Bugtraq in Japanese
$BJ#?t$N%a!<%k%=%U%H$KITE,@Z$J%;(B $B%-%e%j%F%#%>!<%s$,E,MQ$5$l$k7g4Y(B Jun 30 2003 11:43PM
Matsumoto Takehiro (takex mte biglobe ne jp) (1 replies)
$BJ#?t$N%a!<%k%=%U%H$KITE,@Z$J%;%-%e%j%F%#%>!<%s$,E,MQ$5$l$k7g4Y(B
--

$B"#35MW(B

HTML$B%a!<%k$N%j%s%/%/%j%C%/$G967b<T$N5-=R$7$?%9%/%j%W%H$,(B
$B!V%^%$(B $B%3%s%T%e!<%?!W%>!<%s$G<B9T$5$l$k!#(B

$B"#1F6A$r<u$1$k4D6-(B

Datula 1.52.01 (http://www.onsystems.co.jp/)
EdMax$B%U%j!<HG(B 2.85.3F (http://www.edcom.jp/)
WeMail32 2.09beta5 (http://www.ntes.co.jp/WeMail/)
Winbiff 2.42 (http://www.orangesoft.co.jp/winbiff.html)
$B%I%i$($b$s%a!<%k(B 2.03B (http://www.doraemon-mail.com/)

Windows 2000 Professional Service Pack 3
Internet Explorer 5.01 Service Pack3

$B"#1F6A$r<u$1$J$$4D6-(B

WeMail32 2.09
Winbiff Version 2.42PL1
$B%I%i$($b$s%a!<%k(B 2.04B

Windows 2000 Professional Service Pack 3
Internet Explorer 5.01 Service Pack3

Datula 1.52.01

Windows 2000 Professional Service Pack 3
Internet Explorer 5.5 Service Pack 2

$B"#>\:Y(B

$B$3$l$i$N%a!<%k%=%U%H$G$O!"(BHTML$B%a!<%k$N%5%]!<%H$K(BInternet Exploler$B$N5!G=$,MxMQ$5$l$F$*$j!"(B
$B%m!<%+%k%G%#%9%/$KE83+$5$l$?(BHTML$B%U%!%$%k$r3+$/$h$&$K$J$C$F$$$^$
9!#(B

$BDL>oI=<($N$H$-$O(BActiveX$B%3%s%H%m!<%k$d%9%/%j%W%H$r<B9T$7$J$$$h$&
$K$J$C$F$$$^$9$,!"(B
$B!V?7$7$$%&%#%s%I%&!W$G3+$+$l$k(BInternet Explorer$B$KBP$9$k9MN8$,$J$$$?$a!"(B
$B$3$l$,!V%^%$(B $B%3%s%T%e!<%?!W%>!<%s$HH=Dj$5$l$k>l9g$,$"$j$^$9!#(B

$B$=$N$?$a!"0J2<$N$h$&$J%j%s%/$r:n@.$7!"$3$l$r%/%j%C%/$5$;$k$3$H$K$h$C$
F!"(B
$B!V%^%$(B $B%3%s%T%e!<%?!W%>!<%s$G%9%/%j%W%H$r<B9T$5$;$k$3$H$,2DG=$G$9!#(B

1. Datula, WeMail32, $B%I%i$($b$s%a!<%k$GF0:n(B

HTML$B%a!<%k$NCf$K!"0l;~E83+$5$l$k(BHTML$B%U%!%$%k$X$NAjBP%Q%9$r;XDj$
7$?(B
$B%j%s%/$r5-=R$9$k!#(B
($BNc(B: <a href="script.htm" target="_blank">link</a> )

$BCm(B:WeMail32, $B%I%i$($b$s%a!<%k$G$O!"0l;~E83+$5$l$k(BHTML$B%U%!%$%kL>$,(B
$BAw?.<T$N;XDj$H$O0[$J$jO"HV$H$J$k$?$a!"%U%!%$%kL>$rM=B,$9$k$3$H$,(B
$BB?>/Fq$7$/$J$C$F$$$^$9!#(B

2. Datula, WeMail32, $B%I%i$($b$s%a!<%k$GF0:n(B

"Content-Disposition: inline"$B$H;XDj$7$?(BHTML$B%U%!%$%k$rE:IU$7!"(B
HTML$B%a!<%kCf$K$3$N%U%!%$%k$N(BContent-ID$B$r;XDj$7$?%j%s%/$r5-=R$9$
k!#(B
($BNc(B: <a href="cid:[CONTENT-ID]" target="_blank">link</a> )

3. $B1F6A$r<u$1$k4D6-$9$Y$F$GF0:n(B

"about:"$B$d(B"javascript:"$B$KB3$$$F%9%/%j%W%H$r5-=R$7$?%j%s%/$r5-=R
$9$k!#(B
($BNc(B: <a href="javascript:alert();" target="_blank">link</a> )

$B%9%/%j%W%H$O!V%^%$(B $B%3%s%T%e!<%?!W%>!<%s$G<B9T$5$l$k$?$a!"(B
$B%9%/%j%W%H$K$h$j(B<object>$B%?%0$r@8@.$5$;$k$J$I$NJ}K!$K$h$C$F!"(B

$BG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,9M$($i$l$^$9$,!"$3$l$K$D$$$F$OL$8!>Z$
G$9!#(B

$B;29M(B: http://www.onsystems.co.jp/SecurityHole-HTMLView.html

$B"#BP=hJ}K!(B

$B0J2<$N$$$:$l$+$NJ}K!$K$h$j2sHr2DG=$G$9!#(B

$B!{(BDatula
$B!&(BHTML$B%a!<%k$rI=<($7$J$$$h$&$K$9$k(B
$B!&(BInternet Explorer$B$N%P!<%8%g%s$r(B5.5$B0J>e$K$9$k(B

$B!{(BEdMax
$B!&(BHTML$B%a!<%k$rI=<($7$J$$$h$&$K$9$k(B

$B!{(BWeMail32
$B!&(BHTML$B%a!<%k$rI=<($7$J$$$h$&$K$9$k(B
$B!&(B2.09$B0J9_$K%"%C%W%G!<%H$9$k(B

$B!{(BWinbiff
$B!&(BHTML$B%a!<%k$rI=<($7$J$$$h$&$K$9$k(B
$B!&(B2.42PL1$B0J9_$K%"%C%W%G!<%H$9$k(B

$B!{%I%i$($b$s%a!<%k(B
$B!&(B2.04B$B0J9_$K%"%C%W%G!<%H$9$k(B

$B"#%Y%s%@!<$NBP1~>u67(B

$B!{(BDatula
2002/12/ 8 $B3+H/85$K!"1&%/%j%C%/$r$7$?>l9g$K$*$1$kJ}K!(B1$B$NLdBj$rJs9p(B
2002/12/10 $B3+H/85$K!"J}K!(B1$B$K$D$$$F1&%/%j%C%/$,I,MW$J$$$3$H$rJs9p(B
2002/12/10 $B3+H/85$+$i!"(BInternet Explorer$B$N%P!<%8%g%s$K$D$$$FLd$$9g$o$;$r<u$1$k(B
2002/12/11 $B3+H/85$K(B5.01 Service Pack 3 $B$G$"$k$3$H$rO"Mm(B
2002/12/11 $B3+H/85$+$i!"(B5.5$B$G$"$l$PLdBj$J$$$H$N2sEz(B
2002/12/11 $B3+H/85$K!"(BWindows 2000$B>e$N(B5.01 Service Pack 3$B$,(BMicrosoft$B$K$h$k%5%]!<%H(B
$BBP>]$G$"$j!"%f!<%6!<$O$=$l$J$j$K$$$k$N$G$O$J$$$+!"%f!<%6!<$X$NCm0U4-5
/$,(B
$BI,MW$G$O$J$$$+$H$N0U8+$rEA$($k(B
2003/ 6/19 $B3+H/85$K!"J}K!(B2,3$B$K$D$$$FJs9p(B

$B!{(BEdMax
2003/ 2/26 $B3+H/85$KJs9p(B
2003/ 3/ 3 $B3+H/85$+$i!";v>p$K$h$jD4::$,CY$l$k$H$NJs9p(B
2003/ 3/11 $B3+H/85$+$i!"(BEdMax$B$K$OLdBj$,$J$$$H$N2sEz(B
2003/ 3/12 $B3+H/85$K!"!V%^%$(B $B%3%s%T%e!<%?!W%>!<%s$G%9%/%j%W%H$,<B9T$5$l$k$3$H$r:FEYJs9p(B
2003/ 3/12 $B3+H/85$+$i!"DL>o$NF0:n$G$"$j!"(BEdMax$B$O4XCN$G$-$J$$$H$N2sEz(B

$B!{(BWeMail32
2002/12/13 $B3+H/85$KJ}K!(B2$B$rJs9p(B
2002/12/13 $B3+H/85$+$i!"Js9p$r<u$12r@O$r9T$&$H$N2sEz(B
2002/12/23 2.09beta6$B$,8x3+$5$l!"K\7o$NBP=h$,9T$o$l$?$H$N5-=R$,$"$C$?(B
2003/ 1/ 6 $B3+H/85$K!"BP=h$,IT==J,$G$"$k$3$H$rDLCN(B
2003/ 1/ 8 $B3+H/85$+$i!"DLCN$r<u$1$?$H$N2sEz(B
2003/ 2/24 $B3+H/85$KJ}K!(B1,3$B$rJs9p(B
2003/ 2/24 $B3+H/85$+$i!"Js9p$r<u$1$?$H$N2sEz(B
2003/ 3/22 WeMail32 2.09$B$r8x3+$7$?$H$NJs9p(B
2003/ 3/27 $B3+H/85$K!"LdBj$O2r7h$7$?$HJs9p(B

$B!{(BWinbiff
2003/ 3/ 2 $B3+H/85$KJs9p(B
2003/ 3/ 3 $B3+H/85$+$i!"D4::$r$9$k$H$NJs9p(B
2003/ 3/11 $B3+H/85$+$i!"BP:vHG$N8!>Z$NMW@A(B
2003/ 3/12 $B3+H/85$K!"$G$-$kHO0O$G$N3NG'$r$7$?$$$H2sEz(B
2003/ 3/12 $B3+H/85$+$i!"BP:vHG$r<u$1<h$k(B
2003/ 3/14 $B3+H/85$K!"LdBj$O2r7h$7$?$HJs9p(B
2003/ 3/18 2.42PL1$B$,8x3+$5$l$k(B

$B!{%I%i$($b$s%a!<%k(B
2003/ 2/11 $BHNGd85$KJ}K!(B2$B$rJs9p(B
2003/ 2/12 $BHNGd85$+$i!"3+H/2q<R$GD4::Cf$H$NJs9p(B
2003/ 2/19 $BHNGd85$K!"$=$N8e$N>u67$r?R$M$k(B
2003/ 2/20 $BHNGd85$+$i!"3+H/85$GBP1~$r8!F$Cf$H$NJs9p(B
2003/ 2/21 $BHNGd85$+$i!":#8e3+H/85$+$iO"Mm$r$9$k$H$N2sEz(B
2003/ 2/24 $B3+H/85$KJ}K!(B1,3$B$rJs9p(B
2003/ 2/24 $B3+H/85$+$i!"Js9p$r<u$1$?$H$N2sEz(B
2003/ 4/16 $B3+H/85$K!"BP1~;~4|$r$?$:$M$k(B
2003/ 4/16 $B3+H/85$+$i!"8!::$*$h$SDLCN!&G[I[J}K!$r8!F$Cf$G!"(B5$B7n0J9_$K$J$k$H
$N2sEz(B
2003/ 5/27 $B3+H/85$+$i!"(B6$B7n$K=$@5HG$r8x3+$9$k$H$NJs9p(B
2003/ 6/ 1 2.04B$B$,8x3+$5$l$k(B
2003/ 6/ 2 $B3+H/85$+$i!"=$@5HG$r8x3+$7$?$H$NJs9p(B
2003/ 6/19 $B3+H/85$K!"LdBj$O2r7h$7$?$HJs9p(B

$B"#$=$NB>(B

$BK\7o$r(BJPCERT $B%3!<%G%#%M!<%7%g%s%;%s%?!<$KJs9p$7$F$$$^$9!#(B
2003/ 6/19 $BK\7o$rJs9p(B
2003/ 6/26 $B<uNN3NG'(B(JPCERT#07750443)

--
$B>>K\3YBg(B ($B$^$D$b$H$?$1$R$m(B)
takex (at) mte.biglobe.ne (dot) jp [email concealed]

[ reply ]
Re: $BJ#?t$N%a!<%k%=%U%H$KITE,@Z$J(B $B%;%-%e%j%F%#%>!<%s$,E,MQ$5$l$k7g4Y(B Jul 03 2003 08:50AM
Matsumoto Takehiro (takex mte biglobe ne jp)


 

Privacy Statement
Copyright 2010, SecurityFocus