$B>.3^86(B@$B%i%C%/$G$9!#(B

SecurityFocus Newsletter $BBh(B 311 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

------------------------------------------------------------------------
---
BugTraq-JP $B$K4X$9$k(B FAQ ($BF|K\8l(B):
http://www.securityfocus.com/archive/79/description
$B!&(BSecurityFocus Newsletter $B$NOBLu$O(B BugTraq-JP $B$G0l<!G[I[$5$l$F$$$^$9(B
$B!&(BBugTraq-JP $B$X$N;22CJ}K!!"C&B`J}K!$O$3$N(B FAQ $B$r$4;2>H$/$@$5$$(B
------------------------------------------------------------------------
---
SecurityFocus Newsletter $B%"!<%+%$%V(B ($B1Q8l(B):
http://www.securityfocus.com/archive/78
BugTraq $B$K4X$9$k(B FAQ ($B1Q8l(B):
http://www.securityfocus.com/archive/1/description
------------------------------------------------------------------------
---
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B SecurityFocus $B$N5v2D$r3t<02q<R%i%C%/$,F@$?>e$G9T$o$l$F$$$^$9!#(B
$B!&(BSecurityFocus Newsletter $B$NOBLu$r(B Netnews, Mailinglist, World Wide Web,
$B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$NA4J80zMQ$r$*4j$$$7$^$9!#
(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;$s$,!"(B
$B=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurityFocus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k7A<0$N(B
$B%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://online.securityfocus.com/archive/79
------------------------------------------------------------------------
---
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02q<R%i%C%/$O@UG$$rIi$o$J$$$b$N$H$7$^
(B
$B$9!#(B
------------------------------------------------------------------------
---
$BLu<T$+$i$N$*CN$i$;(B:
$B!&$b$7!"(Btypo $B$d8mLu$,8+$D$+$C$?>l9g!"(BBugTraq-JP $B$X(B Errata $B$H$7$F=$@5(B
$BHG$r$4Ej9FD:$/$+!"4F=$<T(B (t.ogaswr (at) lac.co (dot) jp [email concealed]) $B$K$*CN$i$;$/$@$5$$!#(B
$B8e<T$N>l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
------------------------------------------------------------------------
---
This translation is encoded and posted in ISO-2022-JP.

$B86HG(B:
Date: Tue, 16 Aug 2005 16:54:10 -0600
Message-ID: <43026E92.6040803 (at) securityfocus (dot) com [email concealed]>

SecurityFocus Newsletter #311
-----------------------------

This Issue is Sponsored By: CrossTec

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
1. Jose Nazario discusses worms
2. Packet forensics using TCP
II. BUGTRAQ SUMMARY
1. Acunetix Web Vulnerability Scanner Remote Denial of Service Vulnerability
2. PHP-Fusion Messages.PHP SQL Injection Vulnerability
3. SysCP Multiple Script Execution Vulnerabilities
4. Invision Power Board Attached File Cross-Site Scripting Vulnerability
5. PHPSiteStats Unspecified Authentication Bypass Vulnerability
6. OpenBB Multiple SQL Injection Vulnerabilities
7. E107 Website System Attached File Cross-Site Scripting Vulnerability
8. Wine WineLauncher.IN Local Insecure File Creation Vulnerability
9. Gravity Board X Login SQL Injection Vulnerability
10. DVBBS Multiple Cross Site Scripting Vulnerabilities
11. Gravity Board X DeleteThread.PHP Cross-Site Scripting Vulnerability
12. TDiary Cross-Site Request Forgery Vulnerability
13. FFTW Insecure Temporary File Creation Vulnerability
14. Gravity Board X CSS Template Unauthorized Access Vulnerability
15. MyFAQ Multiple SQL Injection Vulnerabilities
16. Calendar Express Multiple SQL Injection Vulnerabilities.
17. Calendar Express Search.PHP Cross-Site Scripting Vulnerability
18. Chipmunk CMS Fontcolor Cross Site Scripting Vulnerability
19. FunkBoard Multiple Cross-Site Scripting Vulnerabilities
20. E107 Submitted Link HTML Injection Vulnerability
21. MySQL User-Defined Function Buffer Overflow Vulnerability
22. Sun Solaris Printd Arbitrary File Deletion Vulnerability
23. Microsoft Internet Explorer COM Object Instantiation Buffer Overflow Vulnerability
24. Microsoft Internet Explorer Web Folder Behaviors Cross-Domain Scripting Vulnerability
25. Microsoft Windows Plug and Play Buffer Overflow Vulnerability
26. Microsoft Windows Print Spooler Buffer Overflow Vulnerability
27. Microsoft Internet Explorer Unspecified SharePoint Portal Services Log Sink ActiveX Vulnerability
28. TriggerTG TClanPortal Multiple SQL Injection Vulnerabilities
29. Linux Kernel Non-Zero Keyring Local Denial of Service Vulnerability
30. Microsoft Windows Telephony Service Buffer Overflow Vulnerability
31. Microsoft Windows Kerberos Denial Of Service Vulnerability
32. Microsoft Windows Kerberos PKINIT Man In The Middle Vulnerability
33. Linux Kernel Session Keyring Allocation Local Denial of Service Vulnerability
34. Inkscape Insecure Temporary File Creation Vulnerability
35. XMB Forum U2U.Inc.PHP SQL Injection Vulnerability
36. AWStats Referrer Arbitrary Command Execution Vulnerability
37. Mozilla Firefox And Thunderbird Long URI Obfuscation Weakness
38. Easy Software Products CUPS Denial of Service Vulnerability
39. Apple Safari Web Browser JavaScript Invalid Address Denial Of Service Vulnerability
40. XPDF Loca Table Verification Remote Denial of Service Vulnerability
41. AOL Client Software Local Privilege Escalation Vulnerability
42. Gaim AIM/ICQ Protocols Multiple Vulnerabilities
43. GNOME Evolution Multiple Format String Vulnerabilities
44. WordPress Cookie Data PHP Code Injection Vulnerability
45. EZUpload Multiple Remote File Include Vulnerabilities
46. PHPTB Topic Board Multiple SQL Injection Vulnerabilities
47. Wyse Winterm 1125SE Remote Denial of Service Vulnerability
48. PHlyMail Unspecified Authentication Bypass Vulnerability
49. VegaDNS Index.PHP Cross Site Scripting Vulnerability
50. Grandstream Budge Tone Denial Of Service Vulnerability
51. HP Proliant DL585 Server Unauthorized Remote Access Vulnerability
52. EQDKP Session.PHP Authorization Bypass Vulnerability
53. Nortel Contivity VPN Client Local Privilege Escalation Vulnerability
54. Lasso Professional Server Remote Authentication Bypass Vulnerability
55. MidiCart ASP Item_Show.ASP Code_No Parameter SQL Injection Vulnerability
56. Gallery PostNuke Integration Access Validation Vulnerability
57. Novell eDirectory Server iMonitor Buffer Overflow Vulnerability
58. McAfee ePolicy Orchestrator Local Information Disclosure Vulnerability
59. Veritas Backup Exec For Windows And NetWare Arbitrary File Download Vulnerability
60. MyBulletinBoard Multiple SQL Injection Vulnerabilities
61. Kaspersky Anti-Virus For Unix Local Insecure Default Permission Vulnerabilities
62. PHPBB BBCode IMG Tag Script Injection Vulnerability
63. FUDForum Tree View Access Validation Vulnerability
64. Mentor ADSL-FR4II Multiple Vulnerabilities
65. Isemarket JaguarControl ActiveX Control Buffer Overflow Vulnerability
III. SECURITYFOCUS NEWS
1. Worm spreading through Microsoft Plug-and-Play flaw
2. NIST, DHS add national vulnerability database to mix
3. Microsoft's "monkeys" find first zero-day exploit
4. Annual hacking game teaches security lessons
5. Apple patches OS X security flaws
6. IRC bot latches onto Plug-and-Play vuln
7. 180Solutions sues former affiliates over illegal tactics
8. Cabir mobile worm gives track fans the run around


I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
----------------------------

II.BUGTRAQ SUMMARY
--------------------
1. Acunetix Web Vulnerability Scanner Remote Denial of Service Vulnerability
BugTraq ID: 14488
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-06
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14488
$BMWLs(B:
Acunetix Web Vulnerability Scanner $B$O!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9(B
$BITG=>uBV$K4Y$kLdBj$N1F6A$r<u$1$^$9!#$3$N%"%W%j%1!<%7%g%s$N(B Web $B%9%K%C%U%!!<(B
$B%3%s%]!<%M%s%H$,$3$NLdBj$N1F6A$r<u$1$^$9!#(B

$B967b<T$O$J$s$i$+$NJ}K!$G%5!<%P$r@)8f$9$k!"$^$?$O56Au$7$?%H%i%U%#%C%/$
r%M%C(B
$B%H%o!<%/$KAw?.$9$k$3$H$K$h$j!"$3$NLdBj$rMxMQ$9$k$3$H$,2DG=$G$9!#967b$
,@.(B
$B8y$9$k$H!"%j%=!<%9$,>CHq$5$l%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,$"$j$^$9!#
(B

Acunetix Web Vulnerability Scanner 2.0 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^(B
$B$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

2. PHP-Fusion Messages.PHP SQL Injection Vulnerability
BugTraq ID: 14489
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-06
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14489
$BMWLs(B:
PHP-Fusion $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O!"%f!<%6$,(B 'messages.php' $B%9%/%j%W%H$K;XDj$7$?F~NOCM$r(B SQL $B%/(B
$B%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM
3Mh(B
$B$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

3. SysCP Multiple Script Execution Vulnerabilities
BugTraq ID: 14490
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14490
$BMWLs(B:
SysCP $B$O!"%9%/%j%W%H$N<B9T$K4XO"$9$kJ#?t$NLdBj$N1F6A$r<u$1$^$9!#(B

$B0J2<$NLdBj$,H/8+$5$l$F$$$^$9!#(B

$B$3$N%"%W%j%1!<%7%g%s$O!"%j%b!<%H$+$i%U%!%$%k$r%$%s%/%k!<%I2DG=$JLdBj$
N1F(B
$B6A$r<u$1$^$9!#967b<T$O%j%b!<%H$+$i%9%/%j%W%H%3!<%I$r%$%s%/%k!<%I$7!"L
dBj(B
$B$N$"$k%5!<%P$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G$=$N%9%/%j%W%H%3!<%I$r<B9T$
9$k(B
$B$3$H$,2DG=$G$9!#(B

$B%9%/%j%W%H%3!<%I$N<B9T$K4XO"$9$kJL$NLdBj$G$O!"(BPHP eval() $B%9%F!<%H%a%s%H(B
$B$r2sHr$9$k$3$H$K$h$j!"967b<T$KG$0U$N4X?t$*$h$S%9%/%j%W%H$N8F$S=P$7$r5
v$7(B
$B$F$7$^$&2DG=@-$,$"$j$^$9!#(B

SysCP 1.2.10 $B0JA0$N%P!<%8%g%s$K$*$$$F!"$3$l$i$NLdBj$N1F6A$r<u$1$k5?$$$,(B
$B$"$j$^$9!#(B

4. Invision Power Board Attached File Cross-Site Scripting Vulnerability
BugTraq ID: 14492
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14492
$BMWLs(B:
Invision Power Board $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$(B
$B$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$
K<B(B
$B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

Invision Power Board 1.0.3 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$HJs9p$5$l$F(B
$B$$$^$9!#$3$N%"%W%j%1!<%7%g%s$N$=$l0J30$N(B 1.x $B%P!<%8%g%s$b1F6A$r<u$1$k2D(B
$BG=@-$,$"$j$^$9!#$?$@$7!"$?$@$7!"$3$N%"%W%j%1!<%7%g%s$N(B 2.x $B%P!<%8%g%s$O!"(B
$B$3$NLdBj$N1F6A$r<u$1$J$$$3$H$,Js9p$5$l$F$$$^$9!#(B

5. PHPSiteStats Unspecified Authentication Bypass Vulnerability
BugTraq ID: 14493
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14493
$BMWLs(B:
PHPSiteStats $B$K$O!"G'>Z$,2sHr$5$l$kL$FCDj$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"K\Mh8"8B$r;}$?$J$$967b<T$,G'>Z$r2sHr$7$FLdBj$N$"$k%
"%W(B
$B%j%1!<%7%g%s$K%"%/%;%9$9$k$3$H$r5v$7$F$7$^$$$^$9!#$3$l$K$h$j!"967b<T$
O!"(B
$BLdBj$N$"$k%3%s%T%e!<%?$KBP$7$F$=$NB>$N967b$r<B9T$9$k2DG=@-$,$"$j$^$9!
#(B

PHPSiteStats 1.0 $B$K$*$$$F!"$3$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$=$NB>$N%P!<(B
$B%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

6. OpenBB Multiple SQL Injection Vulnerabilities
BugTraq ID: 14494
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14494
$BMWLs(B:
OpenBB $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3(B
$B$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM(B
$B$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$l$i$N967b$N7k2L$O1F6A$r<u$1$k%/%(%j$N<oN`$*$h$S%G!<%?%Y!<%9$N<BAu$
K$h$C(B
$B$F0[$J$k2DG=@-$,$"$j$^$9!#(B

7. E107 Website System Attached File Cross-Site Scripting Vulnerability
BugTraq ID: 14495
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14495
$BMWLs(B:
e107 Website System $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,(B
$B$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<
B9T(B
$B$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

8. Wine WineLauncher.IN Local Insecure File Creation Vulnerability
BugTraq ID: 14496
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14496
$BMWLs(B:
Wine $B$O!"%m!<%+%k$G%;%-%e%j%F%#>eITE,@Z$K%U%!%$%k$,:n@.$5$l$kLdBj$N1F6A(B

$B$r<u$1$^$9!#$3$NLdBj$O!"@_7W>e$NITHw$K$h$j!"%U%!%$%k$X$N=q$-9~$_A0$K%
U%!(B
$B%$%k$NB8:_$N3NG'$K<:GT$7$F$7$^$&$3$H$KM3Mh$9$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$K4X$9$k8=;~E@$G$N>\:Y>pJs$G$O!">\:Y$J5;=QE*@bL@$ODs6!$G$-$^$
;$s!#(B
$B>\:Y$,8x3+$5$l<!Bh!"$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%"%W%j%1!<%7%g%s$r<B9T$9$k5?$$$
r;}(B
$B$?$J$$%f!<%6$N8"8B$G!"G$0U$N%U%!%$%k$r>e=q$-$9$k2DG=@-$,$"$j$^$9!#(B

$B%P!<%8%g%s(B 20050725.0 $B$K$*$$$F!"$3$NLdBj$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<(B
$B%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

9. Gravity Board X Login SQL Injection Vulnerability
BugTraq ID: 14497
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14497
$BMWLs(B:
Gravity Board X (GBX) $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~(B
$BNOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

10. DVBBS Multiple Cross Site Scripting Vulnerabilities
BugTraq ID: 14498
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14498
$BMWLs(B:
DVBBS $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kJ#?t$NLdBj$,B8:_$9$k(B

$B5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E
,@Z(B
$B$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

11. Gravity Board X DeleteThread.PHP Cross-Site Scripting Vulnerability
BugTraq ID: 14499
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14499
$BMWLs(B:
Gravity Board X (GBX) $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$(B
$B$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$
K<B(B
$B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

12. TDiary Cross-Site Request Forgery Vulnerability
BugTraq ID: 14500
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14500
$BMWLs(B:
tDiary $B$K$O%/%m%9%5%$%H%j%/%(%9%H%U%)!<%8%'%j967b$r<u$1$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O%j%b!<%H$N967b<T$K%G!<%?$d@_DjFbMF$N:o=|!"$*$h$SLdBj$N$"$k%
3%s(B
$B%T%e!<%?>e$G$N%3%^%s%I$N<B9T$r5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#(B

tDiary 2.0.1 $B0JA0$N%P!<%8%g%s$*$h$S(B tDiary 2.1.1 $B$K$*$$$F!"$3$NLdBj$N1F(B
$B6A$r<u$1$^$9!#(B

13. FFTW Insecure Temporary File Creation Vulnerability
BugTraq ID: 14501
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14501
$BMWLs(B:
FFTW$B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#%m!<%
+%k(B
$B$K%"%/%;%9$,2DG=$J967b<T$O$3$NLdBj$r;HMQ$9$k$3$H$K$h$j!"%"%W%j%1!<%7%
g%s(B
$B$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G%U%!%$%k$r>e=q$-$9$k2DG=@-$,$"$j$^$9!#$
3$N(B
$BLdBj$O$3$N%W%m%0%i%`$K$h$C$F(B '/tmp' $B%G%#%l%/%H%jFb$KM=B,2DG=$JL>A0$r;}$D(B
$B0l;~%U%!%$%k$,:n@.$5$l$k$3$H$KM3Mh$7$^$9!#(B

$B%m!<%+%k$N967b<T$O!"0l;~%U%!%$%k$,:n@.$5$l$k%G%#%l%/%H%j$K0-0U$"$k%7%
s%\(B
$B%j%C%/%j%s%/$r:n@.$9$k$3$H$K$h$C$F!"$3$NLdBj$rMxMQ$9$k2DG=@-$,9b$$$H9
M$((B
$B$i$l$^$9!#$3$N%W%m%0%i%`$,0l;~%U%!%$%k$r=hM}$7$h$&$H;n$_$k$H!"Be$o$j$
K0-(B
$B0U$"$k%7%s%\%j%C%/%j%s%/$K$h$j;XDj$5$l$?%U%!%$%k$,=hM}$5$l$F$7$^$$$^$
9!#(B

$B$3$N967b$K$h$j=EMW$J%U%!%$%k$,>e=q$-$5$l$k>l9g!"%G!<%?$,GK2u$5$l$k$^$
?$O(B
$B%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,9b$$$H?dB,$5$l$^$9!#$=$NB>$N967b$,<B9T$
5$l(B
$B$k2DG=@-$b$"$j$^$9!#(B

FFTW $B%i%$%V%i%j(B 3.0.1 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$HJs9p$5$l$F$$$^$9!#(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

14. Gravity Board X CSS Template Unauthorized Access Vulnerability
BugTraq ID: 14502
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14502
$BMWLs(B:
Gravity Board X (GBX) $B$O!"IT@5%"%/%;%9$,<B9T$5$l$kLdBj$N1F6A$r<u$1$^$9!#(B
$B$3$NLdBj$O!"8"8B$,I,MW$J5!G=$X$N%"%/%;%9$r5v2D$9$kA0$K!"%"%/%;%9$NBEE
v@-(B
$B3NG'$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$9$k$3$H$K$h$j!"4{B8$N(B CSS $B%F%s%W%l!<%H$rJQ99$7$F(B
$BG$0U$N(B PHP $B%3!<%I$r%$%s%/%k!<%I$9$k$3$H$,2DG=$G$9!#$=$N7k2L!"967b<T$OJ](B
$BB8$5$l$F$$$k%F%s%W%l!<%H$r8F$S=P$7!"(BWeb $B%5!<%P%W%m%;%9$N%;%-%e%j%F%#%3%s(B
$B%F%-%9%HFb$G0-0U$"$k(B PHP $B%3!<%I$r<B9T$9$k$3$H$,2DG=$G$9!#$3$l$O!"%P%C%/(B
$B%(%s%I%7%9%F%`$KBP$7$F99$J$k967b$r;n$_$k$?$a$N<j=u$1$H$J$k2DG=@-$,$"$
j$^(B
$B$9!#(B

15. MyFAQ Multiple SQL Injection Vulnerabilities
BugTraq ID: 14503
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14503
$BMWLs(B:
myFAQ $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l(B
$B$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$
$$3(B
$B$H$KM3Mh$7$^$9!#(B

$B$3$l$i$NLdBj$K$h$j!"%j%b!<%H$N967b<T$,%G!<%?%Y!<%9%/%(%j$K0-0U$"$kF~N
OCM(B
$B$rEO$7!"%/%(%j$NO@M}9=B$$rA`:n$9$k$J$I$N967b$r2C$($k$3$H$,5v$5$l$F$7$
^$&(B
$B2DG=@-$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

16. Calendar Express Multiple SQL Injection Vulnerabilities
BugTraq ID: 14504
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14504
$BMWLs(B:
Calendar Express $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"(B
$B$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0(B
$B$K!"F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

17. Calendar Express Search.PHP Cross-Site Scripting Vulnerability
BugTraq ID: 14505
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14505
$BMWLs(B:
Calendar Express $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"(B
$B$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9
T$5(B
$B$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

18. Chipmunk CMS Fontcolor Cross Site Scripting Vulnerability
BugTraq ID: 14506
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14506
$BMWLs(B:
Chipmunk CMS $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"$j$^(B
$B$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$
l$J(B
$B$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N(B Web $B%V%i%&%6$K(B HTML
$B$*$h$S%9%/%j%W%H%3!<%I$rA^F~$9$k$3$H$,2DG=$G$9!#$=$N7k2L!"967b<T$O!"
(B
Cookie $B$KM3Mh$9$kG'>ZMQ>pJs$r@`<h$9$k2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<B(B
$B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

19. FunkBoard Multiple Cross-Site Scripting Vulnerabilities
BugTraq ID: 14507
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14507
$BMWLs(B:
FunkBoard $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kJ#?t$NLdBj$,B8:_(B
$B$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%
:=h(B
$BM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"I8E
*$H(B
$B$J$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N(B
$B967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

20. E107 Submitted Link HTML Injection Vulnerability
BugTraq ID: 14508
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14508
$BMWLs(B:
e107 $B$K$O!"(BHTML $B%?%0$rA^F~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"(B
$B%f!<%6$,;XDj$7$?F~NOCM$rF0E*$K@8@.$7$?%3%s%F%s%D$G;HMQ$9$kA0$K!"F~NOC
M$N(B
$B%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N2r<aJ}K!$r@)8f$9$k2DG=@-$b$"$j$^$
9!#(B
$B$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

21. MySQL User-Defined Function Buffer Overflow Vulnerability
BugTraq ID: 14509
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14509
$BMWLs(B:
MySQL $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"(B

$B%f!<%6Dj5A4X?t$N0z?t$H$7$F;XDj$5$l$?%G!<%?$N6-3&%A%'%C%/$,!"E,@Z$K<B9
T$5(B
$B$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$O%f!<%6Dj5A4X?t$r:n@.$9$k$?$a$KI,MW$J%"%/%;%98"8B$r;}$D%G!<%
?%Y!<(B
$B%9%f!<%6$K$h$C$FMxMQ$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"%P%C%/%(%s%I%G!<%?%
Y!<(B
$B%9$H$7$F(B MySQL $B$r;HMQ$9$k%5!<%I%Q!<%F%#@=%"%W%j%1!<%7%g%s$K@x:_E*$KB8:_(B
$B$9$k(B SQL $B9=J8$rCmF~2DG=$JLdBj$r2p$7$F$3$NLdBj$,MxMQ$5$l$k2DG=@-$,$"$j$^(B
$B$9!#(B

$B$3$NLdBj$NMxMQ$,@.8y$9$k$H!"%G!<%?%Y!<%9%5!<%P%W%m%;%9$N%;%-%e%j%F%#%
3%s(B
$B%F%-%9%HFb$GG$0U$N%3!<%I$,<B9T$5$l$F$7$^$$$^$9!#(B

22. Sun Solaris Printd Arbitrary File Deletion VulnerabilityBugTraq ID: 14510
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14510
$BMWLs(B:
Sun Solaris $B$N(B printd $B$O!"G$0U$N%U%!%$%k$,:o=|$5$l$kLdBj$N1F6A$r<u$1$^$9!#(B
$B%j%b!<%H$^$?$O%m!<%+%k$N967b<T$O(B printd $B$N8"8B$G%3%s%T%e!<%?>e$NG$0U$N%U%!(B
$B%$%k$r:o=|2DG=$G$"$k$3$H$,Js9p$5$l$F$$$^$9!#(B

$B967b<T$,=EMW$J%U%!%$%k$r:o=|$7$?>l9g!"7k2L$H$7$F%5!<%S%9ITG=>uBV$K4Y$
k2D(B
$BG=@-$,$"$j$^$9!#(B

23. Microsoft Internet Explorer COM Object Instantiation Buffer Overflow Vulnerability
BugTraq ID: 14511
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14511
$BMWLs(B:
Microsoft Internet Explorer $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,(B
$B$"$j$^$9!#(B

$B$3$NLdBj$OFCDj$N(B COM $B%*%V%8%'%/%H$,(B ActiveX $B%3%s%H%m!<%k$H$7$F%$%s%9%?%s(B
$B%92=$5$l$k$H$-$KH/@8$7$^$9!#0-0U$"$k(B Web $B%Z!<%8$O$3$l$i$N%*%V%8%'%/%H$K(B
$BBP$7$F%a%b%j$NGK2u$r0z$-5/$3$9%3%s%F%s%D$rEO$92DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$NMxMQ$,@.8y$9$k$H!"%m%0%$%sCf$N%f!<%6$N%;%-%e%j%F%#%3%s%F%-%
9%H(B
$BFb$GG$0U$N%3!<%I$r<B9T$9$k$3$H$r%j%b!<%H$N967b<T$K5v$7$F$7$^$&2DG=@-$
,$"(B
$B$j$^$9!#(B

24. Microsoft Internet Explorer Web Folder Behaviors Cross-Domain Scripting Vulnerability
BugTraq ID: 14512
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14512
$BMWLs(B:
Microsoft Internet Explorer $B$K$OG$0U$N%I%a%$%s$^$?$O%V%i%&%6$N%;%-%e%j%F%#(B
$B%>!<%s$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"(BWeb $B%Z!<%8$K$h$k0-0U$"$k%9%/%j%W%H(B
$B%3!<%I$N<B9T$r5v$7$F$7$^$&%;%-%e%j%F%#>e$NLdBj$,B8:_$9$k5?$$$,$"$j$^$
9!#(B
$B$3$NLdBj$O%V%i%&%6$N%;%-%e%j%F%#%b%G%k$KB8:_$9$k%;%-%e%j%F%#>e$NLdBj$
K$h(B
$B$j!"(BWeb $B%U%)%k%@%S%e!<$r%l%s%@%j%s%0$9$k:]$N(B URI $B=hM};~$KH/@8$7$^$9!#(B

$B$3$NLdBj$,30It%I%a%$%s$K%"%/%;%9$9$k$?$a$KMxMQ$5$l$k$H!"0-0U$"$k(B Web $B%Z!<(B
$B%8$KKd$a9~$^$l$F$$$k%9%/%j%W%H%3!<%I$,I8E*%f!<%6$,?.Mj$9$kJL$N%5%$%H$
N%W(B
$B%m%Q%F%#$K%"%/%;%9$9$k$3$H$r5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#$3$NLdBj$OI
8E*(B
$B%f!<%6$+$i>ZL@=q$d=EMW$J>pJs$r@`<h$9$k$?$a$KMxMQ$5$l$k2DG=@-$,$"$j$^$
9!#(B
$B$^$?!"$3$NLdBj$O%;%-%e%j%F%#$N%l%Y%k$,Dc$/@_Dj$5$l$F$$$k%V%i%&%6$N%;%
-%e(B
$B%j%F%#%>!<%s(B ($B%m!<%+%k%^%7%s!"?.Mj:Q$_%5%$%H!"%$%s%H%i%M%C%H%>!<%s$J$I(B)
$B$K$*$$$F0-0U$"$k%9%/%j%W%H%3!<%I$N<B9T$K$h$j!"G$0U$N%3!<%I$r<B9T$9$k$
?$a(B
$B$KMxMQ$5$l$k2DG=@-$b$"$j$^$9!#%3!<%I$N<B9T$O!"%m%0%$%sCf$N%f!<%6$N%;%
-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G0z$-5/$3$5$l$^$9!#(B

25. Microsoft Windows Plug and Play Buffer Overflow Vulnerability
BugTraq ID: 14513
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14513
$BMWLs(B:
Microsoft Windows $B$N(B Plug and Play $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9(B
$B$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O2a>j$J%G!<%?$r4^$s$@0-0U$"$k%a%C%;!<%8$,(B PnP $B%5!<%S%9$K$h$C$F(B
$B=hM}$5$l$k$H$-$KH/@8$7$^$9!#(B

$B$3$NLdBj$K$h$j!"%P%C%/%(%s%I$N%*%Z%l!<%F%#%s%0%7%9%F%`$K1~$8$F%m!<%+%
k$G(B
$B$N8"8B>:3J$d%j%b!<%H$+$i$NIT@5%"%/%;%9$,0z$-5/$3$5$l$^$9!#967b$,@.8y$
9$k(B
$B$H!"G$0U$N%3!<%I$,<B9T$5$l!"7k2L$H$7$F967b<T$,(B SYSTEM $B8"8B$rC%<h$9$k2DG=(B
$B@-$,$"$j$^$9!#(B

26. Microsoft Windows Print Spooler Buffer Overflow Vulnerability
BugTraq ID: 14514
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14514
$BMWLs(B:
Microsoft Windows Print Spooler $B%5!<%S%9$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/(B
$B@8$9$k5?$$$,$"$j$^$9!#(B

$B6qBNE*$K$O2a>j$J%G!<%?$r4^$s$@0-0U$"$k%a%C%;!<%8$,(B Print Spooler $B%5!<%S(B
$B%9$K$h$C$F=hM}$5$l$k$H$-$K$3$NLdBj$,H/@8$7$^$9!#(B

$B$3$NLdBj$K$h$j!"%P%C%/%(%s%I$N%*%Z%l!<%F%#%s%0%7%9%F%`$K1~$8$F%m!<%+%
k$G(B
$B$N8"8B>:3J$d%j%b!<%H$+$i$NIT@5%"%/%;%9$,0z$-5/$3$5$l$^$9!#967b$,@.8y$
9$k(B
$B$H!"G$0U$N%3!<%I$,<B9T$5$l!"967b<T$,(B SYSTEM $B8"8B$rC%<h$9$k$3$H$r5v$7$F$7(B
$B$^$&2DG=@-$,$"$j$^$9!#(B

27. Microsoft Internet Explorer Unspecified SharePoint Portal Services Log Sink ActiveX VulnerabilityBugTraq ID: 14515
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14515
$BMWLs(B:
Microsoft Internet Explorer $B$N(B SharePoint Portal Service Log Sink
ActiveX $B%3%s%H%m!<%k$K$O!"L$FCDj$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B$3$N$3$NLdBj$K$D$$$F%Y%s%@$,8x3+$7$F$$$k>pJs$O!"%5%]!<%H$5$l$F$$$J$$%
P!<(B
$B%8%g%s$N%3%s%H%m!<%k$KBP$7$F(B kill bit $B$,@_Dj$5$l$F$$$k$3$H$N$_$G$9!#(B

$B$3$NLdBj$O!"(BBID 12646 $B$K4XO"$7$F$$$k2DG=@-$,$"$j$^$9!#(B

28. TriggerTG TClanPortal Multiple SQL Injection Vulnerabilities
BugTraq ID: 14516
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14516
$BMWLs(B:
TClanPortal $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NO(B
$BCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

29. Linux Kernel Non-Zero Keyring Local Denial of Service Vulnerability
BugTraq ID: 14517
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14517
$BMWLs(B:
Linux kernel $B$K$O!"%m!<%+%k$G%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$k$HJs9p$5$l(B
$B$F$$$^$9!#(B

$B$3$NLdBj$O6u$N%Z%$%m!<%I$r4^$^$J$$%-!<%j%s%0$r%f!<%6$,DI2C$7$h$&$H$7$
?>l(B
$B9g$KH/@8$7$^$9!#(B

$B%m!<%+%k$N967b<T$K$h$k967b$,@.8y$9$k$H!"@55,%f!<%6$X$N%5!<%S%9ITG=>uB
V(B
(kernel oops) $B$K4Y$k2DG=@-$,$"$j$^$9!#(B

30. Microsoft Windows Telephony Service Buffer Overflow Vulnerability
BugTraq ID: 14518
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14518
$BMWLs(B:
Microsoft Windows Telephony Service $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9(B
$B$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?%G!<%?$N6-3&%A%'%C%/$,E
,@Z(B
$B$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$N967b$,@.8y$9$k$H!"8GDj%5%$%:$N%P%C%U%!$,%*!<%P!<%U%m!<$7!"7k2LE*$
KLd(B
$BBj$N$"$k%5!<%S%9$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$,<B9T$5$l$
k$3(B
$B$H$K$J$j$^$9!#$3$NLdBj$K$h$j!"967b<T$,%j%b!<%H$+$i$^$?$O%m!<%+%k$GG$0
U$N(B
$B%3!<%I$r<B9T$7$F!"8"8B>:3J$r0z$-5/$3$92DG=@-$,$"$j$^$9!#(B

$B%j%b!<%H$+$i$N%3!<%I<B9T$O(B Windows 2000 Server $B$*$h$S(B Windows Server
2003 $B$K$*$$$F$N$_2DG=$G$9!#$=$l0J30$NLdBj$N$"$k%W%i%C%H%U%)!<%`$G$O!"96(B

$B7b<T$O%m!<%+%k$K$*$$$F%$%s%?%i%/%F%#%V%"%/%;%9$N8"8B$r=jM-$7$F$$$kI,M
W$,(B
$B$"$j$^$9!#(B

31. Microsoft Windows Kerberos Denial Of Service Vulnerability
BugTraq ID: 14519
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14519
$BMWLs(B:
Microsoft Windows $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j(B Kerberos $B$,%5!<%S%9ITG=(B
$B>uBV$K4Y$k5?$$$,$"$j$^$9!#967b<T$O(B TCP $B$^$?$O(B UDP $B$N%]!<%H(B 88 $B$r;HMQ$9$k(B
Kerberos $B%5!<%S%9$KBP$7$F!">\:YITL@$N%Q%1%C%H$rAw$j$D$1$k$3$H$K$h$jLdBj(B
$B$N$"$k%5!<%S%9$r%/%i%C%7%e$5$;$k2DG=@-$,$"$j$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$FLdBj$N$"$kG'>Z%5!<%S%9$r%/%i%C%7%
e$5(B
$B$;!"@55,%f!<%6$KBP$9$k$=$l0J9_$N%I%a%$%sG'>Z$N%5!<%S%95qH]$r>7$/2DG=@
-$,(B
$B$"$j$^$9!#967b<T$,$3$NLdBj$rMxMQ$9$k$?$a$K$O!"M-8z$J%m%0%*%s>ZL@=q$r=
jM-(B
$B$7$F$$$kI,MW$,$"$j$^$9!#(B

32. Microsoft Windows Kerberos PKINIT Man In The Middle Vulnerability
BugTraq ID: 14520
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14520
$BMWLs(B:
Microsoft Windows $B$K$*$1$k(B PKINIT $B$N<BAu$K$O!"%5!<%P$H%/%i%$%"%s%H$H$N4V(B
$B$KF~$j!"$d$j<h$j$5$l$k>pJs$r2~$6$s$*$h$S@`<h$9$k967b$N1F6A$r<u$1$^$9!
#$3(B
$B$NLdBj$O!"%M%C%H%o!<%/%G!<%?$NBEEv@-$N3NG'$,E,@Z$K<B9T$5$l$J$$$3$H$KM
3Mh(B
$B$7$^$9!#967b<T$,$3$NLdBj$rMxMQ$9$k$?$a$K$O!"M-8z$J%m%0%*%s>ZL@=q$K%"%
/%;(B
$B%9$,2DG=$G$"$kI,MW$,$"$j$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F:G=i$NG'>Z%W%m%;%9$N:GCf$K%I%a%$%s%3%s%H%m!
<%i(B
/KDC $B$r56Au$7$^$9!#967b<T$O%I%a%$%s%3%s%H%m!<%i(B/KDC $B$r56Au$9$k$3$H$K$h$j!"(B
Kerberos $B$,M-8z$K@_Dj$5$l$F$$$kG$0U$N%5!<%S%9$G!"0E9f2=$5$l$?%M%C%H%o!<(B
$B%/%H%i%U%#%C%/$NJ?J8%3%s%F%s%D$KIT@5%"%/%;%9$9$k2DG=@-$,$"$j$^$9!#$=$
NB>(B
$B$N967b$,9T$o$l$k2DG=@-$b$"$j$^$9!#(B

Microsoft $B$O!"(BIETF PKINIT $B;EMM$N%I%i%U%H(B 9 $B$r<BAu$7$F$*$j!"$3$NLdBj$O%W(B
$B%m%H%3%k$N;EMM<+BN$KB8:_$9$k$HH/I=$7$F$$$^$9!#$7$?$,$C$F!"$=$NB>$N<BA
u$N(B
PKINIT $B$K$*$$$F$b$3$NLdBj$N1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

33. Linux Kernel Session Keyring Allocation Local Denial of Service Vulnerability
BugTraq ID: 14521
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14521
$BMWLs(B:
Linux Kernel $B$K$O!"%m!<%+%k$G%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$k$HJs9p$5$l(B
$B$F$$$^$9!#(B

$B6qBNE*$K$O!"%f!<%6$,?75,$N%;%C%7%g%s%-!<%j%s%0$N3d$jEv$F$r;n$_$FNc30E
*$J(B
$B>u67$,H/@8$7$?>l9g$K$3$NLdBj$,H/@8$7$^$9!#(B

$B%m!<%+%k$N967b<T$O$3$NLdBj$rMxMQ$7$F!"@55,%f!<%6$X$N%5!<%S%95qH]$r>7$
/2D(B
$BG=@-$,$"$j$^$9!#(B

34. Inkscape Insecure Temporary File Creation Vulnerability
BugTraq ID: 14522
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14522
$BMWLs(B:
Inkscape $B$O!"%;%-%e%j%F%#>eITE,@Z$JJ}K!$G(B $B!F(B/tmp$B!G(B $B%G%#%l%/%H%jFb$K0l;~(B
$B%U%!%$%k$r:n@.$7$^$9!#%m!<%+%k%"%/%;%9$N8"8B$r;}$D967b<T$O!"%7%s%\%j%
C%/(B
$B%j%s%/967b$r<B9T$7$F%U%!%$%k$N>e=q$-$^$?$O:n@.$r9T$&2DG=@-$,$"$j$^$9!
#(B

$B$3$N<oN`$N967b$O7k2L$H$7$FLdBj$N$"$k%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%
s%F(B
$B%-%9%HFb$G%5!<%S%95qH]$^$?$O%G!<%?$NJ6<:$r>7$/2DG=@-$,$"$j$^$9!#$=$NB
>$N(B
$B967b$,9T$o$l$k2DG=@-$b$"$j$^$9!#(B

35. XMB Forum U2U.Inc.PHP SQL Injection Vulnerability
BugTraq ID: 14523
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14523
$BMWLs(B:
XMB Forum $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?(B
$B%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

36. AWStats Referrer Arbitrary Command Execution Vulnerability
BugTraq ID: 14525
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14525
$BMWLs(B:
AWStats $B$O!"G$0U$N%3%^%s%I$,<B9T$5$l$kLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj$O!"(B
$B%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$
7$^(B
$B$9!#(B

$B$3$NLdBj$NMxMQ$K@.8y$9$k$H!"967b<T$K(B Web $B%5!<%P%W%m%;%9$N%;%-%e%j%F%#%3(B
$B%s%F%-%9%HFb$NLdBj$N$"$k%"%W%j%1!<%7%g%s$r%[%9%H$9$k%7%9%F%`>e$G$N!"G
$0U(B
$B$N(B Perl $B%3!<%I$N<B9T$r5v$7$F$7$^$$$^$9!#$3$l$K$h$j!"%P%C%/%(%s%I%7%9%F%`(B
$B$KBP$7$F99$J$k967b$,2C$($i$l$k2DG=@-$,$"$j$^$9!#B>$N967b$,0z$-5/$3$5$
l$k(B
$B2DG=@-$b$"$j$^$9!#(B

$BLdBj$N$"$k%"%W%j%1!<%7%g%s$G(B URLPlugin $B$,:GDc$G$b(B 1 $B$DM-8z$K@_Dj$5$l$F$$(B
$B$k>l9g$K$N$_$3$NLdBj$,H/@8$9$kE@$KN10U$9$Y$-$G$9!#(B

37. Mozilla Firefox And Thunderbird Long URI Obfuscation Weakness
BugTraq ID: 14526
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14526
$BMWLs(B:
Mozilla Firefox $B$*$h$S(B Thunderbird $B$K$*$$$F967b<T$,%j%s%/$N(B URI $B$r56Au$9(B
$B$k$3$H$r5v$7$F$7$^$&2DG=@-$N$"$kLdBj$,Js9p$5$l$F$$$^$9!#$3$l$K$h$j!"5
?$$(B
$B$r;}$?$J$$%f!<%6$+$i=EMW$J>pJs$r@`<h$9$k$3$H$rL\E*$H$7$?@55,(B Web $B%5%$%H(B
$B$K$J$j$9$^$5$l$k2DG=@-$,$"$j$^$9!#(B

$BLdBj$N$"$k%"%W%j%1!<%7%g%s$K$*$$$F;XDj$5$l$?(B URI $B$,2aEY$KD9$$$H$-$KH/@8(B
$B$9$k$3$H$,Js9p$5$l$F$$$^$9!#>e5-$N$h$&$J(B URI $B$,I=<($5$l$k$H!"%"%I%l%9%P!<(B
$B$NCf$N%F%-%9%H$,40A4$KGr$/$J$C$F$7$^$$(B URI $B$,%f!<%6$K$O8+$($J$/$J$j$^$9!#(B

$B$3$NLdBj$OI8E*%f!<%6$+$i(B URI $B$r1#$9$3$H$K$h$j$=$NB>$N967b$r>7$/2DG=@-$,(B
$B$"$j$^$9!#(B

Mozilla Firefox 1.0.6 $B$*$h$S(B Thunderbird 1.0 $B$K$*$$$F!"$3$NLdBj$N1F6A$r(B
$B<u$1$^$9!#$=$NB>$N%P!<%8%g%s$*$h$S@=IJ$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!
#(B

38. Easy Software Products CUPS Denial of Service Vulnerability
BugTraq ID: 14527
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14527
$BMWLs(B:
CUPS $B$O!"%5!<%S%9ITG=>uBV$K4Y$kLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj$O0U?^E*$K(B

$B:n@.$5$l$?(B PDF $B%U%!%$%k$r=hM}$9$k:]$N6-3&%A%'%C%/$,E,@Z$K<B9T$5$l$J$$$H(B
$B$-$KH/@8$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7!"0U?^E*$K:n@.$5$l$?(B PDF $B%U%!%$%k$rLdBj$N$"$k%"(B
$B%W%j%1!<%7%g%s$KAw$j$D$1$k$3$H$GL58B%k!<%W$r0z$-5/$3$7!"7k2LE*$K@55,%
f!<(B
$B%6$X$N%5!<%S%95qH]$r>7$/2DG=@-$,$"$j$^$9!#(B

39. Apple Safari Web Browser JavaScript Invalid Address Denial Of Service Vulnerability
BugTraq ID: 14528
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14528
$BMWLs(B:
Apple Safari Web Browser $B$K$O!"7k2LE*$K%V%i%&%6$r%/%i%C%7%e$5$;$k2DG=@-(B
$B$N$"$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O$3$N%V%i%&%6$K$h$C$FFCD
j$N(B
JavaScript $BA`:n$,<B9T$5$l$k$H$-$KH/@8$7$^$9!#(B

$B$3$NLdBj$N@53N$J860x$O!"8=;~E@$G$OITL@$G$9!#>\:Y>pJs$,8x3+$5$l<!Bh!"$
3$N(B
BID $B$O99?7$5$l$kM=Dj$G$9!#(B

$B$3$NLdBj$rMxMQ$9$k%j%b!<%H$N967b<T$OL58z$J%a%b%j%"%/%;%9$NNc30$r0z$-5
/$3(B
$B$9$3$H$K$h$j!"LdBj$N$"$k(B Web $B%V%i%&%6$r%/%i%C%7%e$5$;$k2DG=@-$,$"$j$^$9!#(B

Safari 1.3 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$HJs9p$5$l$F$$$^$9!#$=$NB>$N(B
$B%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

40. XPDF Loca Table Verification Remote Denial of Service Vulnerability
BugTraq ID: 14529
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14529
$BMWLs(B:
XPDF $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#
(B

$B$3$NLdBj$O(B PDF $B%U%!%$%kFb$N0U?^E*$K:n@.$5$l$?(B $B!F(Bloca$B!G(B $B%F!<%V%k$NBEEv@-(B
$B3NG'$r;n9T$9$k$H$-$KH/@8$7$^$9!#(B

$B$3$NLdBj$K$h$j%G%#%9%/$,>CHq$5$l7k2L$H$7$F%5!<%S%95qH]$r0z$-5/$3$92DG
=@-(B
$B$,$"$j$^$9!#(B

kpdf$B!"(Bgpdf$B!"$*$h$S(B CUPS $B$K$*$$$F$b!"$3$NLdBj$N1F6A$r<u$1$^$9!#(B

41. AOL Client Software Local Privilege Escalation Vulnerability
BugTraq ID: 14530
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-09
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14530
$BMWLs(B:
AOL $B$N%/%i%$%"%s%H%=%U%H%&%'%"(B $B$K$O!"%m!<%+%k$G8"8B>:3J$,0z$-5/$3$5$l$k(B
$B5?$$$,$"$j$^$9!#$3$NLdBj$O%m!<%+%k$G$NJQ99$KBP$7$F%$%s%9%H!<%k%Q%9$,E
,@Z(B
$B$KJ]8n$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$O%m!<%+%k%f!<%6$KLdBj$N$"$k%P%$%J%j$rG$0U$N<B9T%U%!%$%k$HCV$
-49(B
$B$($k$3$H$r5v$7$F$7$^$$$^$9!#$=$N$?$a!"%m!<%+%k%f!<%6$O(B SYSTEM $B8"8B$GG$0U(B
$B$N%3!<%I$r<B9T$9$k$3$H$,2DG=$G$9!#$3$l$K$h$j!"%m!<%+%k%3%s%T%e!<%?$N5
!G=(B
$B$,40A4$KB;$J$o$l$k2DG=@-$,$"$j$^$9!#(B

AOL 9.0 Security Edition $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l(B
$B$F$$$^$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

42. Gaim AIM/ICQ Protocols Multiple Vulnerabilities
BugTraq ID: 14531
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14531
$BMWLs(B:
Gaim $B$K$O(B AIM $B%W%m%H%3%k$*$h$S(B ICQ $B%W%m%H%3%k$,1F6A$r<u$1$kJ#?t$NLdBj$,(B
$BB8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$rMxMQ$9$k%j%b!<%H$N967b<T$O!"%P%
C%U%!(B
$B%*!<%P!<%U%m!<$^$?$O%5!<%S%95qH]$r0z$-5/$3$92DG=@-$,$"$j$^$9!#(B

$B8=;~E@$G$O!"(BGaim 1.x $B$N$9$Y$F$N%P!<%8%g%s$,LdBj$N1F6A$r<u$1$k$H9M$($i$l(B
$B$^$9!#(B

43. GNOME Evolution Multiple Format String Vulnerabilities
BugTraq ID: 14532
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14532
$BMWLs(B:
Evolution $B$OJ#?t$N%U%)!<%^%C%H%9%H%j%s%0$NLdBj$N1F6A$r<u$1$^$9!#(B

$B$3$l$i$NLdBj$O!"%j%b!<%H$N967b<T$,%/%i%$%"%s%H$N%;%-%e%j%F%#%3%s%F%-%
9%H(B
$BFb$GG$0U$N%3!<%I$r<B9T$9$k$3$H$r5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#(B

Evolution 1.5 $B$+$i(B 2.3.6.1 $B$K$*$$$F!"$3$l$i$NLdBj$N1F6A$r<u$1$^$9!#(B

44. WordPress Cookie Data PHP Code Injection Vulnerability
BugTraq ID: 14533
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14533
$BMWLs(B:
WordPress $B$O!"%j%b!<%H$+$i(B PHP $B%3!<%I$rA^F~2DG=$JLdBj$N1F6A$r<u$1$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$
$$3(B
$B$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$G(B Web $B%5!<%P%W%m%;(B
$B%9$N8"8B$r;HMQ$7!"G$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$
,$"(B
$B$j$^$9!#$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

45. EZUpload Multiple Remote File Include Vulnerabilities
BugTraq ID: 14534
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14534
$BMWLs(B:
ezUpload $B$O!"%j%b!<%H$+$i%U%!%$%k$,%$%s%/%k!<%I$5$l$kJ#?t$NLdBj$N1F6A$r(B
$B<u$1$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@
Z$K(B
$B<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"(BWeb $B%5!<%P%W%m%;%9$N8"8B$GLdBj$N$"$k%3%s(B
$B%T%e!<%?>e$GG$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$,$"$j$
^$9!#(B
$B$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

46. PHPTB Topic Board Multiple SQL Injection Vulnerabilities
BugTraq ID: 14535
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14535
$BMWLs(B:
PHPTB $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l(B
$B$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N(B
$B%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$N967b$N7k2L$O1F6A$r<u$1$k%/%(%j$N<oN`$*$h$S%G!<%?%Y!<%9$N<BAu$K$h$
C$F(B
$B0[$J$k2DG=@-$,$"$j$^$9!#(B

47. Wyse Winterm 1125SE Remote Denial of Service Vulnerability
BugTraq ID: 14536
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14536
$BMWLs(B:
Winterm 1125SE $B$O!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9ITG=>uBV$K4Y$kLdBj$N(B
$B1F6A$r<u$1$^$9!#$3$NLdBj$ONc30E*$J>u67$N=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$
KM3(B
$BMh$7$^$9!#(B

$B$3$NLdBj$O0U?^E*$K:n@.$5$l$?(B IP $B%X%C%@$r4^$`%Q%1%C%H$r=hM}$9$k$H$-$KH/@8(B
$B$7$^$9!#967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$,%/%i%C%7%e$7!"@55,%f!<%6$
X$N(B
$B%5!<%S%95qH]$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

48. PHlyMail Unspecified Authentication Bypass Vulnerability
BugTraq ID: 14537
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14537
$BMWLs(B:
PHlyMail $B$K$O!"G'>Z$,2sHr$5$l$kL$FCDj$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3(B
$B$NLdBj$N860x$OITL@$G$9!#(B

$B967b$,@.8y$9$k$H!"K\Mh5v2D$5$l$F$$$J$$967b<T$,G'>Z%k!<%A%s$r2sHr$7$FL
dBj(B
$B$N$"$k%"%W%j%1!<%7%g%s$K%"%/%;%9$9$k$3$H$r5v$7$F$7$^$$$^$9!#$=$N7k2L!
"96(B
$B7b<T$OLdBj$N$"$k%3%s%T%e!<%?$KBP$7$F99$J$k967b$r<B9T$9$k2DG=@-$,$"$j$
^$9!#(B

49. VegaDNS Index.PHP Cross Site Scripting Vulnerability
BugTraq ID: 14538
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14538
$BMWLs(B:
VegaDNS $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$N1F6A$r<u$1$^$9!#$3$NLdBj(B
$B$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM
3Mh(B
$B$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

50. Grandstream Budge Tone Denial Of Service Vulnerability
BugTraq ID: 14539
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14539
$BMWLs(B:
Grandstream Budge Tone $B$NEEOC$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#(B

$B$3$N967b$K$h$j8=:_?J9TCf$NDLOC$O$9$Y$FCfCG$7!"A`:n$G$-$J$$$h$&$KEEOC5
!$N(B
$B2hLL$r%l%s%@%j%s%0$5$l!"$5$i$KE}9g$5$l$?(B HTTP $B%5!<%P$N1~Ez$rDd;_$5$;$i$l(B
$B$k$3$H$K$h$j(B Grandstream Budge Tone $B$NEEOC$N5!G=$,B;$J$o$l$^$9!#EEOC5!$N(B
$BEE8;$r%*%U$K$7$F$+$i:F$S%*%s$K$9$k$H@5>o$JF0:n$KLa$j$^$9!#(B

51. HP Proliant DL585 Server Unauthorized Remote Access Vulnerability
BugTraq ID: 14540
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14540
$BMWLs(B:
HP Proliant DL585 Server $B$O!"IT@5%"%/%;%9$,<B9T$5$l$kLdBj$N1F6A$r<u$1$^(B
$B$9!#(B

$B%5!<%P$NEE8;$r@Z$k$H%j%b!<%H$N967b<T$,%5!<%P@)8f$K%"%/%;%9$9$k2DG=@-$
,$"(B
$B$j$^$9!#(B

$B$3$NLdBj$K$D$$$F$O$o$:$+$J>pJs$7$+8x3+$5$l$F$$$^$;$s!#>\:Y$,8x3+$5$l<
!Bh(B
$B$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

52. EQDKP Session.PHP Authorization Bypass Vulnerability
BugTraq ID: 14541
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14541
$BMWLs(B:
EQdkp $B$O!"G'>Z$,2sHr$5$l$kLdBj$N1F6A$r<u$1$^$9!#(B

EQdkp $B$O!"G'>Z$,2sHr$5$l$kLdBj$N1F6A$r<u$1$^$9!#%j%b!<%H$N967b<T$O$3$NLd(B

$BBj$rMxMQ$7$F!"%;%-%e%j%F%#@)8B$r2sHr$9$k2DG=@-$,$"$j$^$9!#(B

$B%Y%s%@$O!"(BEQdkp 1.3.0 $B$G$3$NLdBj$r=$@5$7$F$$$^$9!#$3$l$h$jA0$N%P!<%8%g%s(B
$B$,1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#(B

53. Nortel Contivity VPN Client Local Privilege Escalation Vulnerability
BugTraq ID: 14542
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14542
$BMWLs(B:
Nortel Contivity VPN Client $B$O!"%m!<%+%k$G$N8"8B>:3J$NLdBj$N1F6A$r<u$1$^(B
$B$9!#$3$NLdBj$O<B9TCf$N%W%m%;%9$N8"8B$r9_3J$5$;$kI,MW$,$"$k$H$-$K$=$N=
hM}(B
$B$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$BLdBj$N$"$k%"%W%j%1!<%7%g%s$N@-<A$K$h$j(B SYSTEM $B8"8B$G<B9T$5$l$F$7$^$$$^$9!#(B
$B%m!<%+%k%f!<%6$,%@%$%"%m%0%\%C%/%9$r3+$$$F%G%8%?%k>ZL@=q$rA*Br$9$k$H$
-$K(B
$BG$0U$N%U%!%$%k$r5/F0$9$k$?$a$K;HMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

$B@5$7$$%f!<%68"8B$KLa$9=hM}$,E,@Z$K<B9T$5$l$J$$$?$a!"$=$NG$0U$N%U%!%$%
k$O(B
SYSTEM $B8"8B$G<B9T$5$l$F$7$^$$$^$9!#(B

$B$3$NLdBj$O%m!<%+%k$N967b<T$K(B SYSTEM $B8"8B$G$NG$0U$N%U%!%$%k$X$N%"%/%;%9$d(B
$B<B9T$r5v$7$F$7$^$&$?$a!"%m!<%+%k%3%s%T%e!<%?$KBP$9$k6<0R$,0z$-5/$3$5$
l$^(B
$B$9!#(B

54. Lasso Professional Server Remote Authentication Bypass Vulnerability
BugTraq ID: 14543
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14543
$BMWLs(B:
Lasso Professional Server $B$K$O!"%j%b!<%H$+$iG'>Z$,2sHr$5$l$k5?$$$,$"$j$^(B
$B$9!#$3$NLdBj$O!"Dj5A:Q$_$N%;%-%e%j%F%#@)8B$,E,@Z$K<B9T$5$l$J$$$3$H$KM
3Mh(B
$B$7$^$9!#(B

$B$3$NLdBj$O%j%b!<%H$N967b<T$K(BWeb $B%Z!<%8$K4^$^$l$kDL>o$G$O1\MwIT2DG=$G@x:_(B
$BE*$K=EMW$J>pJs$KIT@5$K%"%/%;%9$9$k$3$H$r5v$7$F$7$^$$!"7k2L$H$7$F99$J$
k96(B
$B7b$r;n$_$k$?$a$N<j=u$1$H$J$k2DG=@-$,$"$j$^$9!#I8E*$H$J$k(B Web $B%Z!<%8$N%3(B
$B%s%F%s%D$d@_7W$K$h$C$F$O!"967b<T$O(B Web $B%5%$%H$H$N$d$j<h$j$r<B9T$7$F!"%G!<(B
$B%?$N2~$6$s$dGK2u$r0z$-5/$3$92DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$O!"(BLasso Professional Server 8.0.4 $B$*$h$S(B 8.0.5 $B$GH/@8$7$^$9!#(B

55. idiCart ASP Item_Show.ASP Code_No Parameter SQL Injection Vulnerability
BugTraq ID: 14544
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14544
$BMWLs(B:
MidiCart ASP $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3(B
$B$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5(B
$B%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

56. Gallery PostNuke Integration Access Validation Vulnerability
BugTraq ID: 14547
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14547
$BMWLs(B:
Gallery $B$K$O(B PostNuke $B$HE}9g$7$?>l9g$K%"%/%;%9$NBEEv@-3NG'$NLdBj$,B8:_$9(B
$B$k5?$$$,$"$j$^$9!#$3$NLdBj$O(B PostNuke $B$K$*$$$F$$$:$l$+$N%l%Y%k$N4IM}<T8"(B
$B8B$r=jM-$9$k$9$Y$F$N%f!<%6$KBP$7!"(BGallery $BA4BN$K$*$1$k4IM}<T8"8B$rIUM?$7(B
$B$F$7$^$&2DG=@-$,$"$j$^$9!#(B

Gallery 1.5.1-RC2 $B$K$*$$$F!"$3$NLdBj$O=$@5:Q$_$G$9!#(B

57. Novell eDirectory Server iMonitor Buffer Overflow Vulnerability
BugTraq ID: 14548
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14548
$BMWLs(B:
Novell eDirectory Server iMonitor $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k(B
$B5?$$$,$"$j$^$9!#LdBj$NMxMQ$,@.8y$9$k$H!"(BLocal SYSTEM $B8"8B$GG$0U$N%3!<%I(B
$B<B9T$,5v$5$l$F$7$^$&2DG=@-$,$"$j$^$9!#(B

eDirectory 8.7.3 iMonitor $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#$3$l$h$jA0(B
$B$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

58. McAfee ePolicy Orchestrator Local Information Disclosure Vulnerability
BugTraq ID: 14549
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14549
$BMWLs(B:
Network Associates McAfee ePolicy Orchestrator $B$K$O!"%m!<%+%k$G>pJs$,3+(B
$B<($5$l$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O$3$N%"%W%j%1!<%7%g%s$
N%G(B
$B%U%)%k%H%$%s%9%H!<%k%W%m%;%9$G%G%#%l%/%H%j$N%Q!<%_%C%7%g%s$,E,@Z$K@_D
j$5(B
$B$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$O%m!<%+%k$N967b<T$KLdBj$N$"$k%G%#%l%/%H%j$HF1$8%Q!<%F%#%7%g%
sFb(B
$B$K$"$kG$0U$N%U%!%$%k$K(B SYSTEM $B8"8B$G%"%/%;%9$9$k$3$H$r5v$7$F$7$^$$$^$9!#(B
$B$3$l$O!"99$J$k967b$r;n$_$k$?$a$N<j=u$1$H$J$k2DG=@-$,$"$j$^$9!#(B

59. Veritas Backup Exec For Windows And NetWare Arbitrary File Download Vulnerability
BugTraq ID: 14551
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14551
$BMWLs(B:
Veritas Backup Exec for Windows Servers$B!"(BVeritas Backup Exec for NetWare
Servers$B!"(BNetBackup for NetWare Media Server Option$B!"$*$h$S(B Windows$B!"(B
Unix/Linux$B!"(BNetWare $B%5!<%PMQ$N(B Remote Agents $B$K$O!"G$0U$N%U%!%$%k$NIT@5(B
$B$J%@%&%s%m!<%I$K4XO"$9$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$FG$0U$N%U%!%$%k$r%@%&%s%m!<%I$9$k$
3$H(B
$B$,2DG=$G$9!#$3$l$K$h$j!"99$J$k967b$r;n$_$k$?$a$N<j=u$1$H$J$k2DG=@-$,$
"$j(B
$B$^$9!#(B

Metasploit Framework $B$rMxMQ$9$k967b%W%m%0%i%`$,8x3+$5$l$F$$$^$9!#$^$?!"(B
$B8=:_0lHLE*$KMxMQ$5$l$F$$$k$3$NLdBj$K4X$9$kJs9p$,8x3+$5$l$F$$$^$9!#(B

60. MyBulletinBoard Multiple SQL Injection Vulnerabilities
BugTraq ID: 14553
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14553
$BMWLs(B:
MyBulletinBoard $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"(B
$BF~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

$B967b<T$O$3$l$i$NLdBj$N$&$A$N(B 1 $B$D0J>e$rMxMQ$9$k$3$H$K$h$j!"LdBj$N$"$k%"(B
$B%W%j%1!<%7%g%s$KBP$9$k4IM}<T%"%/%;%9$rC%<h$9$k2DG=@-$,$"$k$3$H$,Js9p$
5$l(B
$B$F$$$^$9!#(B

61. Kaspersky Anti-Virus For Unix Local Insecure Default Permission Vulnerabilities
BugTraq ID: 14554
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-08-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14554
$BMWLs(B:
Kaspersky Anti-Virus for Unix File Servers $B$K$O%m!<%+%k$G%;%-%e%j%F%#>e(B
$BE,@Z$G$O$J$$%G%U%)%k%H%Q!<%_%C%7%g%s$,IUM?$5$l$k(B 2 $B$D$NLdBj$N1F6A$r<u$1(B
$B$^$9!#$3$l$i$NLdBj$O%$%s%9%H!<%k;~$K?75,%G%#%l%/%H%j$r%;%-%e%j%F%#>eE
,@Z(B
$B$K:n@.$7$J$$$3$H$KM3Mh$7$^$9!#(B

$B%;%-%e%j%F%#>eITE,@Z$JBh(B 1 $B$N%G%#%l%/%H%j$O!"%"%s%A%&%$%k%9%9%-%c%J$N%"(B
$B%/%7%g%s$r5-O?$9$k$?$a(B 'kavmonitor' $B%P%$%J%j$G;HMQ$5$l$^$9!#$3$NLdBj$rMx(B
$BMQ$9$k967b<T$O%m%0%U%!%$%k$r:o=|$^$?$O2~$6$s$9$k$3$H$K$h$j967b$N7A@W$
r1#(B
$BJC$7$?$j!"%7%s%\%j%C%/%j%s%/$r;HMQ$7$FLdBj$N$"$k%f!<%F%#%j%F%#$K$h$C$
F4I(B
$BM}<T8"8B$GG$0U$N%U%!%$%k$r>e=q$-$7$?$j$9$k2DG=@-$,$"$j$^$9!#(B

$B%;%-%e%j%F%#>eITE,@Z$JBh(B 2 $B$N%G%#%l%/%H%j$O!"$3$N@=IJ$N%i%$%;%s%9$K4X$9(B
$B$k%G!<%?$rJ]B8$9$k$?$a$K;HMQ$5$l$^$9!#967b<T$O%i%$%;%s%9%-!<$N%U%!%$%
k$r(B
$B:o=|$^$?$O2~$6$s$7$F(B 'keepup2date' $B%f!<%F%#%j%F%#$N5!G=$rDd;_$5$;$k2DG=(B
$B@-$,$"$j$^$9!#$3$N%f!<%F%#%j%F%#$O%"%s%A%&%$%k%9=pL>$r:G?7$N>uBV$KJ]$
D$?(B
$B$a$K;HMQ$5$l$^$9!#(B

Kaspersky Anti-Virus for Unix 5.5.2 $B$K$*$$$F$3$l$i$NLdBj$N1F6A$r<u$1$k$3(B
$B$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$
9!#(B

62. PHPBB BBCode IMG Tag Script Injection Vulnerability
BugTraq ID: 14555
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14555
$BMWLs(B:
phpBB $B$K$O!"%9%/%j%W%H$rA^F~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj(B

$B$O%f!<%6=pL>$K4^$^$l$k(B bbcode $B!F(B[IMG]$B!G(B $B%?%0$K%f!<%6$,;XDj$7$?F~NOCM$N%5(B
$B%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$NMxMQ$K@.8y$9$k$H!"I8E*$H$J$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%
HFb(B
$B$G!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$KG$0U$N(B HTML $B$^$?$O%9%/%j%W%H%3!<%I$,(B
$BA^F~$5$l$k2DG=@-$,$"$j$^$9!#(B

phpBB 2.0.17 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$3(B
$B$l$h$jA0$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

63. FUDForum Tree View Access Validation Vulnerability
BugTraq ID: 14556
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14556
$BMWLs(B:
FUDforum $B$K$O!"K\Mh5v2D$5$l$F$$$J$$%"%/%;%9$,9T$o$l$kLdBj$,B8:_$9$k5?$$(B
$B$,$"$j$^$9!#$3$NLdBj$O!"%W%i%$%Y!<%H%U%)!<%i%`$X$N%"%/%;%9$r5v2D$9$kA
0$K(B
$B%"%/%;%9$NBEEv@-3NG'$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$rMxMQ$9$k967b<T$O!"%W%i%$%Y!<%H%U%)!<%i%`$+$iEj9F%a%C%;!<%8$
rC%(B
$B<h$9$k$3$H$,2DG=$G$9!#$3$N$?$a!"5!L)@-$,B;$J$o$l$k2DG=@-$,$"$j$^$9!#$
^$?!"(B
$BC%<h$5$l$?>pJs$O99$J$k967b$K;HMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

JPortal 2.3.1 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$3(B
$B$l$h$jA0$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$,MxMQ$5$l$k2DG=@-$,$"$k$N$O(B 'Tree View' $B5!G=$,M-8z$K@_Dj$5$l$F(B
$B$$$k>l9g$K8B$i$l$kE@$KN10U$9$Y$-$G$9!#(B

64. Mentor ADSL-FR4II Multiple Vulnerabilities
BugTraq ID: 14557
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14557
$BMWLs(B:
Mentor ADSL-FR4II $B$K$O%j%b!<%H$+$i$NIT@5%"%/%;%9$^$?$O%5!<%S%95qH]$r>7$/(B
$B2DG=@-$N$"$kJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B6qBNE*$K$O$3$N%G%P%$%9$+$i%@%&%s%m!<%I$7$?%P%C%/%"%C%W@_Dj%U%!%$%k$K4
IM}(B
$B<T%Q%9%o!<%I$,J?J8$GJ]B8$5$l$F$$$^$9!#(B

$B$^$?!"$3$N%G%P%$%9$K$O%G%P%$%9>e$NMM!9$J%]!<%H$GB??t$N@\B3$,3NN)$7$?$
H$-(B
$B$K%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#(B

65. Isemarket JaguarControl ActiveX Control Buffer Overflow Vulnerability
BugTraq ID: 14558
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-08-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14558
$BMWLs(B:
Isemarket JaguarControl ActiveX $B%3%s%H%m!<%k$K$O!"%P%C%U%!%*!<%P!<%U%m!<(B
$B$,H/@8$9$k5?$$$,$"$j$^$9!#$3$l$K$h$j!"$3$N(B ActiveX $B%3%s%H%m!<%k$r8F$S=P(B
$B$9%/%i%$%"%s%H%"%W%j%1!<%7%g%s$N5!G=$,B;$J$o$l$k!"$"$k$$$OG$0U$N%3!<%
I$,(B
$B<B9T$5$l$k2DG=@-$,$"$j$^$9!#(B

III.SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. Worm spreading through Microsoft Plug-and-Play flaw
$BCx<T(B: Robert Lemos
Zotob $B$H8F$P$l$k%3%s%T%e!<%?%&%$%k%9$O!"(BWindows $B%*%Z%l!<%F%#%s%0%7%9%F%`(B
$B$N(B Plug and Play $B5!G=$KB8:_$9$k%;%-%e%j%F%#>e$NLdBj$rMxMQ$7$F%3%s%T%e!<(B
$B%?$K46@w$7$^$9$,!"%;%-%e%j%F%#$N@lLg2H$?$A$O!":#2s$N967b$OA02s$NN.9T$
[$I(B
$B?<9o$J$b$N$G$O$J$$$H9M$($F$$$^$9!#(B

http://www.securityfocus.com/news/11281

2. NIST, DHS add national vulnerability database to mix
$BCx<T(B: Robert Lemos
National Institute of Standards and Technology ($BJF9qI8=`5;=Q6I(B) $B$O!"@/I\(B
$B;q6b$K$h$k%;%-%e%j%F%#LdBj$N%G!<%?%Y!<%9$r9=C[$7$^$7$?!#$3$l$G%;%-%e%
j%F%#(B
$BLdBj$N%G!<%?%Y!<%94V$G$N6%Ah$O7c$7$/$J$k$N$G$7$g$&$+!)$=$l$H$bC1$J$kO
"K.(B
$B@/I\$N1g=u$G@8$^$l$?%/%m!<%s$H$J$k$N$G$7$g$&$+!)(B

http://www.securityfocus.com/news/11278

3. Microsoft's "monkeys" find first zero-day exploit
$BCx<T(B: Robert Lemos
$B5pBg$J%=%U%H%&%'%"4k6H$G$"$k(B Microsoft $B<R$O(B honeymonkey $B$K4X$9$k8&5f$r0z(B
$B$-B3$-9T$C$F$*$j!"(B750 $B$rD6$($k(B Windows $B%3%s%T%e!<%?MQ967b%W%m%0%i%`$rH/(B
$B8+$7$F$$$^$9!#H/8+$5$l$?%W%m%0%i%`$K$O!"L$8x3+$NLdBj$rMxMQ$9$k967b$b4
^$^(B
$B$l$^$9!#(B

http://www.securityfocus.com/news/11273

4. Annual hacking game teaches security lessons
$BCx<T(B: Robert Lemos
DEF CON $B%+%s%U%!%l%s%9$G=5Kv$K$o$?$C$F<B;\$5$l$?:G?7HG$N(B Capture the
Flag $B%2!<%`$G$O!"%O%C%-%s%0%9%-%k$N<\EY$H$7$F%3!<%I4F::$,=E;k$5$l$^$7$?!#
(B
$B$7$+$7!"%2!<%`;22C<T$?$A$K$OJ*M}E*$J%;%-%e%j%F%#$@$1$G$J$/967b$HKI8f$
N%P(B
$B%i%s%9$K$D$$$F$b9M$($k$3$H$,5a$a$i$l$^$7$?!#(B

http://www.securityfocus.com/news/11269

5. Apple Mac OS X Multiple Vulnerabilities
$BCx<T(B: Tony Smith
Apple $B<R$O:G?7$N(B Mac OS X $B%;%-%e%j%F%#%"%C%W%G!<%H$r8x3+$7$^$7$?!#$3$N%"%C(B
$B%W%G!<%H$G$O!"(BMac OS X $B%*%Z%l!<%F%#%s%0%7%9%F%`$K@x:_E*$KB8:_$9$k?tB?$/(B
$B$NLdBj$,=$@5$5$l$F$$$^$9!#(B

http://www.securityfocus.com/news/11282

6. IRC bot latches onto Plug-and-Play vuln
$BCx<T(B: John Leyden
ZoTob $B$H8F$P$l$k%3%s%T%e!<%?%&%$%k%9$GMxMQ$5$l$k(B Microsoft $B$N(B Plug and
Play $B$NLdBj$O!"$9$G$K(B IRC $B%\%C%H$r:n@.$9$k$?$a$KMxMQ$5$l$F$$$^$9!#(B
IRCBot-ES $B$O!"(BWindows RPC $B$N%;%-%e%j%F%#LdBj$J$I$N0lHLE*$JJ}K!$G$O$J$/!"(B
$B$3$NLdBj$rMxMQ$7$F$=$N46@w$r9-$2$F$$$^$9!#(B

http://www.securityfocus.com/news/11283

7. 180Solutions sues former affiliates over illegal tactics
$BCx<T(B: John Leyden
$B%"%I%&%'%"$N%a!<%+!<$G$"$k(B 180solutions $B$O!"5!G=$,B;$J$o$l$?%3%s%T%e!<%?(B
$B$N%M%C%H%o!<%/$rMxMQ$7$F!"%f!<%6$N(B PC $B>e$K<+<R$N%=%U%H%&%'%"$rL)$+$K%$%s(B
$B%9%H!<%k$7$F$$$?$H$7$F!"85BeM}E9$N(B 7 $B<R$rAJ$($^$7$?!#(B

http://www.securityfocus.com/news/11284

8. Cabir mobile worm gives track fans the run around
$BCx<T(B: John Leyden
$B7HBSEEOC$KG.68$7$F$$$k%U%#%s%i%s%I?M$O!":#=53+:E$5$l$?@$3&N&>e%X%k%7%
s%-(B
$BBg2q$G>.5,LO$J46@w$r$_$;$F$$$k(B Cabir $B7HBSEEOC%&%$%k%9$KBP=h$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11279

--
$BK]Lu(B: LAC $BK]Lu%A!<%`(B
$B4F=$(B: $B>.3^8691M:(B (OGASAWARA Tsuneo)
LAC Co., Ltd.
http://www.lac.co.jp/index.html
0?l *?H?÷

 ?]0?Y

10 +0 *?H?÷


 ?
û0?0?k9ÊT?þP"2þ2ÙÛû?0
 *?H?÷


0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
180518235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
 *?H?÷



0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ݪY?
Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu

0
 *?H?÷


?÷Îv\«??Ü?o49]?>kr,áÇ¢{@)¹x?ºLÅ£j^?n{ãòAf¾­û®¢Î?ó¢4?´²¶$òåÕàÈåbm?{˾»?|WÊð7©¯?î¾(?Ù&v ÍĝNð®Õ¾¯WjРBBBô
Ì¥x??&8?G0?0?kLÇêª?>qÓ?ø=:???0
 *?H?÷


0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
280801235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
 *?H?÷



0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ݪY?
Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu

0
 *?H?÷


©OÃ
Çg¾,ËÙ¨Í-uç~?;rë~ë\- ?Ökm`|å®Å#\JЯ±]óǶ
Ûà?
ݼÇv?µÝOÃ?u¸
ÀæÉ[k¥¸?ܬ¤ÝríN¡÷O¼ÓêÈdt{Â?A?esXñ?<j±?ÉÄ?¼ÏEmEân"?þ¼1\
èòÙ0?¶0? 
%îs<û ?U??{?í¿0
 *?H?÷


0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
020404000000Z
070403235959Z0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0?0
 *?H?÷



0?¼+þîO×ùútüoÃøÊ?(v'È4 ˪r-É­ö?~?hòKïÉÿo½?îÓ??ÿ¨þîhU°¼ð°óåNhfisµ:V÷^uæo;êâd'\`?ÝÛ+·¼¶ª¡$)¯t¦?¯GöÕK~,e3îÛ¥<
KCp?ÙÙÂ??Äø(

£¤0¡0U

ÿ0

ÿ
0FU ?0=0;`?H
?øE

0,0*+

https://www.verisign.co.jp/rpa0U


ÿ
0 `?H
?øB


0 U0¤010UC1C2-1-40
 *?H?÷


\?Ïh??¿ÏÓ_n²N>?Qs?e¢w ~ü v1?ÿîv4YVÊæGèãTÓÈ?Î?«bMo]?¸¢±?_K??Çó[m³#ÕcÑU*¿þ·ÄUò´o:?¿ê§q^/=¯?
?òt)ÿÌõ
?¬ÕÕ?ô÷7ªÔ?pd{0?10?? 
d2?7Åw?É??¹?b?ñ0
 *?H?÷


0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0
050331000000Z
060331235959Z0ü10U
VeriSign Japan K.K.10UISP Service CA1503U,Terms of use at www.verisign.co.jp/rpa (c)011806U/Service Name - 5BF88D474BD2A6D3E7E073163F0C4D1210UHitachijoho10UTsuneo Ogasawara1!0 *?H?÷


t.ogaswr (at) lac.co (dot) jp0 [email concealed]?0
 *?H?÷



0?¿*E´\2ÅÍóDíÐÏÇ~?+Ü=Ù&-u4)~è§ÊÇ2ÉnAàÙWÍØoÓÐûÊfÚq³
.?³¥Hë¼ÀÚ×?!0¯6iÚ??±?rÙDÏdA[?Ùî?´q\~ãè?ú¨
Ä»ù?oÊi1¶+_ãr?#??>¥þ?IÁeA

£ä0á0 U00EU >0<0:
`?H
?øE
0,0*+

https://www.verisign.co.jp/rpa0U 0
`?H
?øB

?0ZUS0Q0O M K?Ihttp://onsitecrl.verisign.co.jp/VeriSi
gnJapanKKISPServiceCA/LatestCRL.crl0
`?H
?øE
 

ÿ0
 *?H?÷


TMΤ©ýäøpß˵"òΩ,Í˶Q??`puÏ?¥?F?ÿ¬ãÅz?¸íñ²Oð)ô2ð$³q?âüý |øu
ßx©?Ì0³Jçjñ^9?^ p('?öC¦^ã=?øîÍ?&´ª.àTaxz4ÓÄÇ«<v?òY³QúÄ1?90?5

0Þ0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CAd2?7Åw?É??¹?b?ñ0 + ±0 *?H?÷

1 *?H?÷


0 *?H?÷

1
051216082500Z0# *?H?÷

1ó?]²ÑD£¬ã(?3>¥?.0R *?H?÷

1E0C0
*?H?÷
0*?H?÷
?0+0
*?H?÷

@0
*?H?÷

(0
 *?H?÷



?Ï¿ÔP+do 7ê3?ý?)Ø=îÞ±g?f-î?'®h??­à! x:°YþþÀìõ\v??ÿYØ?@þ?t??ŵ?R?¦ôF_S¢?Û??§ê7Ëx?[¯¡|ð0r<é?Ò|?ÿ¡?è$¼KFQYaì"?ã ±?¼û

[ reply ]