9$k(B
$B%U%#%k%?%j%s%0$,IT==J,$G$"$k$?$a$K!"967b$N%f!<%6$N(B Cookie $B$KM3Mh(B
$B$9$kG'>ZMQ>pJs$d$=$NB>$N=EMW$J>pJs$rC%l9g(B
$B$K$N$_967b$KMxMQ2DG=$G$"$kE@$ON10U$5$l$k$Y$-$G$"$k!#(B

$B$3$NLdBj$O(B W3M 0.3.2 $B$K$*$$$FH/8+$5$l$F$$$k!#$3$l0JA0$N%P!<%8%g%s$bF1MM(B
$B$NLdBj$rJz$($F$$$k$H9M$($i$l$F$$$k!#(B

2. W3M Image Attribute Cross Site Scripting Vulnerability
BugTraq ID: 6794
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 07 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6794
$B$^$H$a(B:

W3M $B$O(B CUI $B7?(B Web $B%V%i%&%6$G$"$k!#$3$N%=%U%H%&%'%"$O(B Linux $B$d(B Unix $BM3Mh(B
$B$N(B OS $B$r4^$`$$$/$D$+$N4D6-8~$1$K3+H/$5$l$F$$$k!#(B

$BFCDj$N(B HTML $B%?%0$K4X$9$k%U%#%k%?%j%s%0$,IT==J,$G$"$k$?$a$K!"967b(B
$B$N%f!<%6$N(B Cookie $B$KM3Mh$9$kG'>ZMQ>pJs$d$=$NB>$N=EMW$J>pJs$rC%3. HPUX Wall Message Buffer Overflow Vulnerability
BugTraq ID: 6800
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 07 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6800
$B$^$H$a(B:

wall $B$OF10l$N%3%s%T%e!<%?Fb$NA4$F$N%f!<%6$K%a%C%;!<%8$rF1Js$9$k$?$a$N%"(B
$B%W%j%1!<%7%g%s$G$"$k!#(B

$BJs9p$K$h$k$H!"(BHP-UX $B$KF1:-$5$l$F$$$k(B wall $B%3%^%s%I$O%P%C%U%!%*!<%P!<%U(B
$B%m!<$r@8$8$k5?$$$,$"$k!#(B

$B$3$l$OF1JsBP>]$N%a%C%;!<%8$KBP$9$k6-3&%A%'%C%/$,IT==J,$G$"$k$?$a$K@8$8(B
$B$F$$$k!#$3$N%3%^%s%I$,%U%!%$%k$+$i%j%@%$%l%/%H$5$l$?!"BgNL$N%G!<%?$r4^(B
$B$`%a%C%;!<%8$rl9g!"=hM}$rB39T$G$-$J$$>uBV$K4Y$C$F$7$^$&$N$G(B
$B$"$k!#Js9p$K$h$k$H!"$3$NLdBj$O(B 9000 $B%P%$%H0J>e$NBg$-$5$N%G!<%?$r%U%!%$(B
$B%k$+$iLdBj$rJz$($k%P!<%8%g%s$N$3$N%3%^%s%I$X%j%@%$%l%/%H$9$k$3$H$K$h$j(B
$B:F8=2DG=$G$"$j!"$3$N:]!"967bl(B
$B=j$,GK2u$5$l$k2DG=@-$,$"$k!#(B

$B$3$NLdBj$O967b$KMxMQ2DG=$J%P%C%U%!%*!<%P!<%U%m!<$G$"$k$H8+$J$;!"967b4. Red Hat Linux User Mode Linux SetUID Installation Vulnerability
BugTraq ID: 6801
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 07 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6801
$B$^$H$a(B:

Red Hat Linux $B$O%U%j!<$KMxMQ2DG=$J!"%*!<%W%s%=!<%9$N(B OS $B$G$"$j!"(BRed Hat
Incorporated. $B$K$h$C$FG[I[$5$l$F$$$k!#(B

kernel-utils $B%Q%C%1!<%8Fb$N$"$k%W%m%0%i%`$K$h$j!"%m!<%+%k%f!<%6$,K\Mh8"(B
$B8B$r;}$?$J$$$K$b4X$o$i$:!"0U?^E*$J9T0Y$r4k$F$k$3$H$,2DG=$K$J$k2DG=@-$,(B
$B$"$k!#(B

$BFCDj$N>u672<$K$*$$$F!"(BRed Hat Linux $B$G$O(B User-Mode-Linux $B8_49@-5!G=$rMQ(B
$B$$$FK\Mh8"8B$r;}$?$J$$$K$b4X$o$i$:!"0U?^E*$J9T0Y$r4k$F$k$3$H$,2DG=$K$J(B
$B$k$H9M$($i$l$k!#(BUser-Mode-Linux $B%f!<%j%F%#%j%F%#$H6&$K%$%s%9%H!<%k$5$l(B
$B$kFCDj$N%3%^%s%I$K@_Dj$5$l$F$$$k%Q!<%_%C%7%g%s$N$?$a$K!"%m!<%+%k%f!<%6(B
$B$OK\Mh!"$h$j9b0L$N8"8B$,I,MW$H$5$l$F$$$k9T0Y$r967bBP>]$N%3%s%T%e!<%?$X(B
$B9T$&$3$H$,2DG=$K$J$j!"@x:_E*$K$O%m!<%+%k4D6-$N%;%-%e%j%F%#$X$N6<0R$r>7(B
$B$/2DG=@-$,$"$k!#(B

$B$3$NLdBj$O(B uml_net $B%W%m%0%i%`$K(B setuid $B%S%C%H$,ITE,@Z$K@_Dj$5$l$F$$$k$?(B
$B$a$K@8$8$F$$$k!#(Bkernel-utils $B%Q%C%1!<%8$,%$%s%9%H!<%k$5$l$k:]!"$3$N%W%m(B
$B%0%i%`$O(B setuid root $B$H$7$F%$%s%9%H!<%k$5$l$k!#%m!<%+%k%f!<%6$O%M%C%H%o!<(B
$B%/%$%s%?%U%'!<%9$N>uBV$r@)8f$9$k$?$a$K!"$"$k$$$O!"FCDj$N%M%C%H%o!<%/@_(B
$BDj$rA`:n$9$k$?$a$K$3$N%3%^%s%I$r5. WinZip File Encryption Scheme Limited Key Space Vulnerability
BugTraq ID: 6805
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 08 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6805
$B$^$H$a(B:

Winzip $B$O>&MQ@=IJ$H$7$FDs6!$5$l$F$$$k%U%!%$%k05=L%f!<%F%#%j%F%#$G$"$j!"(B
WinZip Computing, Inc. $B$K$h$C$FJ]o$=$&$"$k$Y$-(B 2^(12*8)
$B$NHO0OFb$+$i(B 2^(3*8) $B$NHO0O$X69$^$C$F$7$^$&$N$G$"$k!#$3$l$K$h$j!"0E9f2=(B
$B$5$l$?806u4V$NA4BN$KBP$9$k;n9T$r@.8y$5$;$F$7$^$&;q8;NL$r8:>/$5$;!"7k2L(B
$B$H$7$F$3$N%=%U%H%&%'%"$K$h$k0E9f2=:Q$_%U%!%$%k$NI|9f$,2DG=$K$J$C$F$7$^(B
$B$&$H9M$($i$l$k!#(B

6. Gupta SQLBase EXECUTE Buffer Overflow Vulnerability
BugTraq ID: 6808
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6808
$B$^$H$a(B:

Gupta SQLBase $B$O(B Microsoft Windows $B4D6-!"(BNovell Netware $B4D6-$G2TF0$9$k(B
$B$h$&$K@_7W$5$l$?AH$_9~$_7?(B SQL $B%G!<%?%Y!<%9%=%U%H%&%'%"$G$"$k!#(B

$B$3$N%=%U%H%&%'%"$K$O(B EXECUTE $B%3%^%s%I$r/$J$/$H$b(B 700 $B%P%$%H$ND9$5$N!"Hs>o$KD9$$CM$r%Q%i(B
$B%a!<%?$H$7$FM?$($k$3$H$K$h$j!"$3$NLdBj$rMxMQ$9$k967b$r4k$F$k$3$H$,2DG=(B
$B$G$"$k!#$3$NLdBj$rMxMQ$9$k967b$K$h$j!"$3$N%=%U%H%&%'%"$O%/%i%C%7%e$7!"(B
$B967b:3J$5$l$?8"8B$G\$G$"$k!#(B

7. Netgear FM114P Wireless Firewall File Disclosure Vulnerability
BugTraq ID: 6807
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6807
$B$^$H$a(B:

Netgear FM114P Cable/DSL Prosafe 802.11b Wireless Firewall $B$O$$$/$D$+$N(B
$B5!:`$G(B 1 $B$D$N%$%s%?!<%M%C%H@\B3$r6&M-2DG=$K$9$k%"%W%i%$%"%s%95!4o$G$"$k!#(B
$B$3$N5!4o$K$O%U%!%$%"%&%)!<%k5!G=$bHw$o$C$F$$$kB>!"4IM}MQ$N(B Web $B%$%s%?%U%'!<(B
$B%9$,Hw$o$C$F$$$k!#(B

$B$3$N5!4o$N(B Web $B$r2p$9$k4IM}MQ%$%s%?%U%'!<%9$K$O!"K\MhJ]8n$5$l$?HO0O30$N(B
$B%G%#%l%/%H%j$XAjBPE*$K%"%/%;%9$7F@$kLdBj(B (directory traversal vulnerability)
$B$,B8:_$9$k!#(B

$B$3$N5!4o$N%U%!%$%"%&%)!<%k5!G=$OE,@Z$K(B URL $B$X$N%j%/%(%9%H$r%U%#%k%?%j%s(B
$B%0$7$F$$$J$$!#$3$N$?$a!"%U%!%$%"%&%)!<%k5!G=$N(B /upnp/service/ $B%G%#%l%/(B
$B%H%j$+$i%$%s%?%U%'!<%9$r5/F0$9$k$3$H$K$h$j!"G'>Z$r9T$C$F$$$J$$%f!<%6$O(B
$BK\MhJ]8n$5$l$?HO0O30$N%G%#%l%/%H%j$XAjBPE*$K%"%/%;%9$9$k$?$a$K%(%9%1!<(B
$B%W$5$l$?J8;zNs$rMxMQ$7!"$3$N%G%#%l%/%H%j$NHO0O30$K%"%/%;%92DG=$K$J$k!#(B
$B0J2<$O@_Dj%U%!%$%k$NFbMF$rF~http://IP$B%"%I%l%9$"$k$$$O%[%9%HL>(B:<port>/upnp/service/%2e%2e%2fnetgear.cfg

$B$3$NLdBj$K$h$j!"G'>Z$r9T$C$F$$$J$$%f!<%6$,$3$N5!4o$N@_Dj%U%!%$%k$rF~$N=EMW$J>pJs$rF~$N%P!<%8%g%s$bF1MM$NLdBj$rJz$($k2DG=@-$,$"$k!#(B

8. Nethack Local Buffer Overflow Vulnerability
BugTraq ID: 6806
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6806
$B$^$H$a(B:

Nethack $B$O(B Red Hat Linux $B$r4^$`!"$$$/$D$+$N(B Linux $B%G%#%9%H%j%S%e!<%7%g(B
$B%s$KF1:-$5$l$F$$$k%2!<%`$G$"$k!#Js9p$K$h$k$H!"$3$N%2!<%`$O8"8B9_3J=hM}(B
$B$K<:GT$7$F$$$k$?$a$K!"7k2L$H$7$F@x:_E*$K8"8B>:3J$r0z$-5/$3$92DG=@-$,$"(B
$B$k$3$H$,H/8+$5$l$F$$$k!#(B

$B$3$N%2!<%`$,(B -s $B%3%^%s%I%i%$%s%*%W%7%g%s$rH<$C$F5/F0$5$l$k:]!"%P%C%U%!(B
$B%*!<%P!<%U%m!<$,@8$8$k$3$H$,H/8+$5$l$F$$$k!#>/$J$/$H$b(B 1000 $B8D$NJ8;zNs(B
$B$+$i@.$k!"Hs>o$KD9$$J8;zNs$r(B /usr/games/lib/nethackdir/nethack $B%3%^%s%I(B
$B$N(B -s $B%*%W%7%g%s$X$N%Q%i%a!<%?$H$7$FM?$($k$3$H$G!"%a%b%jFbMF$rGK2u2DG=(B
$B$G$"$k!#(B

$B$3$NLdBj$rMxMQ$9$k967b$r9T$&$3$H$K$h$j!"967be=q$-2DG=$K$J$j!"7k2L$H$7$F967bl9g!"(Bgames $B%0%k!<%W$X$N8"8B>:3J$,0z$-5/$3$5$l$k2DG=@-$,$"$j!"$3$N7k2L(B
$B$H$7$FJ]B8:Q$N%2!<%`>pJs$NGK2u$d%G%#%9%/NN0h$N2aBg$J>CLW$,0z$-5/$3$5$l(B
$B$k2DG=@-$,$"$k!#(B

9. CryptoBuddy Predictable Encrypted Passphrase Weakness
BugTraq ID: 6810
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6810
$B$^$H$a(B:

CryptoBuddy $B$O%U%!%$%k$r0E9f2=$9$k$?$a$K@_7W$5$l$?%;%-%e%j%F%#%=%U%H%&%'(B
$B%"$G$"$k!#$3$N%=%U%H%&%'%"$O(B Microsoft Windows $B4D6-$GMxMQ$9$k$?$a$K@_7W(B
$B$5$l$F$$$k!#(B

$BJs9p$K$h$k$H!"$3$N%=%U%H%&%'%"$K$*$$$F%Q%9%U%l!<%:$N0E9f2=$r9T$&$?$a$N(B
$B%"%k%4%j%:%`$O@H\:Y$r<($9$J$i$P!"%Q%9%U%l!<%:$O(B 4 $B%P%$(B
$B%H$N%V%m%C%/$KJ,3d$5$l!"10. Opera Username URI Warning Dialog Buffer Overflow Vulnerability
BugTraq ID: 6811
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6811
$B$^$H$a(B:

Opera $B$OMM!9$J(B Unix $B$d(B Linux $B%G%#%9%H%j%S%e!<%7%g%s!"(BMicrosoft Windows
$B4D6-$r4^$`!"?tB?$/$NF0:n4D6-$GMxMQ2DG=$J(B Web $B%/%i%$%"%s%H$G$"$k!#(B

$B%;%-%e%j%F%#3NJ]$rL\E*$H$7$F!"$3$N%=%U%H%&%'%"$O(B URI $B$N0lIt$K%f!<%6L>$,(B
$B4^$^$l$k%O%$%Q!<%j%s%/$K%"%/%;%9$5$l$k:]$K$I$N$h$&$J>l9g$G$"$C$F$b%f!<(B
$B%6$K7Y9p%a%C%;!<%8$rI=<($9$k!#$7$+$7!"%f!<%6L>$r7Y9p%a%C%;!<%8$NCf$K4^(B
$B$^$l$?>uBV$GI=<($9$k$?$a$K%m!<%+%k$N%P%C%U%!$X%3%T!<$9$k:]!"%f!<%6L>$N(B
$BD9$5$K4X$9$kBEEv@-$N3NG'=hM}$,9T$o$l$F$$$J$$$N$G$"$k!#(B

$B$3$N$?$a!"%O%$%Q!<%j%s%/Fb$KHs>o$KD9$$%f!<%6L>$r4^$a$k$3$H$K$h$j!"LdBj(B
$B$rJz$($k4X?t$N%9%?%C%/%U%l!<%`$r>e=q$-$9$k2DG=@-$,$"$k%P%C%U%!%*!<%P!<(B
$B%U%m!<$,0z$-5/$3$5$l$k$N$G$"$k!#967be$G%3!<%I$r$N4D6-$GF0:n$9$k%P!<%8%g%s$K$*$$$F$b1F6A$r5Z$\$9$+$I$&$+(B
$B$K$D$$$F$OL$>\$G$"$k!#(B

11. Gallery Insecure File Permissions Vulnerability
BugTraq ID: 6809
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6809
$B$^$H$a(B:

Gallery $B$O(B PHP $B$rMxMQ$7$F3+H/$5$l$?(B Web $B%$%s%?%U%'!<%9$rHw$($k\:Y$r<($9$J$i$P!"$3$N%=%U(B
$B%H%&%'%"$O(B Web $B%5!<%P$N$N%f!<%6$N(B Gallery $B%"%k%P%`$X$N%"%/%;%98"$rF@$k2DG=@-$,$"$k!#(B

$B$3$NLdBj$rMxMQ$7$F(B Web $B%5!<%P$r2p$7$F0-0U$"$k%9%/%j%W%H$rZ$rH<$o$:$K=EMW$J%U%!%$%k$NFbMF$K%"%/%;%9$9$k(B
$B7k2L$r>7$/$3$H$,2DG=$G$"$k!#(B

$B$3$NLdBj$O(B Gallery $B%P!<%8%g%s(B 1.3.3 $B$KJs9p$5$l$?!#0JA0$N%P!<%8%g%s$,1F(B
$B6A$r\$G$"$k!#(B

12. CryptoBuddy Unused Encryption Passphrase Vulnerability
BugTraq ID: 6812
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6812
$B$^$H$a(B:

CryptoBuddy $B$O%U%!%$%k$r0E9f2=$9$k$?$a$K@_7W$5$l$?%;%-%e%j%F%#%=%U%H%&%'(B
$B%"$G$"$k!#$3$N%=%U%H%&%'%"$O(B Microsoft Windows $B4D6-$G$NMxMQ$rA[Dj$7$F$$(B
$B$k!#(B

$B$3$N%=%U%H%&%'%"$K7k2L$H$7$F967bpJs$rK5]$N%U%!(B
$B%$%k$rI|9f2=2DG=$G$"$k$H?d;!$5$l$k!#(B

$B$3$NLdBj$rMxMQ$9$k967b$N7k2L$H$7$F!"=EMW$J%U%!%$%k$NO31L$r>7$/2DG=@-$,(B
$B$"$k!#$3$NJ}K!$GF@$i$l$?A4$F$N>pJs$O!"967be$d%f!<%6$KBP$7$FB>$N967b$r4k$F$k$?$a$KMxMQ$5$l$k2DG=@-$,$"$k!#(B

$BL$3NG'$G$O$"$k$,!"%U%!%$%k$K3JG<$5$l$?%f!<%6$K$h$C$FM?$($i$l$?%Q%9%U%l!<(B
$B%:$O!"$3$N%=%U%H%&%'%"$N%"%k%4%j%:%`$r;HMQ$9$k%U%!%$%k$NI|9f2=$r9T$&$?(B
$B$a$K;HMQ$5$l$k$H9M$($i$l$k!#(B

$B$3$NLdBj$O(B CryptoBuddy 1.2 $B0JA0$N%P!<%8%g%s$GJs9p$5$l$F$$$k!#(B

13. CryptoBuddy Long Passphrase Truncation Weakness
BugTraq ID: 6815
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6815
$B$^$H$a(B:

CryptoBuddy $B$O%U%!%$%k$r0E9f2=$9$k$?$a$K@_7W$5$l$?%;%-%e%j%F%#%=%U%H%&%'(B
$B%"$G$"$k!#$3$N%=%U%H%&%'%"$O(B Microsoft Windows $B4D6-$G$NMxMQ$rA[Dj$7$F$$(B
$B$k!#(B

$BJs9p$K$h$k$H!"$3$N%=%U%H%&%'%"$O(B 55 $BJ8;z0J>e$ND9$5$G%Q%9%U%l!<%:$r@Z$j(B
$B14. Opera opera.PluginContext Native Method Buffer Overflow Vulnerability
BugTraq ID: 6814
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6814
$B$^$H$a(B:

Opera $B$O(B UNIX $B$*$h$S(B Linux $B%G%#%9%H%j%S%e!<%7%g%s!"(BMicrosoft Windows $B$r(B
$B4^$`MM!9$J4D6-$GMxMQ2DG=$J(B Web $B%/%i%$%"%s%H%=%U%H%&%'%"$G$"$k!#(B

$B$3$N%=%U%H%&%'%"$O%M%$%F%#%V%a%=%C%I$r4^$`?.Mj:Q$_$N(B Java $B%/%i%9(B
'opera.PluginContext' $B$rF1:-$7$F$$$k!#Js9p$K$h$k$H!"$3$N%=%U%H%&%'%"$O(B
$B%P%C%U%!%*!<%P!<%U%m!<$NLdBj$rJz$($F$$$k!#$3$NLdBj$O(B 'opera.PluginContext'
$B%/%i%9$N(B 'showDocument' $B%a%=%C%I$KB8:_$9$k!#Hs>o$KD9$$(B URL $BJ8;zNs$r4^$`(B
URL $B%*%V%8%'%/%H$,$3$N%a%=%C%I$KEO$5$l$?>l9g!"(BJVM $B$*$h$S%V%i%&%6$,%/%i%C(B
$B%7%e$9$k!#$3$l$O%M%$%F%#%V%a%=%C%I(B (C $B8@8l$rMxMQ$7$F3+H/2DG=(B) $BFb$N%P%C(B
$B%U%!%*!<%P!<%U%m!<$K$h$jH/@8$9$k2DG=@-$,$"$k!#(B

$BJs9p$K$h$k$H!"$3$NLdBj$O(B Microsoft Windows $B8~$1$N(B Opera $B$KB8:_$9$k!#B>(B
$B$N4D6-$G$b1F6A$r\$G$"$k!#$3$NLdBj$r9T$&$?$a$K$O(B Java
$B%5%]!<%H$,M-8z$K$J$C$F$$$kI,MW$,$"$j!"967b$rKI$0$?$a$KL58z$K$9$k$3$H$,(B
$B2DG=$G$"$k!#(B

15. Eset Software NOD32 Antivirus Local Buffer Overflow Vulnerability
BugTraq ID: 6803
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 10 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6803
$B$^$H$a(B:

Eset Software $B$N(B NOD32 Antivirus System $B$O%W%i%C%H%U%)!<%`$K0MB8$7$J$$(B
$B%&%$%k%9BP:v%"%W%j%1!<%7%g%s$G$"$k!#$3$N%=%U%H%&%'%"$O(B Microsoft Windows$B!"(B
Linux $B$*$h$S(B BSD $BM3Mh$N(B OS $B$r4^$`MM!9$J4D6-$GMxMQ2DG=$G$"$k!#(B

$BLdBj$O(B Linux $B$*$h$S(B UNIX $B4D6-8~$1$N(B NOD32 $B$KH/8+$5$l$?!#6-3&%A%'%C%/$,(B
$B==J,$G$O$J$$$?$a$K!"$3$N%=%U%H%&%'%"$,Hs>o$KD9$$%U%!%$%k%7%9%F%`%Q%9$r(B
$B=hM}$9$k:]$K%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k!#FC$K!"(B500 $B%P%$%H0J>e$N%G!<(B
$B%?$r4^$`%Q%9L>$,%a%b%jFbMF$NGK2u$r0z$-5/$3$9$H9M$($i$l$k!#(B

$B$3$N%=%U%H%&%'%"$rMxMQ$7$F0-0U$"$k>l=j$r%9%-%c%s$9$k$h$&$K%f!<%6$rM6F3(B
$B$9$k$3$H$K$h$j!"$3$NLdBj$rMxMQ$9$k967b$r9T$&$3$H$,2DG=$G$"$k!#Hs>o$KD9(B
$B$$%Q%9$,$3$N%=%U%H%&%'%"$K$h$j=hM}$5$l$k:]$K!"=EMW$J%a%b%jFbMF$NGK2u$r(B
$B0z$-5/$3$9!#%3!<%I$r16. Alt-N MDaemon/WorldClient Form2Raw Mail Header Spoofing Vulnerability
BugTraq ID: 6816
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 07 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6816
$B$^$H$a(B:

MDaemon $B$O(B Microsoft Windows $B8~$1$N%a!<%k%5!<%P$G$"$k!#$3$N%=%U%H%&%'%"(B
$B$O(B Web $B%$%s%?%U%'!<%9$rHw$($kEE;R%a!<%k%/%i%$%"%s%H$G$"$k(B WorldClient $B$r(B
$BF1:-$7$F$$$k!#(B

Alt-N MDaemon/Worldclient $B$O%j%b!<%H$N%f!<%6$,%X%C%@$r56$C$?%a!<%k$rAw(B
$B?.2DG=$G$"$k$H$$$&LdBj$rJz$($k5?$$$,$"$k!#(B

MDaemon $B$N(B WorldClient $B%3%s%]!<%M%s%H$O(B 'Form2Raw.exe' $B%f!<%F%#%j%F%#$r(B
$BF1:-$7$F$*$j!"%U%)!<%`Fb$KEj9F$7$?%G!<%?$+$iEE;R%a!<%k$r:n@.$9$k$?$a$K(B
$B;HMQ$5$l$k!#%j%b!<%H$N%f!<%6$OJLL>(B 'Form2Raw.cgi' $B$r2p$7$F(B Web $B>e$+$i%"(B
$B%/%;%92DG=$J$3$N%f!<%F%#%j%F%#$r2p$7$F0-0U$"$k%U%)!<%`$rEj9F$9$k2DG=@-(B
$B$,$"$j!"967b17. Cedric Email Reader Global Configuration Script Remote File
Include Vulnerability
BugTraq ID: 6820
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 09 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6820
$B$^$H$a(B:

Cedric Email Reader $B$O(B Web $B%a!<%k%"%W%j%1!<%7%g%s$G$"$k!#$3$N%=%U%H%&%'(B
$B%"$O(B PHP $B$rMxMQ$7$Fe$GF0:n(B
$B$7!"$^$?(B Microsoft Windows $B$K$*$$$F$bF0:n$9$k!#(B

$BJs9p$K$h$k$H!"(BCedric Email Reader $B$O%j%b!<%H$N967bu672<$K$*$$$F!"%j%b!<%H$N967buBV$r0z$-5/$3$9$3$H$,2DG=$G$"$k$H?d(B
$B;!$5$l$k!#(B

$B%$%s%/%k!<%I$5$l$k%j%b!<%H%U%!%$%k$,(B PHP $B%9%/%j%W%H$N>l9g!"$3$NLdBj$r(B
$BMxMQ$9$k967b$,(B Web $B%5!<%P$NZ(B
$B$G$"$k!#(B

18. Cedric Email Reader Skin Configuration Script Remote File Include Vulnerability
BugTraq ID: 6818
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 09 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6818
$B$^$H$a(B:

Cedric Email Reader $B$O(B Web $B%a!<%k%"%W%j%1!<%7%g%s$G$"$k!#$3$N%=%U%H%&%'(B
$B%"$O(B PHP $B$rMxMQ$7$Fe$GF0:n(B
$B$7!"$^$?(B Microsoft Windows $B$K$*$$$F$bF0:n$9$k!#(B

$BJs9p$K$h$k$H!"(BCedric Email Reader $B$O%j%b!<%H$N967bu672<$K$*$$$F!"%j%b!<%H$N967buBV$r0z$-5/$3$9$3$H$,2DG=$G$"$k$H?d;!$5$l(B
$B$k!#(B

$B%$%s%/%k!<%I$5$l$k%j%b!<%H%U%!%$%k$,(B PHP $B%9%/%j%W%H$N>l9g!"$3$NLdBj$r(B
$BMxMQ$9$k967b$,(B Web $B%5!<%P$NZ(B
$B$G$"$k!#(B

19. RARLAB FAR File Manager Buffer Overflow Vulnerability
BugTraq ID: 6822
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 11 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6822
$B$^$H$a(B:

FAR $B$O!"(BMicrosoft Windows $B4D6-8~$1$K3+H/$5$l$?%U%!%$%k%^%M!<%8%c$G$"$k!#(B
$B$3$N%=%U%H%&%'%"$K$O!"(BPARLAB $B$K$h$j3+H/$5$l$F$$$k!#(B

$B$3$N%=%U%H%&%'%"$K$O%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$kLdBj$,Js9p$5$l$F$*(B
$B$j!"7k2L$H$7$F(B DoS $B>uBV$K4Y$k2DG=@-$,$"$k!#$3$NLdBj$O!"%G%#%l%/%H%j%Q(B
$B%9$,0z$-EO$5$l$k:]$K!"$3$N%=%U%H%&%'%"$K$h$j=hM}$5$l$k6-3&%A%'%C%/$,==(B
$BJ,$K9T$o$J$$$?$a$K@8$8$k!#FC$K!"%Q%9$K(B 260 $B0J>e$NJ8;zNs$,0z$-EO$5$l$k(B
$B>l9g!"%=%U%H%&%'%"$,%/%i%C%7%e$9$k$H?d;!$5$l$k!#(B

$B%m!<%+%k$N967be$K$9$k$3$H$,2DG=$G$"$k!#967b$rA[Dj$7$F$$$J$$!"(B
$B$3$l$i$N%U%)%k%@Fb$K$"$k%3%s%F%s%D$N1\Mw$r;n$_$k%f!<%6$O!"%P%C%U%!%*!<(B
$B%P!<%U%m!<$r0z$-5/$3$7!"7k2L$H$7$F$3$N%=%U%H%&%'%"$r%/%i%C%7%e$5$;$k2D(B
$BG=@-$,$"$k!#(B

20. Cisco IOS ICMP Redirect Routing Table Modification Vulnerability
BugTraq ID: 6823
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 11 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6823
$B$^$H$a(B:

Internet Operating System (IOS) $B$O!"(BCisco $B%k!<%?$K;HMQ$5$l$F$$$k%U%!!<(B
$B%`%&%'%"$G$"$k!#$3$N5!4o$O(B Cisco $B$K$h$C$FHNGd!"J]l9g!"(B
$B0-0U$"$k(B ICMP $B%j%@%$%l%/%H%Q%1%C%H$ro(B ICMP $B%j%@%$%l%/%H%a%C%;!<%8$O!"M-8z$J%k!<(B
$B%F%#%s%0$d!"?75,$N%k!<%F%#%s%0!"$"$k$$$O%k!<%F%#%s%0$NJQ99$r<($9$?$a$K(B
$BAw?.$5$l$k!#967be%m!<%+%k%5%V%M%C%H30$N$$$:$l$NAw?.@h$X$N%5!<%S(B
$B%9$r5qH]$5$;$k$3$H$,2DG=$G$"$k!#$J$*!"$3$NLdBj$rMxMQ$9$k967b$r9T$&$?$a(B
$B$K$O!"(BIP $B%k!<%F%#%s%0$,L@<(E*$KLdBj$rJz$($k%P!<%8%g%s$N(B IOS $B$r2TF0$5$;(B
$B$F$$$k%k!<%?$GMxMQ$G$-$J$$>uBV!"$D$^$j!"%k!<%?$O%M%C%H%o!<%/Fb$G$"$k(B 1
$BBf$N%3%s%T%e!<%?$H$7$FB8:_$7$F$$$k>uBV$G$"$kI,MW$,$"$k!#(B

$B967b21. Ericsson HM220dp DSL Modem World Accessible Web Administration Interface Vulnerability
BugTraq ID: 6824
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 11 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6824
$B$^$H$a(B:

Ericsson HM220dp DSL Modem $B$O!"2HDm$d>.5,LO$N%*%U%#%94D6-$G;HMQ$5$l$k(B
$B%V%m!<%I%P%s%I%b%G%`$G$"$k!#(B

$B$3$N%b%G%`$O!"%j%b!<%H$+$i4IM}$*$h$S@_Dj$,2DG=$J(B Web $B%$%s%?%U%'!<%9$r(B
$B;HMQ$7$F$$$k!#$3$N%$%s%?%U%'!<%9$K$O!"%f!<%6$,G'>Z$r9T$&$3$H$J$/@\B32D(B
$BG=$JLdBj$,B8:_$9$k!#$5$i$K$3$N%b%G%`$G$O%f!<%6$O$$$+$J$kG'>ZuBV$K4Y$i$;$k$?$a$K@_Dj$r2~JQ$9$k2DG=@-$,$"(B
$B$k!#(B

22. APC apcupsd Client Syslog Format String Vulnerability
BugTraq ID: 6828
$B%j%b!<%H$+$i$N:F8=@-(B: $BL$>\(B
Date Published: Feb 11 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6828
$B$^$H$a(B:
Apcupsd $B$O!"(BLinux $B5Z$S(B BSD $BM3Mh$N(B OS $B$G(B APC (American Power Conversion)
$B@=(B UPS ($BL5DdEEEE8;(B) $B$N%Q%o!<%^%M!<%8%a%s%H5!G=$rDs6!$9$k!#(B

Apcupsd $B%/%i%$%"%s%H$K$O967be$G$N8"8B>:3J$,2DG=$K$J$kLdBj$,H/8+$5$l$F$$$k!#(B

'apclog.c' $BFb$N(B 'log_event' $B4X?t$K$O%;%-%e%"$G$O$J$$J}K!$G(B syslog() $B4X(B
$B?t$N8F$S=P$7$r9T$&%$%s%9%?%s%9$,4^$^$l$F$$$k!#$3$N%W%m%0%i%`>e$N8m$j$K(B
$B$h$j!"967bl9g!"967b23. Microsoft Windows NT/2000 cmd.exe CD Buffer Overflow Vulnerability
BugTraq ID: 6829
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 11 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6829
$B$^$H$a(B:

Microsoft Windows NT 4.0 $B$*$h$S(B Windows 2000 $B$O%3%^%s%I%$%s%?%W%j%?$H(B
$B$7$F(B cmd.exe $B$r;HMQ$7$F$$$k!#(B

$BJs9p$K$h$k$H!"(BWindows API $B$O(B 256 $B8D$NJ8;zNs0J>e$r4^$`%Q%9$N=hM}$rE,@Z$K(B
$BA0$K4^$`%G%#%l(B
$B%/%H%j$X%+%l%s%H%G%#%l%/%H%j$r0\F0$9$k$?$a$Ke$NJ8;zNs$rL>A0$K4^$`%G%#%l%/%H%j$X%+%l%s%H%G%#%l(B
$B%/%H%j$r0\F0$5$;$?>l9g(B($BNc(B: C:\<200$B8D$N(BA>\<57$B8D0J>e$N(BB>\)$B!"(Bcmd.exe $B$O%/(B
$B%i%C%7%e$9$k!#Js9p$K$h$k$H!"(B2 $BEYL\$K(B cd $B%3%^%s%I$,e=q$-$5$l$k!#$3$N:](B EIP $B$,>e=q$-$5$l$k2DG=@-$,$"$j!"(B
$B@x:_E*$K$O%3!<%I$NuBV(B (jailed) $B$K4Y$C$F$7$^$&!#(B
$B$3$N>l9g!"(Bcd $B%3%^%s%I$r$5$i$KMxMQ$7$F(B ($BNc(B: cd ..) $B%+%l%s%H%G%#%l%/%H%j(B
$B$r0\F0$9$k$3$H$OIT2DG=$G$"$k!#(B

$B0U?^$9$k%G%#%l%/%H%j$KBP$7$FAjBPE*$K%G%#%l%/%H%j$r0\F0$7!"=hM}$r9T$&%9(B
$B%/%j%W%H$O@x:_E*$K$3$NLdBj$N1F6A$,5Z$V2DG=@-$,$"$k!#(B

24. CGI Lite Perl Module Metacharacter Input Validation Vulnerability
BugTraq ID: 6833
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 11 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6833
$B$^$H$a(B:

CGI Lite $B$O%U%j!<$KMxMQ2DG=$J(B Perl $B$N%b%8%e!<%k$G$"$j!"(BWeb $B%U%)!<%`$N%G(B
$B%3!<%I$H>pJs$N$N(B Perl $B4X?t$G;HMQ$5$l$kA0$K!"(B
$B30It$+$iM?$($i$l$?F~NOCM$O==J,$K%U%#%k%?%j%s%0$5$l$J$$2DG=@-$,$"$k!#$3(B
$B$NLdBj$K$h$j$"$?$+$b0BA4$G$"$k$+$N$h$&$J8m2r$r>7$-!"967bl9g!"$3$N%b%8%e!<%k$r2TF0$5$;$F$$$k%3%s%T%e!<(B
$B%?$N%7%'%k>e$G%3%^%s%I$r$N4X?t$,%;%-%e%"$G$O$J$$J}K!$G8F$S=P$5$l$F(B
$B$$$kI,MW$,$"$kE@$K$D$$$F$ON10U$9$Y$-$G$"$k!#(B

$B$3$NLdBj$rMxMQ$9$k967b$K$h$k%3%^%s%I$N25. HP-UX landiag/lanadmin Local Buffer Overflow Vulnerability
BugTraq ID: 6834
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 12 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6834
$B$^$H$a(B:

HP-UX $B$KF1:-$5$l$F$$$k(B 2 $B$D$N%f!<%F%#%j%F%#$K%P%C%U%!%*!<%P!<%U%m!<$,@8(B
$B$8$kLdBj$,H/8+$5$l$F$$$k!#LdBj$O(B landiag $B$*$h$S(B lanadmin $B%3%^%s%I$KB8:_(B
$B$9$k!#(B

HP-UX $B$N(B /usr/sbin/lanadmin $B%3%^%s%I$O!"4{$K2a5n$N$b$N$H8+$J$5$l$F$$$k(B
/usr/sbin/landiag $B%3%^%s%I$N$h$j?7$7$$Z$G$O$"$k$,!"%m!<%+%k$N967b:3J$7$?8"8B$G967b(B
$BJ}$,(B setuid $B$5$l$?%P%$%J%j$G$"$k$3$H$ON10U(B
$B$9$Y$-E@$G$"$k!#(B

$BK\LdBj$K4X$9$k5;=QE*$J>\:Y$O8=;~E@$G$OL$>\$G$"$j!"K\(B BID $B$O$5$i$J$k>p(B
$BJs$,8x3+$5$l26. HP-UX rpc.yppasswd Unspecified Buffer Overflow Vulnerability
BugTraq ID: 6835
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: Feb 12 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6835
$B$^$H$a(B:

HP-UX $B$KF1:-$5$l$F$$$k(B rpc.yppasswd $B$NZ$r9T$&$3$H$J$/$h$j>:3J$5$l$?8"8B$rC%\:Y$O8=;~E@$G$OL$>\$G$"$k$,!"K\LdBj$O(B BID 2763 $B$K<($5$l(B
$B$F$$$kLdBj$HN`;w$NLdBj$G$"$k!#K\(B BID $B$O$5$i$J$k>pJs$,8x3+$5$l27. HP-UX stmkfont Unspecified Buffer Overflow Vulnerability
BugTraq ID: 6836
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 12 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6836
$B$^$H$a(B:

HP-UX $B$KH<$$=P2Y$5$l$F$$$k(B stmkfont $B%f!<%F%#%j%F%#$K$O%P%C%U%!%*!<%P!<(B
$B%U%m!<$NLdBj$,Js9p$5$l$F$$$k!#$3$N%f!<%F%#%j%F%#(B stmkfont $B$O(B X $B7A<0$N%U%)(B
$B%s%H!"(BPCL $B7A<0$N%U%)%s%H$r@8@.$9$k$?$a$K@_7W$5$l$?%3%s%Q%$%i$G$"$k!#(B

$B$3$N%3%^%s%I$O!"(BHP-UX $B$KF1:-$5$l$F$$$k$h$j?7$7$$Z$G$"$k$,!"967b:3J$rH<$$%3!<(B
$B%I$r\:Y$K$D$$$F$O8=;~E@$G$OL$>\$G$"$j!"K\(B BID $B$O$5$i$J(B
$B$k>pJs$,8x3+$5$l28. HP-UX rs.F3000 Unspecified Unauthorized Access Vulnerability
BugTraq ID: 6837
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: Feb 12 2003 12:00AM
$B4XO"$9$k(BURL:
http://www.securityfocus.com/bid/6837
$B$^$H$a(B:

rs.F3000 $B%P%$%J%j$O967b\:Y$O8=;~E@$G$OL$>\$G$"$k!#K\(B BID $B$O$5$i$J$k>pJs$,(B
$B8x3+$5$l1. Mitnick Banned From Security Group
$BCx$J%/%i%C%+!<$O!"Ls(B 2 $BJ,4V$KEO$j!"@$3&$G:G$bBg$-$JHs(B
$B1DMxAH?%$N%3%s%T%e!<%?%;%-%e%j%F%#CDBN$N%a%s%P!<$G$"$C$?!#(B

http://online.securityfocus.com/news/2403

2. A Short History of Computer Viruses and Attacks
$BCxH$9$k$?$a$KMxMQ$5$l$F$$$kMQ8l$G$"$k(B
$B!V%P%0!W$H8F$S!"$5$i$KH`=w$O%3%s%T%e!<%?$K4X$9$kLdBj$r=$@5$9$k$?$a$N8z(B
$B2L$r=R$Y$k$?$a$NMQ8l!V%G%P%C%0!W$r$b:n$j=P$7$?!#(B

http://online.securityfocus.com/news/2445

3. Make Love To Your IT Manager on Valentine's Day
$BCxhttp://online.securityfocus.com/news/2443

4. P2P virus fakes nude Zeta Jones pics
$BCx^8uJd$K?dA&$5$l$?(B Catherine Zeta Jones $B$d$=$NB>$NCxL>$J?M!9$N(B
$B$$$+$,$o$7$$;Q$,5-O?$5$l$F$$$k2hA|$G$"$k$+$N$h$&$K?6Iq$&%&%$%k%9$,%$%s(B
$B%?!<%M%C%H>e$KL"1d$7$F$$$k!#%U%!%$%k6&M-%"%W%j%1!<%7%g%s$rMxMQ$7$F$$$k(B
$B%f!<%6$O(B Catherine Zeta Jones $B$d(B Britney Spears$B!"(BSandra Bullock$B!"$5$i$K(B
$B$O(B Sarah Michelle Gellar $B$N$h$&$JCxL>$J?M!9$N4m$&$$;Q$r5-O?$7$?2hA|$,4^(B
$B$^$l$F$$$k$3$H$rJ]>Z$9$k%U%!%$%k$r3+$/$h$&$KM6F3$5$l$?$N$G$"$k!#(B

http://online.securityfocus.com/news/2422

IV. SECURITY FOCUS TOP 6 TOOLS
------------------------------
1. Intrusion Detection Exchange Architecture v1.0.1
$B:nhttp://www.sourceforge.net/projects/idea-arch
$BF0:n4D6-(B: OS $B$K0MB8$7$J$$(B
$B$^$H$a(B:

IDEA $B$O%3%s%T%e!<%?%M%C%H%o!<%/>e$NJ,;6$7$??/F~8!CN%7%9%F%`$rAH$_9g$o$;(B
$B$k$?$a$N4pHW$rDs6!$9$k%=%U%H%&%'%"$G$9!#$3$N%=%U%H%&%'%"$OMM!9$J0[$J$k(B
$BFCD'$r;}$D(B IDS $B%;%s%5$rAH$_9g$o$;!"$=$l$i$+$i$N>pJs$rCf1{$N(B IDS $B%5!<%P(B
$B$KEA$($k$?$a$NJ}K!$rDs6!$7$^$9!#$3$N%5!<%P$O%;%s%5$+$i$N%G!<%?$r<}=8!"(B
$BE}9g$7!"$5$i$K4XO"IU$1!"%M%C%H%o!<%/Fb$N5sF0$K4X$9$kE}9g$5$l$?;kLn$rDs(B
$B6!$7$^$9!#8x3+:Q$N(B API $B$rMxMQ$9$k$3$H$K$h$j!"MM!9$J0[$J$k%/%i%$%"%s%H$,(B
IDEA $B%5!<%P$K@\B32DG=$G$"$j!"%/%i%$%"%s%H$,%;%s%5$N$I$l$+$i$G$b>o$K:G?7(B
$B$N%"%i!<%H$,DLCN$5$l$k$h$&$K!"%$%Y%s%HDLCN%5!<%S%9$rMxMQ$G$-$^$9!#(B

2. trollhunter v0.7
$B:nhttp://trollhunter.sourceforge.net/
$BF0:n4D6-(B: Linux
$B$^$H$a(B:

trollhunter $B$O4{B8$N%m%0%U%!%$%k$N2r@O$d%j%"%k%?%$%`$G%U%!%$%"%&%)!<%k(B
$B$N3hF0$r4F;k$9$kMM!9$J%D!<%k$rDs6!$7$^$9!#8=:_$O!"(BLinux 2.4 $B%+!<%M%k$N(B
netfilter $B$d(B iptables $B$N%U%!%$%"%&%)!<%k$K$h$C$F@8@.$5$l$?I8=`%m%0%a%C(B
$B%;!<%8$,%5%]!<%H$5$l$F$$$^$9!#%f!<%6$O(B Perl $B$H(B Tk $B$rAH$_9g$o$;$?(B GUI $B$+!"(B
$BI8=`E*$J%+%i!3. FWReport v1.0.1
$B:nhttp://fwreport.sourceforge.net/
$BF0:n4D6-(B: Linux
$B$^$H$a(B:

FWReport $B$O(B iptables $BMQ$N%m%02r@O$*$h$SJs9p$r9T$&%=%U%H%&%'%"$G$9!#$3$N(B
$B%=%U%H%&%'%"$O%m%0%U%!%$%k$NMWE@$rF|JL!"7nJL$G@8@.$7$^$9!#$^$?!"4IM}/$5$;$^$9!#(B

4. CVS-SSH2 Plug-in for Eclipse v0.0.3
$B:nhttp://www.jcraft.com/eclipse-cvsssh2/
$BF0:n4D6-(B: Os $B$K0MB8$7$J$$(B
$B$^$H$a(B:

CVS-SSH2 Plug-in for Eclipse $B$O!"(BSSH2 $B%W%m%H%3%k$K$h$k0E9f2=%;%C%7%g%s(B
$B$r;HMQ$7$F(B CVS $B$K@\B32DG=$J(B Eclipse $BMQ$N%W%i%0%$%s$G$9!#(B

5. StatFreak v0.5.3 beta
$B:nhttp://www.catholicinfo.ca/statfreak/
$BF0:n4D6-(B: Linux, Solaris, SunOS, UNIX, Windows 2000, Windows 95/98,
Windows NT, Windows XP
$B$^$H$a(B:

StatFreak $B$O(B eggdrop $B$*$h$S(B mIRC $B$N%m%0$rFI$_9~$_!"E}7W>pJs$r4^$`(B XHTML
$B7A<0$N%U%!%$%k$G=PNO$9$k(B Perl $B%9%/%j%W%H$G$9!#$3$N%=%U%H%&%'%"$O@$3&Cf(B
$B$NE}7W0&9%2H$N3iK>$rK~$?$9$?$a$K3+H/$5$l$^$7$?!#(B

6. elfsign v0.1.0
$B:nhttp://www.hick.org
$BF0:n4D6-(B: N/A
$B$^$H$a(B:

elfsign $B$O>ZL@=q$rHw$($?(B ELF $B7A<0%P%$%J%j%$%a!<%8$N=pL>!"$*$h$S3NG'$r(B
$B9T$&$?$a$N%D!<%k$d%$%s%?%U%'!<%9$rDs6!$7$^$9!#$3$N5!G=$O%P%$%J%j%U%!%$(B
$B%k$KBP$9$k2~JQ!"$^$?$O2~$6$s$,$5$l$F$J$$$3$H$N>ZL@$N$_$J$i$:!"%=%U%H%&%'(B
$B%"$N=jM-pJs$bIU2C$5$l$F$$$kE@$K$*$$$F(B Microsoft $B$N(B Authenticode $B%F(B
$B%/%N%m%8!<$KN`;w$7$F$$$^$9!#(B
--
$BLu(B: $B:d0f=g9T(B(SAKAI Yoriyuki)$B!"?9:L9a(B(MORI Ayaka)$B!"(B
$Bhttp://www.lac.co.jp/security/
smime.p7s