SecurityFocus

SecurityFocus Newsletter #312 2005-08-15->2005-08-19 Dec 16 2005 08:27AM
Tsuneo Ogasawara (t ogaswr lac co jp)

$B>.3^86(B@$B%i%C%/$G$9!#(B

SecurityFocus Newsletter $BBh(B 312 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

------------------------------------------------------------------------
---
BugTraq-JP $B$K4X$9$k(B FAQ ($BF|K\8l(B):
http://www.securityfocus.com/archive/79/description
$B!&(BSecurityFocus Newsletter $B$NOBLu$O(B BugTraq-JP $B$G0l<!G[I[$5$l$F$$$^$9(B
$B!&(BBugTraq-JP $B$X$N;22CJ}K!!"C&B`J}K!$O$3$N(B FAQ $B$r$4;2>H$/$@$5$$(B
------------------------------------------------------------------------
---
SecurityFocus Newsletter $B%"!<%+%$%V(B ($B1Q8l(B):
http://www.securityfocus.com/archive/78
BugTraq $B$K4X$9$k(B FAQ ($B1Q8l(B):
http://www.securityfocus.com/archive/1/description
------------------------------------------------------------------------
---
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B SecurityFocus $B$N5v2D$r3t<02q<R%i%C%/$,F@$?>e$G9T$o$l$F$$$^$9!#(B
$B!&(BSecurityFocus Newsletter $B$NOBLu$r(B Netnews, Mailinglist, World Wide Web,
$B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$NA4J80zMQ$r$*4j$$$7$^$9!#
(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;$s$,!"(B
$B=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurityFocus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k7A<0$N(B
$B%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://online.securityfocus.com/archive/79
------------------------------------------------------------------------
---
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02q<R%i%C%/$O@UG$$rIi$o$J$$$b$N$H$7$^
(B
$B$9!#(B
------------------------------------------------------------------------
---
$BLu<T$+$i$N$*CN$i$;(B:
$B!&$b$7!"(Btypo $B$d8mLu$,8+$D$+$C$?>l9g!"(BBugTraq-JP $B$X(B Errata $B$H$7$F=$@5(B
$BHG$r$4Ej9FD:$/$+!"4F=$<T(B (t.ogaswr (at) lac.co (dot) jp [email concealed]) $B$K$*CN$i$;$/$@$5$$!#(B
$B8e<T$N>l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
------------------------------------------------------------------------
---
This translation is encoded and posted in ISO-2022-JP.

$B86HG(B:
Date: Wed, 24 Aug 2005 11:12:23 -0600
Message-ID: <430CAA77.40307 (at) securityfocus (dot) com [email concealed]>

SecurityFocus Newsletter #312
-----------------------------

This Issue is Sponsored By: CrossTec

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
1. Legal disassembly
2. It's only a matter of time...
II. BUGTRAQ SUMMARY
1. Hummingbird FTP Weak Password Encryption Weakness
2. PHPXMLRPC and PEAR XML_RPC Remote Code Injection Vulnerability
3. KDE Langen2KVTML Insecure Temporary File Creation Vulnerability
4. Parlano MindAlign Multiple Unspecified Vulnerabilities
5. Dokeos Multiple Directory Traversal Vulnerabilities
6. Discuz! Arbitrary File Upload Vulnerability
7. CPaint Unspecified Command Execution and Information Disclosure Vulnerabilities
8. Linksys WRT54GS Wireless Authentication Bypass Vulnerability
9. Apple Mac OS X Multiple Vulnerabilities
10. HP Ignite-UX Password File Disclosure Vulnerability
11. Apple Mac OS X Weblog Server Cross-Site Scripting Vulnerabilities
12. My Image Gallery Multiple Cross Site Scripting Vulnerabilities
13. HP Ignite-UX TFTP File Upload Vulnerability
14. BlueZ Arbitrary Command Execution Vulnerability
15. Dada Mail Archives HTML Injection Vulnerability
16. SafeHTML UTF-7 And CSS Comment Tag Cross Site Scripting Vulnerabilities
17. PersianBlog Userslist.ASP SQL Injection Vulnerability
18. ECW Shop Index.PHP SQL Injection Vulnerability
19. CPaint xmlhttp Request Input Validation Vulnerability
20. ECW Shop Index.PHP Cross Site Scripting Vulnerability
21. ECW Shop Index.PHP HTML Injection Vulnerability
22. ECW Shop Order Input Validation Vulnerability
23. WinFTP Server Log-SCR Buffer Overflow Vulnerability
24. EMC Legato Networker Multiple Vulnerabilities
25. phpPgAds Lib-View-Direct.INC.PHP SQL Injection Vulnerability
26. phpPgAds Local File Include Vulnerability
27. Cisco Clean Access API Access Validation Vulnerability
28. Xerox MicroServer Web Server Multiple Authentication Bypass and Input Validation Vulnerabilities
29. Chris Moneymaker's World Poker Championship Buffer Overflow Vulnerability
30. phpAdsNew Lib-View-Direct.INC.PHP SQL Injection Vulnerability
31. PHPFreeNews SearchResults.PHP Multiple SQL Injection Vulnerabilities
32. PHPFreeNews Multiple Cross-Site Scripting Vulnerabilities
33. phpAdsNew Local File Include Vulnerability
34. PHPTB Topic Board Multiple Remote File Include Vulnerabilities
35. Mediabox404 Login_Admin_Mediabox404.PHP SQL Injection Vulnerability
36. Microsoft Visual Studio .NET msdds.dll Remote Code Execution Vulnerability
37. Juniper Netscreen VPN Username Enumeration Vulnerability
38. Mutt Handler.c Buffer Overflow Vulnerability
39. W-Agora Site Parameter Directory Traversal Vulnerability
40. ATutor Login.PHP Cross-Site Scripting Vulnerability
41. Emefa Guestbook Multiple HTML Injection Vulnerabilities
42. Whisper32 Plaintext Password Disclosure Vulnerability
43. PHPOutsourcing Zorum Prod.PHP Arbitrary Command Execution Vulnerability
44. BBCaffe HTML Injection Vulnerability
45. Adobe Acrobat and Adobe Reader Remote Buffer Overflow Vulnerability
46. Mantis Multiple Input Validation Vulnerabilities
47. OpenVPN Failed Authentication Denial Of Service Vulnerability
48. HAURI Anti-Virus Compressed Files Directory Traversal Vulnerability
49. OpenVPN Packet Decryption Failure Denial Of Service Vulnerability
50. OpenVPN MAC Address Spoofing Denial Of Service Vulnerability
51. Linux Kernel IPSec Policies Authorization Bypass Vulnerability
52. OpenVPN Same Client Certificate Denial Of Service Vulnerability
53. Linux Kernel SNMP Handler Denial of Service Vulnerability
54. Cisco Clean Access Agent Installation Bypass Vulnerability
55. Elm Expires Header Remote Buffer Overflow Vulnerability
56. Linux Kernel ISO File System Denial Of Service Vulnerability
57. MyBulletinBoard Search.PHP SQL Injection Vulnerability
58. Sysinternals Process Explorer CompanyName Value Buffer Overflow Vulnerability
59. Woltlab Burning Board ModCP.PHP SQL Injection Vulnerability
60. Land Down Under Multiple SQL Injection Vulnerabilities
61. Land Down Under Multiple Cross-Site Scripting Vulnerabilities
62. PCRE Regular Expression Heap Overflow Vulnerability
III. SECURITYFOCUS NEWS
1. Storm brewing over SHA-1 as further breaks are found
2. Plug-and-play bots worming and warring among Windows systems
3. Worm spreading through Microsoft Plug-and-Play flaw
4. NIST, DHS add national vulnerability database to mix
5. Worm snaffles online gamers' passwords
6. Hotel hacking could pump smut into every room
7. US Air Force scrambles after privacy breach
8. Exploit for unpatched IE vuln fuels hacker fears

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
----------------------------------

II.BUGTRAQ SUMMARY
--------------------
1. Hummingbird FTP Weak Password Encryption Weakness
BugTraq ID: 14559
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14559
$BMWLs(B:
Hummingbird FTP $B$O!"==J,$J6/EY$N$"$k%"%k%4%j%:%`$r;HMQ$7$F%Q%9%o!<%I$r0E(B
$B9f2=$7$F$$$^$;$s!#$3$l$K$h$j!"(BFTP $B%W%m%U%!%$%k$rF~<j$7$?967b<T$,%f!<%6!<(B
$B%Q%9%o!<%I$r4JC1$K2rFI$9$k$3$H$r5v$7$F$7$^$$$^$9!#(B

2. PHPXMLRPC and PEAR XML_RPC Remote Code Injection Vulnerability
BugTraq ID: 14560
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14560
$BMWLs(B:
PHPXMLRPC $B$*$h$S(B PEAR XML_RPC $B$O!"%j%b!<%H$+$i(B PHP $B%3!<%I$rCmF~2DG=$JLd(B
$BBj$N1F6A$r<u$1$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM
}$,(B
$BE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$G(B Web $B%5!<%P%W%m%;(B
$B%9$N8"8B$r;HMQ$7!"G$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$
,$"(B
$B$j$^$9!#$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

3. KDE Langen2KVTML Insecure Temporary File Creation Vulnerability
BugTraq ID: 14561
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14561
$BMWLs(B:
KDE Langen2KVTML $B$K$O%;%-%e%j%F%#>eITE,@Z$K0l;~%U%!%$%k$,:n@.$5$l$kLdBj(B
$B$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"@_7W>e$NITHw$K$h$j!"%U%!%$%k$X$
N=q(B
$B$-9~$_A0$K%U%!%$%k$NB8:_$N3NG'$K<:GT$7$F$7$^$&$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%"%W%j%1!<%7%g%s$r<B9T$9$k5?$$$
r;}(B
$B$?$J$$%f!<%6$N8"8B$G!"G$0U$N%U%!%$%k$r>e=q$-$9$k2DG=@-$,$"$j$^$9!#(B

4. Parlano MindAlign Multiple Unspecified Vulnerabilities
BugTraq ID: 14562
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14562
$BMWLs(B:
Parlano MindAlign $B$K$O!"L$FCDj$NJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l(B
$B$i$NLdBj$K$O!"%f!<%6$NNs5s!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0!"G'>Z2sHr!"@
H<e(B
$B$J0E9f2=$NLdBj$,4^$^$l$^$9!#(B

MindAlign 5.0 $B0J9_$N%P!<%8%g%s$K$*$$$F!"$3$l$NLdBj$N1F6A$r<u$1$^$9!#(B

5. Dokeos Multiple Directory Traversal Vulnerabilities
BugTraq ID: 14563
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14563
$BMWLs(B:
Dokeos $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$kJ#?t$NLdBj$,B8:_$9$k5?(B
$B$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$
,E,(B
$B@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,LdBj$N$"$k%"%W%j%1!<%7%g%s$KBP$7$F!"LdBj$N$"$k%Q%i%a!<%?$N$$$
:$l(B
$B$+$r;HMQ$7$F!"%G%#%l%/%H%j;2>H$K4XO"$9$kJ8;zNs$H0l=o$KI8E*%U%!%$%k$NL
>A0(B
$B$rEO$9$H$-$K$3$NLdBj$,H/@8$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$GG$0U$N%U%!%$%k$
r:o(B
$B=|$^$?$O0\F0$9$k2DG=@-$,$"$j$^$9!#$3$NLdBj$,MxMQ$5$l$k$H!"%G!<%?$N@09
g@-(B
$B$,<:$o$l!"%3%s%T%e!<%?$,5!G=$7$J$/$J$k2DG=@-$,$"$j$^$9!#(B

$B$3$l$i$NLdBj$rMxMQ$9$k$?$a$K$O!"967b<T$OLdBj$N$"$k%"%W%j%1!<%7%g%s$KG
'>Z(B
$B$9$kI,MW$,$"$j!"(Bteacher $B$J$I$N%3!<%9$N4IM}8"8B$r;}$C$F$$$kI,MW$,$"$j$^$9!#(B

6. Discuz! Arbitrary File Upload Vulnerability
BugTraq ID: 14564
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14564
$BMWLs(B:
Discuz! $B$K$O!"G$0U$N%U%!%$%k$,%"%C%W%m!<%I$5$l$kLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#$3$NLdBj$O!"%"%C%W%m!<%I$5$l$?2hA|%U%!%$%k$KBP$9$k%5%K%?%$%:=hM
}$,(B
$B<B9T$5$l$J$$$3$H$,860x$GH/@8$7$^$9!#(B

$B$3$NLdBj$K$h$j!":G=*E*$K(B Web $B%5!<%P$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GIT@5%"(B
$B%/%;%9$r>7$/2DG=@-$,$"$j$^$9!#(B

7. CPaint Unspecified Command Execution and Information Disclosure Vulnerabilities
BugTraq ID: 14565
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14565
$BMWLs(B:
CPaint $B$O!"%3%^%s%I$,<B9T$5$l$kL$FCDj$NLdBj$H>pJs$,3+<($5$l$kL$FCDj$N1F(B
$B6A$r<u$1$^$9!#$3$l$i$NLdBj$O!"%"%/%;%9$NBEEv@-3NG'$NITHw$KM3Mh$9$k$H?
d;!(B
$B$5$l$^$9!#(B

$B$3$l$i$NLdBj$NMxMQ$K@.8y$9$k$H!"LdBj$N$"$k%"%W%j%1!<%7%g%s$r<B9T$7$F$
$$k(B
$B%5!<%P$N%;%-%e%j%F%#$,B;$J$o$l$k2DG=@-$,$"$j$^$9!#$3$N967b$K$h$jF~<j$
5$l(B
$B$?>pJs$O99$J$k967b$KMxMQ$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"$=$NB>$N967b$,9
T$o(B
$B$l$k2DG=@-$b$"$j$^$9!#(B

8. Linksys WRT54GS Wireless Authentication Bypass Vulnerability
BugTraq ID: 14566
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14566
$BMWLs(B:
Linksys WRT54GS $B$K$O!"G'>Z$,2sHr$5$l$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#0E9f(B
$B2=@_Dj$,;HMQ$5$l$F$$$k$H$-$G$b!"0E9f2=@_Dj$r;HMQ$7$F$$$J$$%/%i%$%"%s%
H%G(B
$B%P%$%9$,@\B3$9$k$3$H$r%G%P%$%9$,5v2D$7$F$7$^$&$3$H$,Js9p$5$l$F$$$^$9!
#(B

$B$3$NLdBj$rMxMQ$9$k967b<T$O!"G'>Z$r2sHr$7$F!"0E9f2=$5$l0BA4$G$"$k$H9M$
($i(B
$B$l$F$$$k%o%$%d%l%9%M%C%H%o!<%/$K@\B3$9$k$3$H$,2DG=$G$9!#$3$N$?$a$K!"$
"$?(B
$B$+$b0BA4$G$"$k$+$N$h$&$J8m2r$r>7$/2DG=@-$,$"$j$^$9!#(B

$B%U%!!<%`%&%'%"$N%P!<%8%g%s(B 4.50.6 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,(B
$BJs9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#
(B

$B%U%!!<%`%&%'%"$N%P!<%8%g%s(B 4.70.6 $B$G$3$NLdBj$O2r7h$5$l$F$$$k$3$H$bJs9p$5(B
$B$l$F$$$^$9$,!"$3$l$O!"(BSymantec $B$d%Y%s%@$K$h$j8!>Z$5$l$F$O$$$^$;$s!#(B

$B>\:Y>pJs$H$7$F!"%P!<%8%g%s(B 4.50.6 $B$K%U%!!<%`%&%'%"$,%"%C%W%0%l!<%I$5$l$?(B
$B$H$-$K$3$NLdBj$,H/@8$9$k$b$N$N!"$3$N%f%K%C%H$O9)>l=P2Y;~$N4{DjCM$K%j%
;%C(B
$B%H$5$l$F$$$J$$$3$H$,<(:6$5$l$F$$$^$9!#%U%!!<%`%&%'%"$r%"%C%W%0%l!<%I$
9$k(B
$B$H$-$K$O!"%f%K%C%H$r%j%;%C%H$9$k$3$H$,!"(BLinksys $B$N%"%C%W%0%l!<%IA`:n<j=g(B
$B$N(B 1 $B$D$H$7$F?d>)$5$l$F$$$^$9!#(B

9. Apple Mac OS X Multiple Vulnerabilities
BugTraq ID: 14567
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14567
$BMWLs(B:
Apple Mac OS X $B$K$O!"J#?t$N%;%-%e%j%F%#>e$NLdBj$,B8:_$9$k$3$H$,Js9p$5$l(B
$B$F$$$^$9!#$3$l$i$NLdBj$KBP1~$9$k%"%C%W%G!<%H$,MxMQ$G$-$k$h$&$K$J$C$F$
$$^(B
$B$9!#(B

Apache $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$d%"%/%;%9$NBEEv@-8!>Z$K4XO"$9$kLdBj(B
$B$J$I(B 5 $B$D$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(BCVE Mitre $B$N<1JL;R8uJd$H$7$F!"(B
CAN-2005-1344$B!"(BCAN-2004-0942$B!"(BCAN-2004-0885$B!"(BCAN-2004-
1083 $B$*$h$S(B
CAN-2004-1084 $B$,$3$l$i$NLdBj$K3d$jEv$F$i$l$F$$$^$9!#(B

Appkit $B$K$O!"(B3 $B$D$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$N(B 2 $B$D$NLdBj$K$h(B
$B$jG$0U$N%3!<%I$,<B9T$5$l!"(B3 $BHVL\$NLdBj$K$h$j%m!<%+%k%"%+%&%s%H$,:n@.$5$l(B
$B$k$3$H$r5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#(BCVE Mitre $B$N<1JL;R8uJd$H$7$F(B
CAN-2005-2501$B!"(BCAN-2005-2502 $B$*$h$S(B CAN-2005-2503 $B$,$3$l$i$NLdBj$K3d$jEv(B
$B$F$i$l$F$$$^$9!#(B

Bluetooth $B$K$O!"G'>Z$,2sHr$5$l$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$K(B
$BBP$7$F3d$jEv$F$i$l$?(B CVE Mitre $B$N<1JL;R8uJd$O(B CAN-2005-2504 $B$G$9!#(B

CoreFoundation $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,0z$-5/$3$5$l$kLdBj$H%5!<%S(B
$B%9ITG=>uBV$K4Y$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(BCVE Mitre $B$N<1JL;R8uJd$H$7(B
$B$F(B CAN-2005-2505 $B$*$h$S(B CAN-2005-2506 $B$,$3$l$i$NLdBj$K3d$jEv$F$i$l$F$$$^(B
$B$9!#(B

CUPS $B$K$O!"%5!<%S%9$r:F3+$G$-$k$^$G$N4V%5!<%S%9ITG=>uBV$K4Y$k(B 2 $B$D$NLdBj(B
$B$,B8:_$9$k5?$$$,$"$j$^$9!#(BCVE Mitre $B$N<1JL;R8uJd$H$7$F!"(BCAN-2005-2525 $B$*(B
$B$h$S(B CAN-2005-2526 $B$,$3$l$i$NLdBj$K3d$jEv$F$i$l$F$$$^$9!#(B

Directory Services $B$K$O!"(B3 $B$D$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLd(B
$BBj$H$7$F!"%P%C%U%!%*!<%P!<%U%m!<!"K\Mh5v2D$5$l$F$$$J$$%"%+%&%s%H$N:n@
.$*(B
$B$h$S:o=|!"$=$7$FIT@5$J8"8B>:3J$,0z$-5/$3$5$l$^$9!#(BCVE Mitre $B$N<1JL;R8uJd(B
$B$H$7$F!"(BCAN-2005-2507$B!"(BCAN-2005-2508 $B$*$h$S(B CAN-2005-2519 $B$,$3$l$i$NLdBj(B
$B$K3d$jEv$F$i$l$F$$$^$9!#(B

HItoolbox $B$K$O!"7k2L$H$7$F>pJsO31L$r0z$-5/$3$9LdBj$,B8:_$9$k5?$$$,$"$j$^(B
$B$9!#(BCVE Mitre $B$N<1JL;R8uJd$H$7$F!"(BCAN-2005-2513 $B$,$3$NLdBj$K3d$jEv$F$i$l(B
$B$F$$$^$9!#(B

Kerberos $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<!"G$0U$N%3!<%I<B9T!"(Broot $B8"8B%l%Y%k(B
$B$G$N%;%-%e%j%F%#$N6<0R$r0z$-5/$3$9(B 5 $B$D$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
CVE Mitre $B$N<1JL;R8uJd$H$7$F!"(BCAN-2004-1189$B!"(BCAN-2005-1174$B!"(B
CAN-2005-1175$B!"(BCAN-2005-1689 $B$*$h$S(B CAN-2005-2511 $B$,$3$l$i$NLdBj$K3d$jEv(B
$B$F$i$l$F$$$^$9!#(B

loginwindow $B$O!"$"$k%f!<%6$,%m%0%$%s$7$?%"%+%&%s%H$KBP$9$k%"%/%;%98"8B$r(B
$BJL$N%f!<%6$,C%<h$9$k$3$H$r5v$7$F$7$^$&LdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$
3$N(B
$BLdBj$KBP$7$F3d$jEv$F$i$l$?(B CVE Mitre $B$N<1JL;R8uJd$O(B CAN-2005-2509 $B$G$9!#(B

Mail $B$K$O!"(BHTML $B7A<0$NEE;R%a!<%k$K$*$$$F%j%b!<%H$+$i$N2hA|$,FI$_=P$5$l$k(B
$B$H$-$K!"8D?M>pJs$,C%<h$5$l$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$KB
P$7(B
$B$F3d$jEv$F$i$l$?(B CVE Mitre $B$N<1JL;R8uJd$O(B CAN-2005-2612 $B$G$9!#(B

MySQL $B$K$O!"%j%b!<%H$NG'>Z$5$l$?967b<T$K$h$C$FG$0U$N%3!<%I$,<B9T$5$l$kLd(B

$BBj$J$I$N(B 3 $B$D$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(BCVE Mitre $B$N<1JL;R8uJd$H$7(B
$B$F!"(BCAN-2005-0709$B!"(BCAN-2005-0710 $B$*$h$S(B CAN-2005-0711 $B$,$3$l$i$NLdBj$K3d(B
$B$jEv$F$i$l$F$$$^$9!#(B

OpenSSL $B$K$O!"7k2LE*$K%5!<%S%9ITG=>uBV$K4Y$k(B 2 $B$D$NLdBj$,B8:_$9$k5?$$$,(B
$B$"$j$^$9!#(BCVE Mitre $B$N<1JL;R8uJd$H$7$F!"(BCAN-2004-0079 $B$*$h$S(B
CAN-2004-0112 $B$,$3$l$i$NLdBj$K3d$jEv$F$i$l$F$$$^$9!#(B

ping $B$O!"%m!<%+%k$G8"8B>:3J$,0z$-5/$3$5$lG$0U$N%3!<%I$,<B9T$5$l$k$3$H$r(B

$B5v$7$F$7$^$&LdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$KBP$7$F3d$jEv$F$i$
l$?(B
CVE Mitre $B$N<1JL;R8uJd$O(B CAN-2005-2614 $B$G$9!#(B

QuartzComposerScreenSaver $B$K$O!"(BRSS Visualizer $B%9%/%j!<%s$,%m%C%/$5$l$F(B
$B$$$k$H$-$K%f!<%6$,%Z!<%8$r3+$/$3$H$r5v$7$F$7$^$&2DG=@-$N$"$kLdBj$,B8:
_$9(B
$B$k5?$$$,$"$j$^$9!#$3$NLdBj$KBP$7$F3d$jEv$F$i$l$?(B CVE Mitre $B$N<1JL;R8uJd(B
$B$O(B CAN-2005-2515 $B$G$9!#(B

Safari $B$K$O!"7k2L$H$7$FG$0U$N%3%^%s%I$,<B9T$5$l$k!"$"$k$$$OIT@5$J%5%$%H(B
$B$K>pJs$,Aw?.$5$l$k(B 2 $B$D$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(BCVE Mitre $B$N<1JL(B
$B;R8uJd$H$7$F!"(BCAN-2004-2516 $B$*$h$S(B CAN-2004-2517 $B$,$3$l$i$NLdBj$K3d$jEv(B
$B$F$i$l$F$$$^$9!#(B

SecurityInterface $B$K$O!":G6a;HMQ$5$l$?%Q%9%o!<%I$,3+<($5$l$k2DG=@-$N$"$k(B
$BLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$KBP$7$F3d$jEv$F$i$l$?(B CVE Mitre
$B$N<1JL;R8uJd$O(B CAN-2005-2520 $B$G$9!#(B

servermgrd $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$kLdBj$,B8:_$9$k5?$$$,$"(B
$B$j$^$9!#$3$NLdBj$K$h$j!":G=*E*$KG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$
^$9!#(B
$B$3$NLdBj$KBP$7$F3d$jEv$F$i$l$?(B CVE Mitre $B$N<1JL;R8uJd$O(B CAN-2005-2518 $B$G(B
$B$9!#(B

servermgr_ipfilter $B$O!"(BActive Rule $B$K%U%!%$%"%&%)!<%k$N@_Dj$,>o$K=q$-9~(B
$B$^$l$J$$LdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$KBP$7$F3d$jEv$F$i$l$?
(B CVE
Mitre $B$N<1JL;R8uJd$O(B CAN-2005-2510 $B$G$9!#(B

SquirrelMail $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k(B 2 $B$D$NLdBj$,(B
$BB8:_$9$k5?$$$,$"$j$^$9!#(BCVE Mitre $B$N<1JL;R8uJd$H$7$F!"(BCAN-2004-1769 $B$*$h(B
$B$S(B CAN-2004-2095 $B$,$3$l$i$NLdBj$K3d$jEv$F$i$l$F$$$^$9!#(B

traceroute $B$K$O!"7k2L$H$7$FG$0U$N%3!<%I$,<B9T$5$l8"8B>:3J$,0z$-5/$3$5$l(B
$B$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$KBP$7$F3d$jEv$F$i$l$?(B CVE Mitre
$B$N<1JL;R8uJd$O(B CAN-2005-2521 $B$G$9!#(B

WebKit $B$K$O!"0U?^E*$K:n@.$5$l$?(B PDF $B%U%!%$%k$K$h$j7k2LE*$K%3!<%I$,<B9T$5(B
$B$l$k2DG=@-$,$"$kLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj$KBP$7$F3d$jEv$F$i$l$?
(B CVE
Mitre $B$N<1JL;R8uJd$O(B CAN-2005-2522 $B$G$9!#(B

Weblog Server $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kJ#?t$NLdBj$,(B
$BB8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$KBP$7$F3d$jEv$F$i$l$?(B CVE Mitre $B$N<1JL(B
$B;R8uJd$O(B CAN-2005-2523 $B$G$9!#(B

X11 $B$K$O!"7k2L$H$7$FG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,$"$kLdBj$,B8:_$9$k5?
(B
$B$$$,$"$j$^$9!#$3$NLdBj$KBP$7$F3d$jEv$F$i$l$?(B CVE Mitre $B$N<1JL;R8uJd$O(B
CAN-2005-0605 $B$G$9!#(B

zlib $B$K$O!"(B2 $B$D$N%5!<%S%9ITG=>uBV$K4Y$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3(B
$B$l$i$NLdBj$K$h$j:G=*E*$KG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$^$9!#(B
CVE
Mitre $B$N<1JL;R8uJd$H$7$F!"(BCAN-2004-2096 $B$*$h$S(B CAN-2004-1849 $B$,$3$l$i$N(B
$BLdBj$K3d$jEv$F$i$l$F$$$^$9!#(B

$B$3$l$i$NLdBj$O!":#8eJ,@O$5$l!"8DJL$N(B BID $B$KJ,3d$5$l$kM=Dj$G$9!#(B

10. HP Ignite-UX Password File Disclosure Vulnerability
BugTraq ID: 14568
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14568
$BMWLs(B:
$B%$%s%9%H!<%k;~$K!"(BIgnite-UX $B$O%j%b!<%H%"%/%;%9$K(B TFTP $B%5!<%P$r;HMQ$7$^$9!#(B
$BFCDj$N>r7o2<$G!"(Bpasswd $B%U%!%$%k$N%3%T!<$,(B TFTP $B%5!<%P$N%Q%9$K3JG<$5$l$^(B
$B$9!#(B

11. Apple Mac OS X Weblog Server Cross-Site Scripting Vulnerabilities
BugTraq ID: 14569
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14569
$BMWLs(B:
Apple Mac OS X Weblog Server $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u(B
$B$1$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~N
OCM(B
$B$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdB
j$N(B
$B$"$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N(B
$B967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$O!"Ev=i(B BID 14567 (Apple Mac OS X Multiple Vulnerabilities) $B$G(B
$B@bL@$5$l$^$7$?!#:#2sFH<+$N(B BID $B$,3d$jEv$F$i$l$F$$$^$9!#(B

12. My Image Gallery Multiple Cross Site Scripting Vulnerabilities
BugTraq ID: 14570
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14570
$BMWLs(B:
My Image Gallery $B$K$O!"%f!<%6$,;XDj$7$?F~NOCM$,E,@Z$K%5%K%?%$%:=hM}$5$l(B
$B$J$$$?$a$K!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kJ#?t$NLdBj$,B8:_$
9$k(B
$B5?$$$,$"$j$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N(B Web $B%V%i%&%6$KG$(B
$B0U$N(B HTML $B%3!<%I$*$h$S%9%/%j%W%H%3!<%I$rA^F~$9$k$3$H$,2DG=$G$9!#967b<T$O!"(B
Cookie $B$KM3Mh$9$kG'>ZMQ>pJs$r@`<h$9$k2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<B(B
$B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

13. HP Ignite-UX TFTP File Upload Vulnerability
BugTraq ID: 14571
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14571
$BMWLs(B:
$B%$%s%9%H!<%k;~$K!"(BIgnite-UX $B$O%j%b!<%H%"%/%;%9$K(B TFTP $B%5!<%P$r;HMQ$7$^$9!#(B
$BFCDj$N>u672<$G$O!"%5!<%P%Q%9$N$$$/$D$+$,!"$9$Y$F$N%f!<%6$K=q$-9~$_2DG
=$H(B
$B$J$k$3$H$,$"$j$^$9!#(Badd_new_client $B%3%^%s%I$,H/9T$5$l$k>l9g$K!"$3$NLdBj(B
$B$,H/@8$7$^$9!#%j%b!<%H$N(B TFTP $B%/%i%$%"%s%H$O!"$3$NLdBj$K$h$j0lIt$N%U%!%$(B
$B%k%7%9%F%`$KF?L>$G%G!<%?$r=q$-9~$`$3$H$,2DG=$H$J$k2DG=@-$,$"$j$^$9!#
(B

14. BlueZ Arbitrary Command Execution Vulnerability
BugTraq ID: 14572
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14572
$BMWLs(B:
BlueZ $B$O!"G$0U$N%3%^%s%I$,<B9T$5$l$kLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj$O!"%f!<
(B
$B%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$
9!#(B

$B$3$NLdBj$rMxMQ$7$?967b$K@.8y$9$k$H!"967b<T$OLdBj$N$"$k%"%W%j%1!<%7%g%
s$,(B
$B2TF/$9$k%7%9%F%`>e$K$*$$$F!"$3$N%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%F%
-%9(B
$B%HFb$GG$0U$N%3%^%s%I$r<B9T$9$k$3$H$,2DG=$H$J$j$^$9!#$3$l$K$h$j!"%P%C%
/%((B
$B%s%I%7%9%F%`$KBP$7$F99$J$k967b$,2C$($i$l$k2DG=@-$,$"$j$^$9!#B>$N967b$
,0z(B
$B$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

15. Dada Mail Archives HTML Injection Vulnerability
BugTraq ID: 14573
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14573
$BMWLs(B:
Dada Mail $B$K$O!"(BHTML $B%?%0$rA^F~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$N(B
$BLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$rF0E*$K@8@.$7$?%3%s%F%s%D$G;HMQ$9$kA0$
K!"(B
$BF~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N2r<aJ}K!$r@)8f$9$k2DG=@-$b$"$j$^$
9!#(B
$B$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

16. SafeHTML UTF-7 And CSS Comment Tag Cross Site Scripting Vulnerabilities
BugTraq ID: 14574
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14574
$BMWLs(B:
SafeHTML $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kLdBj$,B8:_$9$k5?(B
$B$$$,$"$j$^$9!#$3$l$O!"J8;z%(%s%3!<%IJ}K!$H$7$F(B UTF-7 $B$,;HMQ$5$l!"(BCSS $B%3(B
$B%a%s%H%?%0$,;HMQ$5$l$F$$$k$H$-$KFC$KH/@8$7$^$9!#(B

HTML $B%3%s%F%s%D$N%U%#%k%?$,<:GT$9$k$3$H$K$h$j!"(BWeb $B%"%W%j%1!<%7%g%s$K@x(B
$B:_$9$k$5$^$6$^$JLdBj$,MxMQ$5$l$k2DG=@-$,$"$j$^$9!#967b$,@.8y$9$k$H!"
(BHTML
$B%?%0$rA^F~2DG=$JLdBj$d%/%m%9%5%$%H%9%/%j%W%F%#%s%0$r<u$1$kLdBj$,0z$-5
/$3(B
$B$5$l$k2DG=@-$,$"$j$^$9!#(B

17. PersianBlog Userslist.ASP SQL Injection Vulnerability
BugTraq ID: 14575
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14575
$BMWLs(B:
PersianBlog $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$N(B
$BLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K(B
$B%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

18. ECW Shop Index.PHP SQL Injection Vulnerability
BugTraq ID: 14576
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14576
$BMWLs(B:
ECW Shop $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?(B
$B%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$N967b$K$h$k7k2L$O!"1F6A$r<u$1$k%/%(%j$N%?%$%W$d%G!<%?%Y!<%9$N<BAu$
K$h(B
$B$j0[$J$j$^$9!#(B

19. CPaint xmlhttp Request Input Validation Vulnerability
BugTraq ID: 14577
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14577
$BMWLs(B:
CPaint $B$K$O!"F~NOCM$NBEEv@-3NG'$KLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj(B
$B$O!"0-0U$"$k%9%/%j%W%H$d%j%/%(%9%H$J$I%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%
$%:(B
$B=hM}$,E,@Z$K<B9T$5$l$J$$$?$a$KH/@8$7$^$9!#(B

$BLdBj$NMxMQ$,@.8y$9$k$H!"LdBj$N$"$k%"%W%j%1!<%7%g%s$r<B9T$7$F$$$k%5!<%
P$G(B
$B%;%-%e%j%F%#>e$N6<0R$r>7$/2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<B9T$5$l$k2
DG=(B
$B@-$b$"$j$^$9!#(B

20. ECW Shop Index.PHP Cross Site Scripting Vulnerability
BugTraq ID: 14578
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14578
$BMWLs(B:
ECW Shop $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$
$$3(B
$B$H$KM3Mh$7$^$9!#(B

$B$3$N%?%$%W$N967b$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l(B
$B$k2DG=@-$,$"$j$^$9!#$^$?!"$[$+$N967b$r<u$1$k2DG=@-$b$"$j$^$9!#(B

21. ECW Shop Index.PHP HTML Injection Vulnerability
BugTraq ID: 14579
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14579
$BMWLs(B:
ECW Shop $B$K$O!"(BHTML $B%?%0$rA^F~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?F~NOCM$rF0E*$K@8@.$7$?%3%s%F%s%D$G;HMQ$9$kA0$K!
"F~(B
$BNOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N2r<aJ}K!$r@)8f$9$k2DG=@-$b$"$j$^$
9!#(B
$B$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

22. ECW Shop Order Input Validation Vulnerability
BugTraq ID: 14580
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14580
$BMWLs(B:
ECW Shop $B$K$O!"%j%b!<%H$+$i$NF~NOCM$NBEEv@-3NG'$K4X$9$kLdBj$,B8:_$9$k5?(B
$B$$$,$"$j$^$9!#@=IJ$N2]6b$r7W;;$9$k$H$-$K;HMQ$5$l$k(B URI $B%Q%i%a!<%?%G!<%?(B
$B$KBP$9$k%5%K%?%$%:=hM}$,E,@Z$K9T$o$l$J$$$?$a$K$3$NLdBj$,H/@8$7$^$9!#
(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$F!"FCDj$N(B ECW Shop $BCmJ8$K4X$9$k@A5a=q(B
$B$d@A5a6b3[$rA`:n$9$k2DG=@-$,$"$j$^$9!#(B

23. WinFTP Server Log-SCR Buffer Overflow Vulnerability
BugTraq ID: 14581
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14581
$BMWLs(B:
WinFTP Server $B$O!"%P%C%U%!%*!<%P!<%U%m!<$NLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj(B
$B$O!"%f!<%6$,;XDj$7$?%G!<%?$N6-3&%A%'%C%/$,E,@Z$K<B9T$5$l$J$$$3$H$KM3M
h$7(B
$B$^$9!#(B

$B$3$N967b$K@.8y$9$k$H!"8GDj%5%$%:$N%P%C%U%!$,%*!<%P!<%U%m!<$7!"7k2LE*$
KLd(B
$BBj$N$"$k%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$,<
B9T(B
$B$5$l$k2DG=@-$,$"$j$^$9!#(B

24. EMC Legato Networker Multiple Vulnerabilities
BugTraq ID: 14582
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14582
$BMWLs(B:
EMC Legato Networker $B$O!"%5!<%S%9ITG=>uBV$K4Y$kLdBj!"8"8B>:3J$,0z$-5/$3(B
$B$5$l$kLdBj!"K\Mh5v2D$5$l$F$$$J$$%"%/%;%9!"$*$h$SG$0U%3%^%s%I$,<B9T$5$
l$k(B
$BLdBj$J$I$N1F6A$r<u$1$^$9!#(B

EMC Legato Networker $B$OJ#?t$NLdBj$N1F6A$r<u$1$^$9!#$3$l$i$NLdBj$K$h$j%5!<(B
$B%S%9ITG=>uBV$K4Y$k!"8"8B>:3J$,0z$-5/$3$5$l$k!"K\Mh5v2D$5$l$F$$$J$$%"%
/%;(B
$B%9!"$*$h$S>pJs$,O31L$9$k2DG=@-$,$"$j$^$9!#(B

25. phpPgAds Lib-View-Direct.INC.PHP SQL Injection Vulnerability
BugTraq ID: 14583
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14583
$BMWLs(B:
phpPgAds $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?(B
$B%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$N%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$F!"(BSQL $B9=J8$rCmF~$9$k967b$r<B9T$9(B
$B$k$3$H$,2DG=$G$9!#$3$NLdBj$N7k2L$H$7$F!"%P%C%/%(%s%I%G!<%?%Y!<%9%"%W%
j%1!<(B
$B%7%g%s$N%G!<%?$KBP$9$FK\Mh5v2D$5$l$F$$$J$$FI$_<h$j$d=q$-9~$_%"%/%;%9$
r$b(B
$B$?$i$92DG=@-$,$"$j$^$9!#(B

26. phpPgAds Local File Include Vulnerability
BugTraq ID: 14584
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14584
$BMWLs(B:
phpPgAds $B$K$O!"%m!<%+%k$G%U%!%$%k$,%$%s%/%k!<%I$5$l$k5?$$$,$"$j$^$9!#$3(B
$B$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$
3$H(B
$B$KM3Mh$7$^$9!#(B

$B$3$NLdBj$O!"=EMW$G8"8B$,I,MW$H$5$l$k>pJs$X$N%"%/%;%98"8B$rIUM?$9$kA0$
K!"(B
$B%"%/%;%9$NBEEv@-$N3NG'$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

27. Cisco Clean Access API Access Validation Vulnerability
BugTraq ID: 14585
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14585
$BMWLs(B:
Cisco Clean Access (CCA) $B$O!"G'>Z$5$l$F$$$J$$%f!<%6$,%;%-%e%j%F%#$r2sHr(B
$B$7$F(B API $B$r8F$S=P$9$3$H$,2DG=$H$J$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$rMxMQ$9$k967b<T$O!"%;%-%e%j%F%#%A%'%C%/$r2sHr$7!"%f!<%6%m!<%
k$N(B
$B3d$jEv$F$rJQ99$9$k!"%7%9%F%`$+$i%f!<%6$r@ZCG$9$k!"$*$h$S@_Dj$5$l$F$$$
k%f!<(B
$B%6$K4X$9$k>pJs$r<hF@$9$k2DG=@-$,$"$j$^$9!#(B

28. Xerox MicroServer Web Server Multiple Authentication Bypass and Input Validation Vulnerabilities
BugTraq ID: 14586
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14586
$BMWLs(B:
Xerox MicroServer $B$O!"G'>Z2sHr$*$h$SF~NOCM$NBEEv@-3NG'$K4XO"$9$kJ#?t$NLd(B
$BBj$N1F6A$r<u$1$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%
:=h(B
$BM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$F$$$k$H9M$($i$l$^$9!#(B

$B$3$l$i$NLdBj$NMxMQ$K@.8y$9$k$H!"8"8B>:3J$,0z$-5/$3$5$l$k2DG=@-$,$"$j$
^$9!#(B
$B$=$NB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

29. Chris Moneymaker's World Poker Championship Buffer Overflow Vulnerability
BugTraq ID: 14587
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14587
$BMWLs(B:
Chris Moneymaker's World Poker Championship $B$O!"6-3&>r7o%(%i!<$,B8:_$9$k(B
$B5?$$$,$"$j$^$9!#967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$G%(%i!<$,H/@8$7$?$
j!"(B
$BG$0U$N%3!<%I$,<B9T$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#(B

30. phpAdsNew Lib-View-Direct.INC.PHP SQL Injection Vulnerability
BugTraq ID: 14588
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14588
$BMWLs(B:
phpAdsNew $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?(B
$B%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$N%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$F!"(BSQL $B9=J8$rCmF~$9$k967b$r<B9T$9(B
$B$k$3$H$,2DG=$G$9!#$3$NLdBj$N7k2L$H$7$F!"%P%C%/%(%s%I%G!<%?%Y!<%9%"%W%
j%1!<(B
$B%7%g%s$N%G!<%?$KBP$9$kIT@5$JFI$_<h$j$d=q$-9~$_%"%/%;%9$,<B9T$5$l$k2DG
=@-(B
$B$,$"$j$^$9!#(B

31. PHPFreeNews SearchResults.PHP Multiple SQL Injection Vulnerabilities
BugTraq ID: 14589
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14589
$BMWLs(B:
PHPFreeNews $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NO(B
$BCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

32. PHPFreeNews Multiple Cross-Site Scripting Vulnerabilities
BugTraq ID: 14590
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14590
$BMWLs(B:
PHPFreeNews $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kJ#?t$NLdBj$,B8(B
$B:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%
$%:(B
$B=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"I8E
*$H(B
$B$J$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N(B
$B967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

33. phpAdsNew Local File Include Vulnerability
BugTraq ID: 14591
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14591
$BMWLs(B:
phpAdsNew $B$K$O!"%m!<%+%k$G%U%!%$%k$,%$%s%/%k!<%I$5$l$k5?$$$,$"$j$^$9!#$3(B
$B$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$
3$H(B
$B$KM3Mh$7$^$9!#(B

$B$3$NLdBj$O!"=EMW$G8"8B$,I,MW$H$5$l$k>pJs$X$N%"%/%;%98"8B$rIUM?$9$kA0$
K!"(B
$B%"%/%;%9$NBEEv@-$N3NG'$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

34. PHPTB Topic Board Multiple Remote File Include Vulnerabilities
BugTraq ID: 14592
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14592
$BMWLs(B:
PHPTB $B$K$O!"%j%b!<%H$+$i%U%!%$%k$,%$%s%/%k!<%I2DG=$JJ#?t$NLdBj$,B8:_$9$k(B

$B5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM
}$,(B
$BE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$N$$$:$l$+$NLdBj$rMxMQ$7$F!"(BWeb $B%5!<%P%W%m%;%9$N8"8B$GLdBj(B
$B$N$"$k%3%s%T%e!<%?>e$GG$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG
=@-(B
$B$,$"$j$^$9!#$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!
#(B

35. Mediabox404 Login_Admin_Mediabox404.PHP SQL Injection Vulnerability
BugTraq ID: 14593
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14593
$BMWLs(B:
Mediabox404 $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$N(B
$BLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K(B
$B%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#9
67b(B
$B<T$O$3$NLdBj$rMxMQ$7$F!"G'>Z$r2sHr$7!"LdBj$N$"$k%"%W%j%1!<%7%g%s$KBP$
9$k(B
$B4IM}<T8"8B$r<hF@$G$-$k$3$H$,Js9p$5$l$F$$$^$9!#(B

36. Microsoft Visual Studio .NET msdds.dll Remote Code Execution Vulnerability
BugTraq ID: 14594
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14594
$BMWLs(B:
Microsoft Visual Studio .NET $B$K$O!"%j%b!<%H$+$iG$0U$N%3!<%I$,<B9T$5$l$k(B
$B$3$H$,5v$5$l$F$7$^$&LdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$BLdBj$N$"$k(B msdds.dll $B%i%$%V%i%j$,<BAu$5$l$F$$$k5?$$$N$"$k%"%W%j%1!<%7%g(B
$B%s$r4^$`1F6A$r<u$1$k%Q%C%1!<%8%j%9%H$,99?7$5$l$F$$$^$9!#(B

37. Juniper Netscreen VPN Username Enumeration Vulnerability
BugTraq ID: 14595
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-18
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14595
$BMWLs(B:
Juniper Netscreen $B$N(B VPN $B<BAu$G$O!";vA06&M-%-!<G'>Z$,;HMQ$5$l$F$$$k>l9g!"(B
IKE $B%"%0%l%C%7%V%b!<%I$K$*$1$kM-8z$J%f!<%6L>$,<1JL$5$l$F$7$^$$$^$9!#$3$N
(B
$BLdBj$rMxMQ$9$k$H967b<T$OM-8z$J(B VPN $B%f!<%6$N%j%9%H$r<hF@$9$k$3$H$,2DG=$H(B
$B$J$j$^$9!#M-8z$J%f!<%6L>$r;HMQ$7$F!"967b<T$O%O%C%7%e2=$5$l$?G'>Z>pJs$
rF~(B
$B<j$7!"%V%k!<%H%U%)!<%9967b(B ($BAmEv$j967b(B) $B$r<B9T$9$k2DG=@-$,$"$j$^$9!#$3$N(B
$B967b$K@.8y$9$k$H!"967b<T$O%M%C%H%o!<%/$X$N40A4$J%"%/%;%98"8B$rC%<h$9$
k$3(B
$B$H$K$J$j$^$9!#(B

38. Mutt Handler.c Buffer Overflow Vulnerability
BugTraq ID: 14596
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-18
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14596
$BMWLs(B:
Mutt $B$NEE;R%a!<%k$NE:IU%U%!%$%k$N%(%s%3!<%I$*$h$S%G%3!<%I5!G=$K$O!"%P%C(B

$B%U%!%*!<%P!<%U%m!<$,H/@8$9$kLdBj$,B8:_$7$^$9!#$3$NLdBj$O!"%j%b!<%H$N9
67b(B
$B<T$K$h$k%"%W%j%1!<%7%g%s$KBP$9$k6<0R$r>7$-!"0-0U$N$"$k%3!<%I$r<B9T$9$
k$3(B
$B$H$r5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$rMxMQ$7$?967b$K@.8y$9$k$H!"%j%b!<%H$N967b<T$O0U?^E*$K:n@.$7$
?EE(B
$B;R%a!<%k$NE:IU%U%!%$%k$r;HMQ$7$F0-0U$"$k%3!<%I$,<B9T$9$k2DG=@-$,$"$j$
^$9!#(B

39. W-Agora Site Parameter Directory Traversal Vulnerability
BugTraq ID: 14597
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-18
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14597
$BMWLs(B:
W-Agora $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$k5?$$$,$"$j$^$9!#$3$NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$
KM3(B
$BMh$7$^$9!#(B

$BK\Mh8"8B$r;}$?$J$$%f!<%6$O!"%G%#%l%/%H%j;2>H$K4X$9$kJ8;zNs(B '../' $B$rLdBj(B
$B$N$"$k%Q%i%a!<%?$K;XDj$9$k$3$H$G!"G$0U$N%U%!%$%k$rFI$_=P$9$3$H$,2DG=$
G$9!#(B
$B$3$NLdBj$,MxMQ$5$l$k$H!"5!L)@-$,<:$o$l$k2DG=@-$,$"$j$^$9!#C%<h$5$l$?>
pJs(B
$B$K$h$j!"%P%C%/%(%s%I%7%9%F%`$KBP$7$F99$J$k967b$,2C$($i$l$k2DG=@-$,$"$
j$^(B
$B$9!#B>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

40. ATutor Login.PHP Cross-Site Scripting Vulnerability
BugTraq ID: 14598
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-18
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14598
$BMWLs(B:
ATutor $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"$j$^$9!#$3(B
$B$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$
3$H(B
$B$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

41. Emefa Guestbook Multiple HTML Injection Vulnerabilities
BugTraq ID: 14599
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-18
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14599
$BMWLs(B:
Emefa Guestbook $B$K$O!"(BHTML $B%?%0$rA^F~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"(B
$B$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$rF0E*$K@8@.$7$?%3%s%F%
s%D(B
$B$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$
7$^(B
$B$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N2r<aJ}K!$r@)8f$9$k2DG=@-$b$"$j$^$
9!#(B
$B$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

42. Whisper32 Plaintext Password Disclosure Vulnerability
BugTraq ID: 14600
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-18
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14600
$BMWLs(B:
Whisper32 $B$K$O!"%Q%9%o!<%I$,J?J8$G3+<($5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"(B
$B%"%W%j%1!<%7%g%s$,%;%-%e%j%F%#>eITE,@Z$JJ}K!$G%Q%9%o!<%I$rJ]B8$9$k$3$
H$K(B
$BM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"3F<o$N%7%9%F%`%"%W%j%1!<%7%g%s$N%Q%9%o!<%
I$r(B
$BC%<h$9$k$3$H$,2DG=$G$9!#(B

43. PHPOutsourcing Zorum Prod.PHP Arbitrary Command Execution Vulnerability
BugTraq ID: 14601
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-18
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14601
$BMWLs(B:
Zorum $B$K$O!"G$0U$N%3%^%s%I$,<B9T$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6(B

$B$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!
#(B

$B$3$NLdBj$K$h$j!"LdBj$N$"$k%3%s%T%e!<%?$N(B Web $B%5!<%P$N%;%-%e%j%F%#%3%s%F(B
$B%-%9%HFb$G!"%j%b!<%H$+$i$NIT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$
9!#(B

44. BBCaffe HTML Injection Vulnerability
BugTraq ID: 14602
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-18
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14602
$BMWLs(B:
BBCaffe $B$K$O!"(BHTML $B%?%0$rA^F~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?F~NOCM$rF0E*$K@8@.$7$?%3%s%F%s%D$G;HMQ$9$kA0$K!
"F~(B
$BNOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N2r<aJ}K!$r@)8f$9$k2DG=@-$b$"$j$^$
9!#(B
$B$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

45. Adobe Acrobat and Adobe Reader Remote Buffer Overflow Vulnerability
BugTraq ID: 14603
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14603
$BMWLs(B:
Adobe Acrobat $B$*$h$S(B Adobe Reader $B$O%j%b!<%H$+$i%P%C%U%!%*!<%P!<%U%m!<$,(B
$B0z$-5/$3$5$l$kLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?%G!<%
?$r(B
$B=EMW$J%W%m%;%9%P%C%U%!$K%3%T!<$9$k:]$K!"6-3&%A%'%C%/$,<:GT$9$k$3$H$KM
3Mh(B
$B$7$^$9!#(B

$B967b<T$O!"0-0U$N$"$k(B PDF $B%U%!%$%k$r0U?^E*$K:n@.$7!"LdBj$N$"$k%"%W%j%1!<(B
$B%7%g%s$r;HMQ$7$F$$$k%f!<%6$KAw$j$D$1$k$3$H$G!"$3$NLdBj$rMxMQ$9$k$3$H$
,2D(B
$BG=$G$9!#I8E*%f!<%6$,$3$N(B PDF $B%U%!%$%k$r3+$/$H!"967b<T$OLdBj$N$"$k%3%s%T%e!<(B
$B%?$G$3$N%f!<%6$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$r<B9T$9$k!"$
"$k(B
$B$$$OIT@5%"%/%;%9$r9T$&2DG=@-$,$"$j$^$9!#(B

46. Mantis Multiple Input Validation Vulnerabilities
BugTraq ID: 14604
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14604
$BMWLs(B:
Mantis $B$O!"F~NOCM$NBEEv@-3NG'$K4XO"$9$kJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^(B
$B$9!#$3$l$i$NLdBj$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0!"$*$h$S(B SQL $B9=J8$rCm(B
$BF~2DG=$JLdBj$,4^$^$l$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%
K%?(B
$B%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O%/%m%9%5%$%H%9%/%j%W%F%#%s%0$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%
f!<(B
$B%6$N%V%i%&%6$G!"LdBj$N$"$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$
N%9(B
$B%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$k(B
$BG'>ZMQ>pJs$N@`<h$J$I$N967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

SQL $B9=J8$rCmF~$9$k967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l
(B
$B$?$j!"%G!<%?$,3+<($5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967
b<T(B
$B$,%P%C%/%(%s%I%G!<%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2
DG=(B
$B@-$b$"$j$^$9!#(B

47. OpenVPN Failed Authentication Denial Of Service Vulnerability
BugTraq ID: 14605
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14605
$BMWLs(B:
OpenVPN $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3$NLdBj$K$h$j!"%/%i(B
$B%$%"%s%H@\B3$,@ZCG$5$l$^$9!#(B

$BG'>Z$5$l$F$$$k967b<T$O$3$NLdBj$rMxMQ$7$F!"@55,%f!<%6$X$N%5!<%S%95qH]$
r>7(B
$B$/$3$H$,2DG=$G$9!#(B

48. HAURI Anti-Virus Compressed Files Directory Traversal Vulnerability
BugTraq ID: 14606
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14606
$BMWLs(B:
HAURI Anti-Virus $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$k5?$$$,$"$j$^(B
$B$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$
l$J(B
$B$$$3$H$KM3Mh$7$^$9!#(B

$BK\Mh8"8B$r;}$?$J$$%f!<%6$O!"%G%#%l%/%H%j;2>H$K4X$9$kJ8;zNs(B '../' $B$r%"!<(B
$B%+%$%V$5$l$F$$$k%U%!%$%kL>$K;XDj$9$k$3$H$K$h$j!"G$0U$N>l=j$K%U%!%$%k$
r=q(B
$B$-9~$`$3$H$,2DG=$G$9!#$3$NLdBj$,MxMQ$5$l$k$H!"%G!<%?$N@09g@-$,<:$o$l!
"%3(B
$B%s%T%e!<%?$,5!G=$7$J$/$J$k2DG=@-$,$"$j$^$9!#$3$NLdBj$,MxMQ$5$l$k$H!"L
dBj(B
$B$N$"$k%"%W%j%1!<%7%g%s$,%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,$"$j$^$9!#%&%$%
k%9(B
$BBP:v%=%U%H%&%'%"$,L58z$K$5$l$k$H!"%P%C%/%(%s%I%7%9%F%`$KBP$7$F99$J$k9
67b(B
$B$r;n$_$k$?$a$N<j=u$1$H$J$k2DG=@-$,$"$j$^$9!#(B

49. OpenVPN Packet Decryption Failure Denial Of Service Vulnerability
BugTraq ID: 14607
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14607
$BMWLs(B:
OpenVPN $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3$NLdBj$K$h$j!"%/%i(B
$B%$%"%s%H@\B3$,@ZCG$5$l$^$9!#(B

$BG'>Z$5$l$F$$$k967b<T$O$3$NLdBj$rMxMQ$7$F!"@55,%f!<%6$X$N%5!<%S%95qH]$
r>7(B
$B$/$3$H$,2DG=$G$9!#(B

50. OpenVPN MAC Address Spoofing Denial Of Service Vulnerability
BugTraq ID: 14608
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14608
$BMWLs(B:
OpenVPN $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3$NLdBj$K$h$j!"%*%Z(B
$B%l!<%F%#%s%0%7%9%F%`$N%a%b%j$,;H$$?T$/$5$l!"%7%9%F%`$,%/%i%C%7%e$9$k2
DG=(B
$B@-$,$"$j$^$9!#(B

$BG'>Z$5$l$F$$$k967b<T$O$3$NLdBj$rMxMQ$7$F!"@55,%f!<%6$X$N%5!<%S%95qH]$
r>7(B
$B$-!"(BOpenVPN $B%5!<%P$r%/%i%C%7%e$5$;$k$3$H$,2DG=$G$9!#$^$?!"%*%Z%l!<%F%#%s(B
$B%0%7%9%F%`$r%/%i%C%7%e$5$;$k2DG=@-$,$"$j$^$9!#(B

51. Linux Kernel IPSec Policies Authorization Bypass Vulnerability
BugTraq ID: 14609
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14609
$BMWLs(B:
Linux Kernel $B$K$O!"G'>Z$,2sHr$5$l$kLdBj$,B8:_$7$^$9!#(B

$B$3$NLdBj$O!"8"8B$,I,MW$H$J$k4X?t$X$N%"%/%;%9$r5v2D$9$kA0$K!"G'>Z=hM}$
,E,(B
$B@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$rMxMQ$7$?967b$K@.8y$9$k$H!"%m!<%+%k$N967b<T$O!"K\MhE,MQ$5$l$
k(B
IPSec $B%]%j%7$r2sHr$9$k$3$H$d!"%+!<%M%k%a%b%j$,;H$$?T$/$5$l$k$^$G%]%j%7$r(B

$BDI2C$7%5!<%S%9ITG=>uBV$K4Y$i$;$k$3$H$,2DG=$H$J$j$^$9!#(B

$B967b<T$O$3$NLdBj$r!"(BBID 14477 (Linux Kernel XFRM Array Index Buffer
Overflow Vulnerability) $B$NLdBj$KMxMQ$9$k$3$H$,$G$-$k$3$H$KN10U$9$kI,MW$,(B
$B$"$j$^$9!#(BBID 14477 $B$NLdBj$G$O!"(BIPSec $B%]%j%7$rDI2C$G$-$k$3$H$,I,MW$H$J$j(B
$B$^$9!#(B

52. OpenVPN Same Client Certificate Denial Of Service Vulnerability
BugTraq ID: 14610
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14610
$BMWLs(B:
OpenVPN $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"6%9g>uBV(B
$B$r0z$-5/$3$7!"LdBj$N$"$k%5!<%P$r%/%i%C%7%e$5$;$^$9!#(B

$BG'>Z$5$l$F$$$k967b<T$O$3$NLdBj$rMxMQ$7$F!"@55,%f!<%6$X$N%5!<%S%95qH]$
r>7(B
$B$-!"LdBj$N$"$k%5!<%P%"%W%j%1!<%7%g%s$r%/%i%C%7%e$5$;$k$3$H$,2DG=$G$9!
#(B

53. Linux Kernel SNMP Handler Denial of Service Vulnerability
BugTraq ID: 14611
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14611
$BMWLs(B:
Linux Kernel $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"0-(B
$B0U$N$"$k(B UDP $B%Q%1%C%H$,(B SNMPD $B$K$h$j<u?.$5$l$?$H$-$KH/@8$9$k$3$H$,$"$k(B
NULL $B%]%$%s%?$K$h$k;2>HFI$_=P$7$KM3Mh$7$^$9!#(B

54. Cisco Clean Access Agent Installation Bypass Vulnerability
BugTraq ID: 14612
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14612
$BMWLs(B:
Cisco Clean Access $B$O!"%(!<%8%'%s%H$N6/@)%$%s%9%H!<%k$r2sHr2DG=$H$J$kLd(B
$BBj$N1F6A$r<u$1$^$9!#(B

$B$3$NLdBj$O!"967b<T$,%[%9%H$K$h$k%A%'%C%/$r2sHr$7$F!"%M%C%H%o!<%/$K@\B
3$9(B
$B$k$3$H$r5v$7$F$7$^$$$^$9!#$?$@$7!"%j%b!<%H%A%'%C%/$O$3$N>l9g$G$b<B9T$
5$l(B
$B$^$9!#(B

55. Elm Expires Header Remote Buffer Overflow Vulnerability
BugTraq ID: 14613
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14613
$BMWLs(B:
Elm $B$O!"967b<T$,0-0U$N$"$k%3!<%I$r<B9T$9$k$3$H$r5v$7$F$7$^$&2DG=@-$N$"$k
(B
$B%P%C%U%!%*!<%P!<%U%m!<$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!
<%6(B
$B$,;XDj$7$?%G!<%?$N6-3&%A%'%C%/$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#
(B

$B$3$N967b$K@.8y$9$k$H!"8GDj%5%$%:$N%P%C%U%!$,%*!<%P!<%U%m!<$7!"7k2LE*$
KLd(B
$BBj$N$"$k%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$,<
B9T(B
$B$5$l$k$3$H$K$J$j$^$9!#(B

56. Linux Kernel ISO File System Denial Of Service Vulnerability
BugTraq ID: 14614
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14614
$BMWLs(B:
$B05=L$5$l$?(B ISO $B%U%!%$%k%7%9%F%`$N%+!<%M%k%I%i%$%P$K$O!"%5!<%S%9ITG=>uBV(B
$B$K4Y$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"F~NOCM$N%5%K%?%$%:=hM
}$,(B
$B%I%i%$%P$K$h$jE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B0-0U$N$"$k05=L$5$l$?(B ISO $B%$%a!<%8$r%+!<%M%k$,%^%&%s%H$7$h$&$H$9$k$H!"%+!<(B
$B%M%k$,%/%i%C%7%e$7$^$9!#(B

57. MyBulletinBoard Search.PHP SQL Injection Vulnerability
BugTraq ID: 14615
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14615
$BMWLs(B:
MyBulletinBoard $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N(B
$B%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

58. Sysinternals Process Explorer CompanyName Value Buffer Overflow Vulnerability
BugTraq ID: 14616
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14616
$BMWLs(B:
Process Explorer $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?%G!<%?$N6-3&%A%'%C%/$,E,@Z$K<B9T$5$l$J$$$
3$H(B
$B$KM3Mh$7$^$9!#(B

$B$3$N967b$K@.8y$9$k$H!"8GDj%5%$%:$N%P%C%U%!$,%*!<%P!<%U%m!<$7!"7k2LE*$
KLd(B
$BBj$N$"$k%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$,<
B9T(B
$B$5$l$k$3$H$K$J$j$^$9!#(B

59. Woltlab Burning Board ModCP.PHP SQL Injection Vulnerability
BugTraq ID: 14617
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14617
$BMWLs(B:
WoltLab Burning Board $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~(B
$BNOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

$B967b<T$,LdBj$N$"$k%9%/%j%W%H$r;HMQ$9$k$K$O!"%b%G%l!<%?$NG'>ZMQ>pJs$,I
,MW(B
$B$H$J$kE@$KN10U$9$Y$-$G$9!#(B

60. Land Down Under Multiple SQL Injection Vulnerabilities
BugTraq ID: 14618
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14618
$BMWLs(B:
Land Down Under $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"(B
$BF~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

61. Land Down Under Multiple Cross-Site Scripting Vulnerabilities
BugTraq ID: 14619
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14619
$BMWLs(B:
Land Down Under $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kJ#?t$NLdBj(B
$B$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%
K%?(B
$B%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"I8E
*$H(B
$B$J$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N(B
$B967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

62. PCRE Regular Expression Heap Overflow Vulnerability
BugTraq ID: 14620
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14620
$BMWLs(B:
PCRE $B$K$O!"%R!<%WNN0h$G%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O!"%G!<%?$rFbIt$N%a%b%j%P%C%U%!$K%3%T!<$9$kA0$K!"%f!<%6$,;XD
j$7(B
$B$?F~NOCM$N6-3&%A%'%C%/$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$rMxMQ$7$?967b$,@.8y$7$?>l9g$N1F6A$O!"LdBj$N$"$k%i%$%V%i%j$r;
HMQ(B
$B$9$k%"%W%j%1!<%7%g%s$H%f!<%6$NG'>ZMQ>pJs$K$h$C$F0[$J$j$^$9!#$3$N967b$
,@.(B
$B8y$9$k$H!":G=*E*$K967b<T$,=EMW$J%a%b%j@)8f9=B$$r@)8f$7!"G$0U$N%a%b%j0
LCV(B
$B$KG$0U$N%G!<%?$r=q$-9~$`$3$H$r5v$7$F$7$^$$$^$9!#(B

III.SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. Storm brewing over SHA-1 as further breaks are found
$BCx<T(B: Robert Lemos
3 $BL>$NCf9q?M8&5f<T$O!"%I%-%e%a%s%H$NEE;R=pL>$KMQ$$$k0E9f2=5,3J$KBP$9$k9
6(B
$B7bJ}K!$r@:O#$7!"0E9f8&5f<T$K!"(BSecure Hash Algorithm (SHA) $B$N;HMQ$rB.$d$+(B
$B$K=*$o$i$;$kI,MW$,$"$k$N$G$O$J$$$+$H$$$&O@5D$rBw$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11292

2. Plug-and-play bots worming and warring among Windows systems
$BCx<T(B: Robert Lemos
$B%\%C%I%=%U%H%&%'%"$r%Y!<%9$H$9$k?tB?$/$N0[$J$k%o!<%`$,!"%\%C%H%M%C%H$
r91(B
$B5W2=$5$;$kL\E*$G!"4{$K%;%-%e%j%F%#LdBj$rJz$($F$$$k(B Windows 2000 $B%7%9%F%`(B
$B$X$N967b$r3+;O$7$F$$$k$H!"%;%-%e%j%F%#$N@lLg2H$O7Y9p$7$F$$$^$9!#(BCN
N $B$d(B
New York Times $B$J$I$N$$$/$D$+$N4k6H$O%Q%C%A$NE,MQ$,CY$l$?$?$a$K4{$K46@w(B
$B$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11285

3. Worm spreading through Microsoft Plug-and-Play flaw
$BCx<T(B: Robert Lemos
Zotob $B$H8F$P$l$k%3%s%T%e!<%?%&%$%k%9$O!"(BWindows $B%*%Z%l!<%F%#%s%0%7%9%F%`(B
$B$N(B Plug and Play $B5!G=$KB8:_$9$k%;%-%e%j%F%#>e$NLdBj$rMxMQ$7$F%3%s%T%e!<(B
$B%?$K46@w$7$^$9$,!"%;%-%e%j%F%#$N@lLg2H$?$A$O!":#2s$N967b$OA02s$NN.9T$
[$I(B
$B=EBg$J$b$N$G$O$J$$$H9M$($F$$$^$9!#(B

http://www.securityfocus.com/news/11281

4. NIST, DHS add national vulnerability database to mix
$BCx<T(B: Robert Lemos
National Institute of Standards and Technology ($BJF9qI8=`5;=Q6I(B) $B$O!"@/I\(B
$B;q6b$K$h$k%;%-%e%j%F%#LdBj$N%G!<%?%Y!<%9$r9=C[$7$^$7$?!#$3$l$G%;%-%e%
j%F%#(B
$BLdBj$N%G!<%?%Y!<%94V$G$N6%Ah$O7c$7$/$J$k$N$G$7$g$&$+!)$=$l$H$bC1$J$kO
"K.(B
$B@/I\$N1g=u$G@8$^$l$?%/%m!<%s$H$J$k$N$G$7$g$&$+!)(B

http://www.securityfocus.com/news/11278

5. Worm snaffles online gamers' passwords
$BCx<T(B: John Leyden
$B%U%!%s%?%8!<%m!<%k%W%l%$%s%0%2!<%`!V%W%j%9%H%s%F!<%k!W$N%W%l!<%d$O!"%
f!<(B
$B%6L>!"%Q%9%o!<%I!"$*$h$S%G!<%?$rC%<h$9$k$h$&$K%W%m%0%i%`$5$l$?%o!<%`$
r:n(B
$B@.$7$?%&%$%k%9:n@.<T$K$h$k8=<B$NITL{2w$J967b$KG:$^$5$l$F$$$^$9!#(B

http://www.securityfocus.com/news/11294

6. Hotel hacking could pump smut into every room
$BCx<T(B: John Leyden
$B%[%F%k$K@_CV$5$l$F$$$k%O%$%V%j%C%I$N%V%m!<%I%P%s%I%$%s%?!<%M%C%H$H%*%
s%G(B
$B%^%s%I(B TV $B%(%s%?!<%F%$%a%s%H%7%9%F%`$O!"3J9%$N967bBP>]$H$J$C$F$$$k$H%;%-%e(B
$B%j%F%#$N8&5f$O7Y9p$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11293

7. US Air Force scrambles after privacy breach
$BCx<T(B: John Leyden
$BJF9q6u73$O!"%3%s%T%e!<%?$N%;%-%e%j%F%#?/32$,H/8+$5$l$?$?$a!"8D?M>pJs$
,8x(B
$B3+$5$l$?2DG=@-$,$"$k$3$H$r(B33,000 $B?M0J>e$N6u73J<$KDLCN$;$6$k$rF@$J$/$J$j(B
$B$^$7$?!#(B

http://www.securityfocus.com/news/11290

8. Exploit for unpatched IE vuln fuels hacker fears
$BCx<T(B: John Leyden
IE $B$NLdBj$r%Y!<%9$H$7$F%O%C%+!<$N967b$,@ZGw$7$F$$$k$H$$$&6<0R$N??$CB~Cf
(B
$B$G!"(BMicrosoft $B$O(B IE $B$N%;%-%e%j%F%#%P%0$ND4::$r9T$C$F$$$^$9!#(B

http://www.securityfocus.com/news/11289

--
$BK]Lu(B: LAC $BK]Lu%A!<%`(B
$B4F=$(B: $B>.3^8691M:(B (OGASAWARA Tsuneo)
LAC Co., Ltd.
http://www.lac.co.jp/index.html
0?l *?H?÷
?]0?Y10 +0 *?H?÷
?
û0?0?k9ÊT?þP"2þ2ÙÛû?0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
180518235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
*?H?÷
0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ÝªY?Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu0
*?H?÷
?÷Îv\«??Ü?o49]?>kr,áÇ¢{@)¹x?ºLÅ£j^?n{ãòAf¾û®¢Î?ó¢4?´²¶$òåÕàÈåbm?{Ë¾»?|WÊð7©¯?î¾(?Ù&v ÍÄNð®Õ¾¯WjÐ BBBô
Ì¥x??&8?G0?0?kLÇêª?>qÓ?ø=:???0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
280801235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
*?H?÷
0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ÝªY?Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu0
*?H?÷
©OÃ
Çg¾,ËÙ¨Í-uç~?;rë~ë\- ?Ökm`|å®Å#\JÐ¯±]óÇ¶
Ûà?
Ý¼Çv?µÝOÃ?u¸ÀæÉ[k¥¸?Ü¬¤ÝríN¡÷O¼ÓêÈdt{Â?A?esXñ?<j±?ÉÄ?¼ÏEmEân"?þ¼1\
èòÙ0?¶0? %îs<û ?U??{?í¿0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
020404000000Z
070403235959Z0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0?0
*?H?÷
0?¼+þîO×ùútüoÃøÊ?(v'È4 Ëªr-Éö?~?hòKïÉÿo½?îÓ??ÿ¨þîhU°¼ð°óåNhfisµ:V÷^uæo;êâd'\`?ÝÛ+·¼¶ª¡$)¯t¦?¯GöÕK~,e3îÛ¥<
KCp?ÙÙÂ??Äø(£¤0¡0Uÿ0ÿ0FU ?0=0;`?H?øE0,0*+https://www.verisign.co.jp/rpa0U
ÿ0 `?H?øB0 U0¤010UC1C2-1-40
*?H?÷
\?Ïh??¿ÏÓ_n²N>?Qs?e¢w ~ü v1?ÿîv4YVÊæGèãTÓÈ?Î?«bMo]?¸¢±?_K??Çó[m³#ÕcÑU*¿þ·ÄUò´o:?¿ê§q^/=¯?
?òt)ÿÌõ
?¬ÕÕ?ô÷7ªÔ?pd{0?10?? d2?7Åw?É??¹?b?ñ0
*?H?÷
0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0
050331000000Z
060331235959Z0ü10U
VeriSign Japan K.K.10UISP Service CA1503U,Terms of use at www.verisign.co.jp/rpa (c)011806U/Service Name - 5BF88D474BD2A6D3E7E073163F0C4D1210UHitachijoho10UTsuneo Ogasawara1!0 *?H?÷
t.ogaswr (at) lac.co (dot) jp0 [email concealed]?0
*?H?÷
0?¿*E´\2ÅÍóDíÐÏÇ~?+Ü=Ù&-u4)~è§ÊÇ2ÉnAàÙWÍØoÓÐûÊfÚq³.?³¥Hë¼ÀÚ×?!0¯6iÚ??±?rÙDÏdA[?Ùî?´q\~ãè?ú¨
Ä»ù?oÊi1¶+_ãr?#??>¥þ?IÁeA£ä0á0 U00EU >0<0:
`?H?øE0,0*+https://www.verisign.co.jp/rpa0U 0
`?H?øB?0ZUS0Q0O M K?Ihttp://onsitecrl.verisign.co.jp/VeriSi
gnJapanKKISPServiceCA/LatestCRL.crl0
`?H?øE ÿ0
*?H?÷
TMÎ¤©ýäøpßËµ"òÎ©,ÍË¶Q??`puÏ?¥?F?ÿ¬ãÅz?¸íñ²Oð)ô2ð$³q?âüý |øu
ßx©?Ì0³Jçjñ^9?^ p('?öC¦^ã=?øîÍ?&´ª.àTaxz4ÓÄÇ«<v?òY³QúÄ1?90?50Þ0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CAd2?7Åw?É??¹?b?ñ0 + ±0 *?H?÷
1 *?H?÷
0 *?H?÷
1
051216082700Z0# *?H?÷
1¡õFÆ?t@?$Á<?7¬$û)?È0R *?H?÷
1E0C0
*?H?÷
0*?H?÷
?0+0
*?H?÷
@0
*?H?÷
(0
*?H?÷
??Uà?1þàù½4?{?^!%YX*?%?7dÖóÿ Úm>?]Àî^>?Wrê-p°Ö1??ï?+ÊP] ÊSÈ÷çß?Ö7H5Ìüq/?ZÜÇG(2?|"Ë???tji&?´¥IHú·?(*ecÜûrñQ;

[ reply ]