SecurityFocus

SecurityFocus Newsletter #316 2005-09-12->2005-09-16 Jan 13 2006 09:16AM
Tsuneo Ogasawara (t ogaswr lac co jp)

$B>.3^86(B@$B%i%C%/$G$9!#(B

SecurityFocus Newsletter $BBh(B 316 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

------------------------------------------------------------------------
---
BugTraq-JP $B$K4X$9$k(B FAQ ($BF|K\8l(B):
http://www.securityfocus.com/archive/79/description
$B!&(BSecurityFocus Newsletter $B$NOBLu$O(B BugTraq-JP $B$G0l<!G[I[$5$l$F$$$^$9(B
$B!&(BBugTraq-JP $B$X$N;22CJ}K!!"C&B`J}K!$O$3$N(B FAQ $B$r$4;2>H$/$@$5$$(B
------------------------------------------------------------------------
---
SecurityFocus Newsletter $B%"!<%+%$%V(B ($B1Q8l(B):
http://www.securityfocus.com/archive/78
BugTraq $B$K4X$9$k(B FAQ ($B1Q8l(B):
http://www.securityfocus.com/archive/1/description
------------------------------------------------------------------------
---
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B SecurityFocus $B$N5v2D$r3t<02q<R%i%C%/$,F@$?>e$G9T$o$l$F$$$^$9!#(B
$B!&(BSecurityFocus Newsletter $B$NOBLu$r(B Netnews, Mailinglist, World Wide Web,
$B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$NA4J80zMQ$r$*4j$$$7$^$9!#
(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;$s$,!"(B
$B=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurityFocus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k7A<0$N(B
$B%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://online.securityfocus.com/archive/79
------------------------------------------------------------------------
---
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02q<R%i%C%/$O@UG$$rIi$o$J$$$b$N$H$7$^
(B
$B$9!#(B
------------------------------------------------------------------------
---
$BLu<T$+$i$N$*CN$i$;(B:
$B!&$b$7!"(Btypo $B$d8mLu$,8+$D$+$C$?>l9g!"(BBugTraq-JP $B$X(B Errata $B$H$7$F=$@5(B
$BHG$r$4Ej9FD:$/$+!"4F=$<T(B (t.ogaswr (at) lac.co (dot) jp [email concealed]) $B$K$*CN$i$;$/$@$5$$!#(B
$B8e<T$N>l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
------------------------------------------------------------------------
---
This translation is encoded and posted in ISO-2022-JP.

$B86HG(B:
Date: Tue, 20 Sep 2005 17:08:00 -0600
Message-ID: <43309650.2070908 (at) securityfocus (dot) com [email concealed]>

SecurityFocus Newsletter #316
-----------------------------

This Issue is Sponsored By: AirDefense

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
1. Crime? What crime?
2. Cisco SNMP configuration attack with a GRE tunnel
II. BUGTRAQ SUMMARY
1. COOL! Remote Control Remote Denial Of Service Vulnerability
2. Mall23 Infopage.ASP SQL Injection Vulnerability
3. Rdiff-backup Directory Access Restriction Bypass Vulnerability
4. KAudioCreator CDDB Arbitrary File Overwrite Vulnerability
5. PunBB Multiple SQL Injection Vulnerabilities
6. XFree86 Pixmap Allocation Local Privilege Escalation Vulnerability
7. PunBB BBCode URL Tag HTML Injection Vulnerability
8. SMC SMC7904WBRA Wireless Router Remote Denial Of Service Vulnerability
9. TMSNC Unspecified Format String Vulnerability
10. Snort PrintTcpOptions Remote Denial Of Service Vulnerability
11. Ingate Administrative Interface Cross-Site Scripting Vulnerability
12. Mark D. Roth PAM_Per_User Authentication Bypass Vulnerability
13. PHPTagCool HTTP Header SQL Injection Vulnerability
14. PHPNuke Multiple SQL Injection Vulnerabilities
15. Util-Linux UMount Remounting Filesystem Option Clearing Vulnerability
16. Subscribe Me Pro S.PL Remote Directory Traversal Vulnerability
17. Handy Address Book Server Cross-Site Scripting Vulnerability
18. Azerbaijan Development Group AZDGDatingLite Directory Traversal Vulnerability
19. Land Down Under Multiple SQL Injection Vulnerabilities
20. Mail-it Now! Upload2Server Arbitrary File Upload Vulnerability
21. Linksys WRT54G Wireless Router Multiple Remote Vulnerabilities
22. Sun Java System Application Server Web Application JAR Disclosure Vulnerability
23. AVIRA Desktop for Windows ACE Archive Handling Remote Buffer Overflow Vulnerability
24. Apple Mac OS X Java Insecure Temporary File Vulnerability
25. Apple Mac OS X Untrusted Java Applet Privilege Escalation Vulnerability
26. Apple Mac OS X Java ServerSocket Port Hijacking Vulnerability
27. MIVA Merchant 5 Merchant.MVC Cross-Site Scripting Vulnerability
28. Common-Lisp-Controller Cache Arbitrary Code Injection Vulnerability
29. LineControl Java Client Local Password Disclosure Vulnerability
30. ATutor Password_Reminder.PHP SQL Injection Vulnerability
31. ATutor Chat Logs Remote Information Disclosure Vulnerability
32. Noah's Classifieds Index.PHP SQL Injection Vulnerability
33. TWiki TWikiUsers Remote Arbitrary Command Execution Vulnerability
34. Noah's Classifieds Index.PHP Cross-Site Scripting Vulnerability
35. Ensim OCW_login_username HTML Injection Vulnerability
36. Compuware DriverStudio Remote Control Null Session Authentication Bypass Vulnerability
37. Compuware DriverStudio Unauthorized Remote Reboot Vulnerability
38. Cambridge Computer Corporation VxFtpSrv Remote Buffer Overflow Vulnerability
39. Hosting Controller Unspecified Information Disclosure Vulnerability
40. Cambridge Computer Corporation VxWeb Remote Buffer Overflow Vulnerability
41. Cambridge Computer Corporation VxTftpSrv Remote Buffer Overflow Vulnerability
42. Digital Scribe Login SQL Injection Vulnerability
43. Ahnlab V3 Antivirus ACE Archive Handling Remote Buffer Overflow Vulnerability
44. IBM Lotus Domino BaseTarget Parameter Cross-Site Scripting Vulnerability
45. IBM Lotus Domino Src Parameter Cross-Site Scripting Vulnerability
46. AEwebworks aeDating Search_Result.PHP SQL Injection Vulnerability
47. Ahnlab V3 Antivirus ACE Archive Handling Directory Traversal Vulnerability
48. GTKDiskFree Insecure Temporary File Creation Vulnerability
49. Ahnlab V3 Antivirus Privilege Escalation Vulnerability
50. DeluxeBB Multiple SQL Injection Vulnerabilities
51. Turquoise SuperStat Date Parser Remote Buffer Overflow Vulnerability
52. Data Center Resources Avocent CCM Privileged Port Access Bypass Vulnerability
53. SimpleCDR-X Insecure Temporary File Creation Vulnerability
54. Microsoft Internet Explorer Unspecified Code Execution Vulnerability
55. GNOME Workstation Command Center Gwcc_out.TXT Insecure Temporary File Creation Vulnerability
56. PHP Session Handling Local Session Hijacking Vulnerability
57. Ncompress Insecure Temporary File Creation Vulnerability
58. PHP-Nuke WYSIWYG Editor Unspecified Security Vulnerability
59. SuSE YaST Local Buffer Overflow Vulnerability
60. Arc Insecure Temporary File Creation Vulnerability
61. Py2Play Object Unpickling Remote Python Code Execution Vulnerability
62. Tofu Object Unpickling Remote Python Code Execution Vulnerability
63. ClamAV UPX Compressed Executable Buffer Overflow Vulnerability
64. ClamAV FSG Compressed Executable Infinite Loop Denial Of Service Vulnerability
65. Apple Safari Data URI Memory Corruption Vulnerability
66. CutePHP CuteNews Flood Protection Client-IP PHP Code Injection Vulnerability
III. SECURITYFOCUS NEWS
1. Key clicks betray passwords, typed text
2. Microsoft's delay to patch fuels concerns
3. Big debate over small packets
4. Katrina's destruction attracts online fraudsters
5. Phishers trawl for victims in Europe
6. Firefox and Mac security sanctuaries 'under attack'
7. Worm spoofs Google on infected PCs
8. Arrest made in Berkeley laptop theft case

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
----------------------------

II. BUGTRAQ SUMMARY
--------------------
1. COOL! Remote Control Remote Denial Of Service Vulnerability
BugTraq ID: 14802
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14802
$BMWLs(B:
COOL! Remote Control $B$O!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9ITG=>uBV$K4Y$k(B
$BLdBj$N1F6A$r<u$1$^$9!#(B

$B$3$NLdBj$NMxMQ$,@.8y$9$k$H!"%j%b!<%H$N967b<T$,@55,%f!<%6$X$N%5!<%S%9I
TG=(B
$B$r>7$$$?$j!"%/%i%$%"%s%H$r%/%i%C%7%e$5$;$?$j$9$k$3$H$,5v$5$l$F$7$^$$$
^$9!#(B

COOL! Remote Control 1.12 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#$=$NB>$N%P!<(B
$B%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

2. Mall23 Infopage.ASP SQL Injection Vulnerability
BugTraq ID: 14803
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14803
$BMWLs(B:
Mall23 $B$K$O!"(BSQL $B9=J8$rCmF~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;X(B
$BDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K(B
$B<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

3. Rdiff-backup Directory Access Restriction Bypass Vulnerability
BugTraq ID: 14804
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14804
$BMWLs(B:
rdiff-backup $B$O!"%G%#%l%/%H%j$N%"%/%;%9@)8B$,2sHr$5$l$kLdBj$N1F6A$r<u$1(B
$B$^$9!#(B

$B967b$,@.8y$9$k$H!"967b<T$,%G%#%l%/%H%j$N0lMw$r<hF@$7!"@)8B$5$l$?%Q%90
J30(B
$B$N>l=j$G%U%!%$%k$X$N=q$-9~$_$r<B9T$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$,$"$
j$^(B
$B$9!#(B

rdiff-backup 1.0 $B0JA0$N%P!<%8%g%s$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#(B

4. KAudioCreator CDDB Arbitrary File Overwrite Vulnerability
BugTraq ID: 14805
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14805
$BMWLs(B:
KAudioCreator $B$K$O!"G$0U$N%U%!%$%k$,>e=q$-$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj(B
$B$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM
3Mh(B
$B$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%"%W%j%1!<%7%g%s$r<B9T$9$k%f!<%
6$N(B
$B%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%U%!%$%k$r>e=q$-$9$k$3$H$,$G$-$^$
9!#(B

5. PunBB Multiple SQL Injection Vulnerabilities
BugTraq ID: 14806
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14806
$BMWLs(B:
PunBB $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l(B
$B$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N(B
$B%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

6. XFree86 Pixmap Allocation Local Privilege Escalation Vulnerability
BugTraq ID: 14807
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14807
$BMWLs(B:
XFree86 $B$K$O!"(Bpixmap $B=hM}%3!<%I$G%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,(B
$B$"$j$^$9!#(B

$B$3$l$K$h$jG$0U$N%3!<%I$,<B9T$5$l!"8"8B>:3J$,0z$-5/$3$5$l$k2DG=@-$,$"$
j$^(B
$B$9!#967b<T$O$3$NLdBj$rMxMQ$7$F4IM}<T8"8B$r<hF@$9$k2DG=@-$,$"$j$^$9!#
(B

7. PunBB BBCode URL Tag HTML Injection Vulnerability
BugTraq ID: 14808
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14808
$BMWLs(B:
PunBB $B$K$O!"(BHTML $B%?%0$rA^F~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;X(B
$BDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(B Cookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N%l%s%@%j%s%0J}K!$r@)8f$9$k2DG=@-$
b$"(B
$B$j$^$9!#$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

8. SMC SMC7904WBRA Wireless Router Remote Denial Of Service Vulnerability
BugTraq ID: 14809
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14809
$BMWLs(B:
SMC SMC7904WBRA $BL5@~%k!<%?$O!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9ITG=>uBV$K(B
$B4Y$kLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj$O!"0[>o$J%M%C%H%o!<%/%H%i%U%#%C%/$
N=h(B
$BM}$,<:GT$9$k$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$O!"BgNL$N%M%C%H%o!<%/%H%i%U%#%C%/$,$3$N%k!<%?$K8~$1$i$l$?$H$
-$K(B
$B0z$-5/$3$5$l$k$3$H$,Js9p$5$l$F$$$^$9!#%k!<%?$O%M%C%H%o!<%/%H%i%U%#%C%
/$N(B
$B=hM}$K<:GT$7!":F5/F0$9$k$H9M$($i$l$^$9!#99$J$k>pJs$ODs6!$5$l$F$$$^$;$
s!#(B
$B>\:Y$,8xI=$5$l<!Bh!"$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

$B967b<T$O!"$3$NLdBj$rMxMQ$7$FLdBj$N$"$k%k!<%?$r%/%i%C%7%e$5$;!"$3$l$K$
h$j(B
$B@55,%f!<%6$X$N%5!<%S%95qH]$r>7$/2DG=@-$,$"$j$^$9!#(B

$B%G%P%$%94V$G%3!<%I$,:FMxMQ$5$l$F$$$k$?$a!"$=$NB>$N@=IJ$bLdBj$N1F6A$r<
u$1(B
$B$k2DG=@-$,$"$j$^$9!#(B

9. TMSNC Unspecified Format String Vulnerability
BugTraq ID: 14810
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14810
$BMWLs(B:
TMSNC $B$K$O!"%U%)!<%^%C%H%9%H%j%s%0$K4XO"$9$kL$FCDj$NLdBj$,B8:_$9$k5?$$$,(B

$B$"$j$^$9!#$3$NLdBj$NMxMQ$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$,<:GT$7$?$j!"%
j%b!<(B
$B%H$+$iG$0U$N%3!<%I$,<B9T$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#(B

10. Snort PrintTcpOptions Remote Denial Of Service Vulnerability
BugTraq ID: 14811
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14811
$BMWLs(B:
Snort $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$k$3$H(B

$B$,Js9p$5$l$F$$$^$9!#$3$NLdBj$O(B 'PrintTcpOptions()' function of 'log.c'
$B$G0z$-5/$3$5$l$k$3$H$,Js9p$5$l$F$$$^$9!#$3$l$O!"0-0U$"$k(B TCP $B%Q%1%C%H$N(B
$B=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B%j%b!<%H$N967b<T$O!"$3$NLdBj$rMxMQ$7$F%j%b!<%H$N(B Snort $B%5!<%P$r%/%i%C%7%e(B
$B$5$;!"$3$l$K$h$j99$J$k0-0U$"$k967b$,8!=P$5$l$k$3$H$rK8$2$k2DG=@-$,$"$
j$^(B
$B$9!#(B

Snort $B$,(B '-v' (verbose) $B%U%i%0$r;HMQ$7$F<B9T$7$F$$$k$H$-$K$N$_!"LdBj$N$"(B
$B$k%3!<%I%Q%9$,<B9T$5$l$kE@$KN10U$9$Y$-$G$9!#>iD9%b!<%I$G(B Snort $B%"%W%j%1!<(B
$B%7%g%s$r<B9T$9$k$H%Q%U%)!<%^%s%9$,Dc2<$9$k$?$a!"$3$N%"%W%j%1!<%7%g%s$
NBg(B
$BItJ,$NK\HV2TF/$N%$%s%9%H!<%k$OLdBj$N1F6A$r<u$1$J$$2DG=@-$,9b$$$H9M$($
i$l(B
$B$^$9!#(B

$B99?7(B: $BLdBj$N$"$k%3!<%I$K$OB>$K$b%Q%9$,B8:_$9$k2DG=@-$,$"$k$3$H$,!"99$KJs(B

$B9p$5$l$F$$$^$9!#(B'frag3'$B%W%j%W%m%;%C%5$r;HMQ$7!"(BASCII $B%b!<%I$G$N%m%.%s%0(B
$B$rM-8z2=$7!"(B'-A fast' $B%3%^%s%I%i%$%s%*%W%7%g%s$J$I$N%*%W%7%g%s$r;HMQ$9$k(B
$B$3$H$K$h$j!"(BSnort $B$,$3$NLdBj$N1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#>\:Y$K$D$$$F(B
$B$O!";29M%a%C%;!<%8$r;2>H$7$F$/$@$5$$!#(B

11. Ingate Administrative Interface Cross-Site Scripting Vulnerability
BugTraq ID: 14812
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14812
$BMWLs(B:
Ingate Firewall $B$*$h$S(B SIParator $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b(B
$B$r<u$1$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$K$h$kF~NOCM$N%5%K%?%$%:=hM
}$,(B
$BE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%
HFb(B
$B$G!"5?$$$r;}$?$J$$4IM}%f!<%6$N%V%i%&%6$GG$0U$N%9%/%j%W%H%3!<%I$r<B9T$
9$k(B
$B2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N96(B
$B7b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

12. Mark D. Roth PAM_Per_User Authentication Bypass Vulnerability
BugTraq ID: 14813
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14813
$BMWLs(B:
Pam_per_user $B$K$O!"G'>Z$,2sHr$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"$3$N%b%8%e!<(B
$B%k$N@_7W>e$NITHw$KM3Mh$7$^$9!#(B

$B$3$NLdBj$NMxMQ$,@.8y$9$k$H!"K\Mh5v2D$5$l$J$$%f!<%6$,G'>Z$r2sHr$7!"LdB
j$N(B
$B$"$k%3%s%T%e!<%?$KBP$7$F4IM}<T%"%/%;%9$r<hF@$9$k$3$H$r5v$7$F$7$^$&2DG
=@-(B
$B$,$"$j$^$9!#(B

PAM $B$N8F$S=P$7$N%a%=%C%I$K$h$j!"(BPAM $B$r;HMQ$9$k<B9T2DG=%W%m%0%i%`$N$_$,Ld(B
$BBj$N1F6A$r<u$1$kE@$KN10U$9$Y$-$G$9!#MxMQ$5$l$k2DG=@-$N$"$k%W%m%0%i%`$
K$O!"(B
'login' $B%W%m%0%i%`$,4^$^$l$F$$$k$3$H$,3NG'$5$l$F$$$^$9!#B>$N%W%m%0%i%`$b!"(B

$B$3$N%b%8%e!<%k$H$N4XO"$G1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

pam_per_user 0.4 $B$h$jA0$N%P!<%8%g%s$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#(B

13. PHPTagCool HTTP Header SQL Injection Vulnerability
BugTraq ID: 14814
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14814
$BMWLs(B:
PhpTagCool $B$K$O!"(BSQL $B9=J8$rCmF~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6(B
$B$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,E,(B
$B@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

14. PHPNuke Multiple SQL Injection Vulnerabilities
BugTraq ID: 14815
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14815
$BMWLs(B:
PHPNuke $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3(B
$B$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM(B
$B$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

15. Util-Linux UMount Remounting Filesystem Option Clearing Vulnerability
BugTraq ID: 14816
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14816
$BMWLs(B:
Util-linux $B$K$O!"%U%!%$%k%7%9%F%`$N%*%W%7%g%s$,>C5n$5$l$k2DG=@-$,$"$j$^(B
$B$9!#$3$NLdBj$O@_7W>e$NITHw$KM3Mh$7$^$9!#$3$N$?$a!"FCDj$N>u67$K$*$$$F%
^%&(B
$B%s%H$5$l$?%U%!%$%k%7%9%F%`$N%*%W%7%g%s$,ITE,@Z$K>C5n$5$l$F$7$^$$$^$9!
#(B

$B$3$NLdBj$O!"967b<T$,%^%&%s%H$5$l$?%U%!%$%k%7%9%F%`$N%*%W%7%g%s$r>C5n$
7!"(B
setuid $B%S%C%H$,IUM?$5$l$F$$$k%"%W%j%1!<%7%g%s$r<B9T$7$F8"8B$r>:3J$5$;$k(B
$B$3$H$r5v$7$F$7$^$$$^$9!#$=$NB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

16. Subscribe Me Pro S.PL Remote Directory Traversal Vulnerability
BugTraq ID: 14817
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14817
$BMWLs(B:
Subscribe Me Pro $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$k5?$$$,$"$j$^(B
$B$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$
l$J(B
$B$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$FG$0U$N%U%!%$%k$r3+<($G$-$k$?$a!"5!L)@-$,B;$
J$o(B
$B$l$k2DG=@-$,$"$j$^$9!#$3$N967b$K$h$C$F<hF@$5$l$?>pJs$O!"%P%C%/%(%s%I%
7%9(B
$B%F%`$KBP$7$F99$J$k967b$r;n$_$k$?$a$N<j=u$1$H$J$k2DG=@-$,$"$j$^$9!#(B

Subscribe Me Pro 2.044.09P $B0JA0$N%P!<%8%g%s$K$*$$$F!"$3$NLdBj$N1F6A$r<u(B
$B$1$^$9!#(B

17. Handy Address Book Server Cross-Site Scripting Vulnerability
BugTraq ID: 14818
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14818
$BMWLs(B:
Handy Address Book Server $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k(B
$B5?$$$,$"$j$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$"$
k%5(B
$B%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$k2DG
=@-(B
$B$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b$,0z(B
$B$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

18. Azerbaijan Development Group AZDGDatingLite Directory Traversal Vulnerability
BugTraq ID: 14819
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14819
$BMWLs(B:
AzDGDatingLite $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$
$$3(B
$B$H$KM3Mh$7$^$9!#(B

$B967b<T$O%G%#%l%/%H%j;2>H$K4X$9$kJ8;zNs!"%U%!%$%kL>!"(BNULL $B%P%$%HJ8;z$N=g(B
$B$K;XDj$7!"%m!<%+%k$NG$0U$N%U%!%$%k$r%$%s%/%k!<%I$9$k$3$H$K$h$C$F!"$3$
NLd(B
$BBj$rMxMQ$G$-$^$9!#(B

$B$3$NLdBj$NMxMQ$,@.8y$7$?>l9g$N1F6A$O!"%m!<%+%k$N%$%s%/%k!<%I$5$l$?%U%
!%$(B
$B%k$NFbMF$K$h$j0[$J$j$^$9!#(B

19. Land Down Under Multiple SQL Injection Vulnerabilities
BugTraq ID: 14820
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14820
$BMWLs(B:
Land Down Under $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"(B
$BF~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

20. Mail-it Now! Upload2Server Arbitrary File Upload Vulnerability
BugTraq ID: 14821
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14821
$BMWLs(B:
Mail-it Now! Upload2Server $B$K$O!"G$0U$N%U%!%$%k$,%"%C%W%m!<%I$5$l$k5?$$(B
$B$,$"$j$^$9!#$3$NLdBj$O!"%U%!%$%k$N%"%C%W%m!<%IA0$K!"%f!<%6$,;XDj$7$?F
~NO(B
$BCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$BLdBj$NMxMQ$,@.8y$9$k$H!"(BWeb $B%5!<%P%W%m%;%9$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G(B
$B%U%!%$%k$,<B9T$5$l$F$7$^$$$^$9!#$3$NLdBj$K$h$j!"IT@5%"%/%;%9$,0z$-5/$
3$5(B
$B$l$k2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

21. Linksys WRT54G Wireless Router Multiple Remote Vulnerabilities
BugTraq ID: 14822
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14822
$BMWLs(B:
Linksys WRT54G $B%k!<%?$K$O!"J#?t$NLdBj$,B8:_$9$k$3$H$,3NG'$5$l$F$$$^$9!#(B
$B$3$l$i$NLdBj$O$9$Y$F!"967b<T$,LdBj$N$"$k%G%P%$%9$NL5@~$^$?$OFbIt(B LAN $B%M%C(B
$B%H%o!<%/%;%0%a%s%H$K%"%/%;%9$9$kI,MW$,$"$j$^$9!#(BWAN $B%$%s%?%U%'!<%9$r;HMQ(B
$B$7$FLdBj$rMxMQ$G$-$k$N$O!"LdBj$N$"$k%G%P%$%9$G%j%b!<%H4IM}$,M-8z$K$J$
C$F(B
$B$$$k>l9g$N$_$G$9!#(B

$B$3$NLdBj$O!"967b<T$,0J2<$N9T0Y$r9T$&$3$H$r5v$7$F$7$^$$$^$9!#(B
- $BLdBj$N$"$k%k!<%?$N@_Dj$r%@%&%s%m!<%I$7!"CV$-49$($k!#(B
- $BLdBj$N$"$k%G%P%$%9$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%^%7%s%3!<%I$r<
B(B
$B9T$9$k!#(B
- $BE,@Z$JG'>Z$r<u$1$:$K!"(BHTTP POST $B%j%/%(%9%H$K$h$C$F%k!<%?@_Dj%U%!%$%k$*(B
$B$h$S%U%!!<%`%&%'%"%U%!%$%k$r%"%C%W%m!<%I$9$k!#(B
- $BLdBj$N$"$k%G%P%$%9$N%Q%U%)!<%^%s%9$rDc2<$5$;!"(BWeb $B%5!<%P$N1~Ez$rDd;_$5(B
$B$;$k$3$H$K$h$j!"@55,%f!<%6$X$N%5!<%S%9ITG=>uBV$r@x:_E*$K>7$/!#(B

22. Sun Java System Application Server Web Application JAR Disclosure Vulnerability
BugTraq ID: 14823
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14823
$BMWLs(B:
Sun Java System Application Server $B$K$O!">pJs$,O31L$9$k5?$$$,$"$j$^$9!#(B
$BFC$K!"%G%W%m%$$5$l$F$$$k(B Web $B%"%W%j%1!<%7%g%s$K4XO"IU$1$i$l$?(B JAR $B%U%!%$(B
$B%k$KBP$7$F!"%j%b!<%H$N967b<T$,IT@5$K%"%/%;%9$9$k2DG=@-$,$"$j$^$9!#(B

23. AVIRA Desktop for Windows ACE Archive Handling Remote Buffer Overflow Vulnerability
BugTraq ID: 14824
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14824
$BMWLs(B:
AVIRA Desktop for Windows $B$O!"%j%b!<%H$+$i$N967b$K$h$j!"(BACE $B%"!<%+%$%V$N(B
$B=hM};~$K%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$kLdBj$N1F6A$r<u$1$^$9!#(B

$B$3$N%"%W%j%1!<%7%g%s$G05=L%U%!%$%k$N%9%-%c%s$,M-8z2=$5$l$F$*$j!"0-0U$
"$k(B
$B%"!<%+%$%V$,=hM}$5$l$k>l9g!"%P%C%U%!%*!<%P!<%U%m!<$,0z$-5/$3$5$l$k2DG
=@-(B
$B$,$"$j$^$9!#$3$l$K$h$j%a%b%j$,GK2u$5$l!"G$0U$N%3!<%I$,<B9T$5$l$k2DG=@
-$,(B
$B$"$j$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"(BSYSTEM $B$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G%j%b!<(B
$B%H$+$iIT@5$K%"%/%;%9$9$k2DG=@-$,$"$j$^$9!#(B

AVPACK32.DLL 6.31.0.3 $B$r<B9T$9$k(B Desktop for Windows1.00.00.68 $B$K$*$$$F!"(B
$B$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s$bLdB
j$N(B
$B1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

24. Apple Mac OS X Java Insecure Temporary File Vulnerability
BugTraq ID: 14825
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14825
$BMWLs(B:
Mac OS X $B>e$G<B9T$9$k(B Sun Java $B$K$O!"%;%-%e%j%F%#>eITE,@Z$K0l;~%U%!%$%k(B
$B$,:n@.$5$l$k5?$$$,$"$j$^$9!#LdBj$NMxMQ$,@.8y$9$k$H!"%U%!%$%k$,GK2u$5$
l$?(B
$B$jG$0U$N%U%!%$%k$,:n@.$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,$3$
NLd(B
$BBj$rMxMQ$7$F8"8B$r>:3J$G$-$k2DG=@-$b$"$j$^$9$,!"$3$l$K$D$$$F$OL$8!>Z$
G$9!#(B

25. Apple Mac OS X Untrusted Java Applet Privilege Escalation Vulnerability
BugTraq ID: 14826
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14826
$BMWLs(B:
Apple Mac OS X $B$K$O!"?.Mj$G$-$J$$(B Java $B%"%W%l%C%H$,8"8B$r>:3J$5$;$k$3$H(B
$B$r5v$7$F$7$^$&5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O%"%W%l%C%H$r<B9T$9$k%f!<%6$N8"8B%l%Y%k$rI,MW$H$9$k%j%=!<%9$
KBP(B
$B$7$F%"%W%l%C%H$,%"%/%;%9$7!"%7%9%F%`>e$N%f!<%6$,%"%/%;%9$G$-$k%U%!%$%
k$r(B
$BFI$_=P$7$?$j!"=q$-9~$s$@$j!"<B9T$7$?$j$9$k$3$H$r5v$7$F$7$^$&2DG=@-$,$
"$k(B
$B$H?d;!$5$l$^$9!#(B

$B$3$NLdBj$O!"(BMac OS X 10.3.9 $B0JA0$N%P!<%8%g%s$G<B9T$5$l$k(B Java $B$G$N$_0z$-(B
$B5/$3$5$l$kE@$KN10U$9$Y$-$G$9!#(B

26. Apple Mac OS X Java ServerSocket Port Hijacking Vulnerability
BugTraq ID: 14827
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14827
$BMWLs(B:
Apple Mac OS X $B$N(B Java $B$N<BAu$K$O!"(BJava $B%W%m%0%i%`$,B>$N%W%m%0%i%`$N%G!<(B
$B%?$rK5<u$9$k$3$H$r5v$7$F$7$^$&5?$$$,$"$j$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"B>$N(B Java $B%"%W%j%1!<%7%g%sMQ$N%G!<%?$r<hF@$G(B
$B$-$^$9!#$3$NLdBj$K$h$j>pJs$,O31L$9$k2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<
B9T(B
$B$5$l$k2DG=@-$b$"$j$^$9!#(B

Apple Mac OS X $B>e$N(B Java $B$N<BAu$K$*$$$F$N$_!"$3$NLdBj$N1F6A$r<u$1$k$3$H(B
$B$,Js9p$5$l$F$$$^$9!#(B

27. MIVA Merchant 5 Merchant.MVC Cross-Site Scripting Vulnerability
BugTraq ID: 14828
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14828
$BMWLs(B:
MIVA Merchant 5 $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"$j(B
$B$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$
5$l(B
$B$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$"$
k%5(B
$B%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$k2DG
=@-(B
$B$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b$,0z(B
$B$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

28. Common-Lisp-Controller Cache Arbitrary Code Injection Vulnerability
BugTraq ID: 14829
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14829
$BMWLs(B:
common-lisp-controller $B$K$O!"G$0U$N%3!<%I$rA^F~$5$l$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$NMxMQ$,@.8y$9$k$H!"8"8B>:3J$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!
#$=(B
$B$NB>$N967b$,2C$($i$l$k2DG=@-$b$"$j$^$9!#(B

29. LineControl Java Client Local Password Disclosure Vulnerability
BugTraq ID: 14830
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14830
$BMWLs(B:
LineControl Java Client $B$K$O!"%Q%9%o!<%I$,3+<($5$l$k5?$$$,$"$j$^$9!#$3$N(B
$BLdBj$O!"$3$N%"%W%j%1!<%7%g%s$N@_7W>e$NITHw$KM3Mh$7$^$9!#(B

LineControl Java Client 0.8.0 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#$=$NB>(B
$B$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

30. ATutor Password_Reminder.PHP SQL Injection Vulnerability
BugTraq ID: 14831
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14831
$BMWLs(B:
ATutor $B$K$O!"(BSQL $B9=J8$rCmF~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;X(B
$BDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K(B
$B<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

31. ATutor Chat Logs Remote Information Disclosure Vulnerability
BugTraq ID: 14832
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14832
$BMWLs(B:
ATutor $B$K$O!"%j%b!<%H$+$i>pJs$,3+<($5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"8"(B
$B8B$rI,MW$H$9$k>pJs$X$N%"%/%;%9$rG'$a$kA0$K!"%"%/%;%9$NBEEv@-3NG'$,E,@
Z$K(B
$B<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$F%A%c%C%H%m%0$N(B GET $B%j%/%(%9%H$r:n@.(B
$B$7!"$9$Y$F$N%A%c%C%H%"!<%+%$%V$r<hF@$G$-$^$9!#$3$l$K$h$j<hF@$5$l$?>pJ
s$O!"(B
$B967b$r;n$_$k$?$a$N<j=u$1$H$J$k2DG=@-$,$"$j$^$9!#(B

32. Noah's Classifieds Index.PHP SQL Injection Vulnerability
BugTraq ID: 14833
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14833
$BMWLs(B:
Noah's Classifieds $B$K$O!"(BSQL $B9=J8$rCmF~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"(B
$B%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=h(B
$BM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

33. TWiki TWikiUsers Remote Arbitrary Command Execution Vulnerability
BugTraq ID: 14834
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14834
$BMWLs(B:
$B$3$N%"%W%j%1!<%7%g%s$O!"%j%b!<%H$+$i%3%^%s%I$r<B9T2DG=$JLdBj$N1F6A$r<
u$1(B
$B$^$9!#(B

TWikiUsers $B%9%/%j%W%H$N9;@5@)8f5!G=$G$O!"%3%^%s%I%i%$%s$r9=@.$9$k$?$a$K(B
backtick $B%7%'%k%a%?J8;z$,;HMQ$5$l$^$9!#967b<T$O0U?^E*$K:n@.$7$?(B URI $B$r;H(B
$BMQ$7$F!"%7%'%k$r2p$7$FG$0U$N%3%^%s%I$r<B9T$9$k2DG=@-$,$"$j$^$9!#(B

$B$3$N967b$OLdBj$N$"$k%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G0z$
-5/(B
$B$3$5$l!"%j%b!<%H$+$i$NIT@5%"%/%;%9$,9T$o$l$k2DG=@-$,$"$j$^$9!#(B

34. Noah's Classifieds Index.PHP Cross-Site Scripting Vulnerability
BugTraq ID: 14835
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14835
$BMWLs(B:
Noah's Classifieds $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,(B
$B$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<
B9T(B
$B$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$"$
k%5(B
$B%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$k2DG
=@-(B
$B$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b$,0z(B
$B$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

35. Ensim OCW_login_username HTML Injection Vulnerability
BugTraq ID: 14836
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14836
$BMWLs(B:
Ensim $B$K$O!"(BHTML $B%?%0$rA^F~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;X(B
$BDj$7$?F~NOCM$rF0E*$K@8@.$7$?%3%s%F%s%D$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%
$%:(B
$B=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N%l%s%@%j%s%0J}K!$r@)8f$9$k2DG=@-$
b$"(B
$B$j$^$9!#$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

36. Compuware DriverStudio Remote Control Null Session Authentication Bypass Vulnerability
BugTraq ID: 14837
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14837
$BMWLs(B:
Compuware DriverStudio $B$K$O!"%j%b!<%H$N967b<T$K$h$jG'>Z$,2sHr$5$l$k5?$$(B
$B$,$"$j$^$9!#$3$NLdBj$O!"(BDriverStudio Remote Control Service $B$G0z$-5/$3$5(B
$B$l$^$9!#(B

$B$3$N967b$,@.8y$9$k$H!"99$J$k967b$K$h$C$FLdBj$N$"$k%3%s%T%e!<%?>e$GG$0
U$N(B
$B%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$^$9!#(B

37. Compuware DriverStudio Unauthorized Remote Reboot Vulnerability
BugTraq ID: 14838
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14838
$BMWLs(B:
Compuware DriverStudio $B$K$O!"K\Mh5v2D$5$l$F$$$J$$%j%b!<%H$N%f!<%6$K$h$j!"(B
$B2TF0$7$F$$$k%7%9%F%`$N:F5/F0$,0z$-5/$3$5$l$k5?$$$,$"$j$^$9!#(B

$B%j%b!<%H$N967b<T$O!"0U?^E*$K:n@.$7$?(B UDP $B%G!<%?%0%i%`$r(B DriverStudio
Remote Control Service $B$KAw?.$9$k$3$H$K$h$j!"$3$NLdBj$rMxMQ$9$k2DG=@-$,(B
$B$"$j$^$9!#(B

$B$3$NLdBj$r(B BID 14837 (Compuware DriverStudio Remote Control Null Session
Authentication Bypass Vulnerability) $B$HJ;MQ$9$k$3$H$K$h$j!"LdBj$N$"$k%3(B
$B%s%T%e!<%?>e$G%j%b!<%H$+$i%3!<%I$r<B9T$G$-$k2DG=@-$,$"$j$^$9!#(B

38. Cambridge Computer Corporation VxFtpSrv Remote Buffer Overflow Vulnerability
BugTraq ID: 14839
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14839
$BMWLs(B:
vxFtpSrv $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k(B
$B5?$$$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"%5!<%P$,%/%i%C%7%e$7$?$j!"G$0U$N%3!<%I$,<B9T$5$l$?$
j$9(B
$B$k2DG=@-$,$"$j$^$9!#967b<T$O%5!<%P%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%
F%-(B
$B%9%HFb$G!"%j%b!<%H$+$iIT@5$K%"%/%;%9$9$k2DG=@-$,$"$j$^$9!#(B

vxFtpSrv 0.9.7 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9(B

39. Hosting Controller Unspecified Information Disclosure Vulnerability
BugTraq ID: 14840
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14840
$BMWLs(B:
Hosting Controller $B$K$O!">pJsO31L$K4XO"$9$kL$FCDj$NLdBj$,B8:_$9$k5?$$$,(B
$B$"$j$^$9!#(B

$B$3$NLdBj$O!"%j%b!<%H$N967b<T$,%G%#%l%/%H%j$N0lMw$r1\Mw$7!"G$0U$N%U%!%
$%k(B
$B$r%@%&%s%m!<%I$9$k$3$H$r5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$O(B Hosting Controller 6.1 Hotfix 2.3 $B$GJs9p$5$l!"(BHotfix 2.4 $B$G2r(B
$B7h$5$l$F$$$^$9!#$3$l$h$jA0$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!
#(B

40. Cambridge Computer Corporation VxWeb Remote Buffer Overflow Vulnerability
BugTraq ID: 14841
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14841
$BMWLs(B:
vxWeb $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$(B

$B$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"%5!<%P$,%/%i%C%7%e$9$k2DG=@-$,$"$j$^$9!#$3$NLdBj$K$
h$j(B
$BG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$^$9$,!"$3$l$K$D$$$F$OL$8!>Z$G$9!
#G$(B
$B0U$N%3!<%I$r<B9T$9$k$3$H$,2DG=$G$"$k>l9g$O!"967b<T$,%5!<%P%"%W%j%1!<%
7%g(B
$B%s$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G%j%b!<%H$+$iIT@5$K%"%/%;%9$9$k2DG=@-$
,$"(B
$B$j$^$9!#(B

vxWeb 1.1.4 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$=$N(B
$BB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9(B

41. Cambridge Computer Corporation VxTftpSrv Remote Buffer Overflow Vulnerability
BugTraq ID: 14842
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14842
$BMWLs(B:
vxTftpSrv $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k(B
$B5?$$$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"%5!<%P$,%/%i%C%7%e$7$?$j!"G$0U$N%3!<%I$,<B9T$5$l$?$
j$9(B
$B$k2DG=@-$,$"$j$^$9!#967b<T$O%5!<%P%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%
F%-(B
$B%9%HFb$G!"%j%b!<%H$+$iIT@5$K%"%/%;%9$9$k2DG=@-$,$"$j$^$9!#(B

vxTftpSrv 1.7.0 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9(B

42. Digital Scribe Login SQL Injection Vulnerability
BugTraq ID: 14843
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14843
$BMWLs(B:
Digital Scribe $B$K$O!"(BSQL $B9=J8$rCmF~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<(B
$B%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,(B
$BE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

43. Ahnlab V3 Antivirus ACE Archive Handling Remote Buffer Overflow Vulnerability
BugTraq ID: 14844
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14844
$BMWLs(B:
Ahnlab V3 $B$N%"%s%A%&%$%k%9@=IJ$O!"%j%b!<%H$+$i$N967b$K$h$j!"(BACE $B%"!<%+%$(B
$B%V$N=hM};~$K%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$kLdBj$N1F6A$r<u$1$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"(BSYSTEM $B$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G%j%b!<(B
$B%H$+$iIT@5$K%"%/%;%9$9$k2DG=@-$,$"$j$^$9!#(B

AhnLab V3Pro 2004 Build 6.0.0.383$B!"(BAhnLab V3 VirusBlock 2005 Build
6.0.0.383$B!"$*$*$S(B AhnLab V3Net for Windows Server 6.0 Build 6.0.0.383 $B$K(B
$B$*$$$F!"LdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s$
b1F(B
$B6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

44. IBM Lotus Domino BaseTarget Parameter Cross-Site Scripting Vulnerability
BugTraq ID: 14845
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14845
$BMWLs(B:
IBM Lotus Domino $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"(B
$B$j$^$9!#$3$NLdBj$O!"(BURI $B%Q%i%a!<%?$r2p$7$F;XDj$5$l$?%G!<%?$NBEEv@-3NG'$,(B
$BE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O!"I8E*%f!<%6$,(B HTML $B$d%9%/%j%W%H%3!<%I$r4^$`0-0U$"$k%j%s%/$K%"%/(B
$B%;%9$9$k$h$&$K;E8~$1$k$3$H$K$h$C$F!"$3$NLdBj$rMxMQ$9$k2DG=@-$,$"$j$^$
9!#(B

$BLdBj$,MxMQ$5$l$k$3$H$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3(B
$B$5$l$k2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

45. IBM Lotus Domino Src Parameter Cross-Site Scripting Vulnerability
BugTraq ID: 14846
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14846
$BMWLs(B:
IBM Lotus Domino $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"(B
$B$j$^$9!#$3$NLdBj$O!"(BURI $B%Q%i%a!<%?$r2p$7$F;XDj$5$l$?%G!<%?$NBEEv@-3NG'$,(B
$BE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O!"I8E*%f!<%6$,(B HTML $B$d%9%/%j%W%H%3!<%I$r4^$`0-0U$"$k%j%s%/$K%"%/(B
$B%;%9$9$k$h$&$K;E8~$1$k$3$H$K$h$C$F!"$3$NLdBj$rMxMQ$9$k2DG=@-$,$"$j$^$
9!#(B

$BLdBj$,MxMQ$5$l$k$3$H$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3(B
$B$5$l$k2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

46. AEwebworks aeDating Search_Result.PHP SQL Injection Vulnerability
BugTraq ID: 14847
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14847
$BMWLs(B:
AEwebworks aeDating $B$K$O!"(BSQL $B9=J8$rCmF~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"(B
$B%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=h(B
$BM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

47. Ahnlab V3 Antivirus ACE Archive Handling Directory Traversal Vulnerability
BugTraq ID: 14848
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14848
$BMWLs(B:
Ahnlab V3 $B$N%"%s%A%&%$%k%9@=IJ$O!"%j%b!<%H$+$i%G%#%l%/%H%j%H%i%P!<%5%k96(B
$B7b$r<B9T$5$l!"$3$l$K$h$jG$0U$N%U%!%$%k$,%"%C%W%m!<%I$5$l$kLdBj$N1F6A$
r<u(B
$B$1$^$9!#(B

$B%U%!%$%k%7%9%F%`$NG$0U$N>l=j$K0-0U$"$k%U%!%$%k$,G[CV$5$l!"G$0U$N%3!<%
I<B(B
$B9T$J$I$N$5$^$6$^$J967b$,;E3]$1$i$l$k2DG=@-$,$"$j$^$9!#(B

AhnLab V3Pro 2004 Build 6.0.0.383$B!"(BAhnLab V3 VirusBlock 2005 Build
6.0.0.383$B!"$*$*$S(B AhnLab V3Net for Windows Server 6.0 Build 6.0.0.383 $B$K(B
$B$*$$$F!"LdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s$
b1F(B
$B6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

48. GTKDiskFree Insecure Temporary File Creation Vulnerability
BugTraq ID: 14849
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14849
$BMWLs(B:
GtkDiskFree $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#(B
$B$3$NLdBj$O!"(B'src/mount.c' $B%U%!%$%k$KB8:_$7$^$9!#(B

$BLdBj$rMxMQ$7$?967b$K$h$j=EMW$J%U%!%$%k$,>e=q$-$5$l$F$7$^$&$H!"%G!<%?$
,<:(B
$B$o$l$?$j%5!<%S%9ITG=>uBV$K4Y$C$?$j$9$k2DG=@-$,9b$$$H9M$($i$l$^$9!#$=$
NB>(B
$B$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

49. Ahnlab V3 Antivirus Privilege Escalation Vulnerability
BugTraq ID: 14850
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14850
$BMWLs(B:
Ahnlab V3 $B$N%"%s%A%&%$%k%9@=IJ$O!"%m!<%+%k$G$N8"8B>:3J$NLdBj$N1F6A$r<u$1(B
$B$^$9!#(B

$B967b$,@.8y$9$k$H!"%m!<%+%k$N967b<T$,(B SYSTEM $B8"8B$GG$0U$N%"%W%j%1!<%7%g%s(B
$B$r<B9T$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O%9%-%c%
s%((B
$B%s%8%s$rL58z$K$9$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"%3%s%T%e!<%?$,0-0U$"$
k%3!<(B
$B%I$N967b$KBP$7$FL5KIHw$J>uBV$K$J$k2DG=@-$,$"$j$^$9!#(B

AhnLab V3Pro 2004 Build 6.0.0.383$B!"(BAhnLab V3 VirusBlock 2005 Build
6.0.0.383$B!"$*$*$S(B AhnLab V3Net for Windows Server 6.0 Build 6.0.0.383 $B$K(B
$B$*$$$F!"LdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s$
b1F(B
$B6A$r<u$1$k2DG=@-$,$"$j$^$9(B

50. DeluxeBB Multiple SQL Injection Vulnerabilities
BugTraq ID: 14851
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14851
$BMWLs(B:
DeluxeBB $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NO(B
$BCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

51. Turquoise SuperStat Date Parser Remote Buffer Overflow Vulnerability
BugTraq ID: 14852
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14852
$BMWLs(B:
Turquoise SuperStat $B$K$O!"(BNNTP $B1~Ez%a%+%K%:%`$G%P%C%U%!%*!<%P!<%U%m!<$,(B
$BH/@8$9$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O!"F|IU2r@O%k!<%A%s$K$h$C$F=hM}$5$l$k%"%W%j%1!<%7%g%s$KBP$7$
F0-(B
$B0U$"$k(B NNTP $B%5!<%P$+$iBgNL$N%G!<%?$,Ds6!$5$l$k$H$-$K0z$-5/$3$5$l$^$9!#(B

$B967b$,@.8y$9$k$H!"%j%b!<%H$+$i6<0R$,>7$+$l$k2DG=@-$,$"$j$^$9!#(B

52. Data Center Resources Avocent CCM Privileged Port Access Bypass Vulnerability
BugTraq ID: 14853
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14853
$BMWLs(B:
Avocent CCM $B$K$O!"8"8B$rI,MW$H$9$k%]!<%H$N%"%/%;%9%3%s%H%m!<%k$,2sHr$5$l(B
$B$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"FbIt$N5!G=$X$N%"%/%;%9$rG'$a$kA0$KG'>Z$
,E,(B
$B@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"%"%/%;%9%3%s%H%m!<%k$r2sHr$7!"LdBj$N$"$k%
"%W(B
$B%i%$%"%s%9$K@\B3$9$k%]!<%H$*$h$S%G%P%$%9$KBP$7$F8"8B$rIUM?$5$l$?%"%/%
;%9(B
$B$r9T$&$3$H$,$G$-$^$9!#(B

53. SimpleCDR-X Insecure Temporary File Creation Vulnerability
BugTraq ID: 14855
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14855
$BMWLs(B:
SimpleCDR-X $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#(B

$B%m!<%+%k$N967b<T$O!"0l;~%U%!%$%k$,:n@.$5$l$k%G%#%l%/%H%j$K0-0U$"$k%7%
s%\(B
$B%j%C%/%j%s%/$r:n@.$9$k$3$H$K$h$C$F!"$3$NLdBj$rMxMQ$9$k2DG=@-$,9b$$$H9
M$((B
$B$i$l$^$9!#(B

$BLdBj$rMxMQ$7$?967b$K$h$j=EMW$J%U%!%$%k$,>e=q$-$5$l$F$7$^$&$H!"%G!<%?$
,<:(B
$B$o$l$?$j%5!<%S%9ITG=>uBV$K4Y$C$?$j$9$k2DG=@-$,9b$$$H9M$($i$l$^$9!#$=$
NB>(B
$B$N967b$,9T$o$l$k2DG=@-$b$"$j$^$9!#(B

SimpleCDR-X 1.3.3 $B$K$*$$$F!"1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N(B
$B%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9(B

54. Microsoft Internet Explorer Unspecified Code Execution Vulnerability
BugTraq ID: 14856
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14856
$BMWLs(B:
Microsoft Internet Explorer $B$O!"%j%b!<%H$+$i%3!<%I$r<B9T2DG=$JL$FCDj$NLd(B
$BBj$N1F6A$r<u$1$^$9!#(B

Internet Explore 6.0$B!"(B6.0 SP1$B!"$*$h$S(B 6.0 SP2 $B$K$*$$$F!"$3$NLdBj$N1F6A$r(B
$B<u$1$^$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9(B

$B>\:Y$,ITL@$J$?$a!"99$J$k>pJs$O8=;~E@$G$OJs9p$5$l$F$$$^$;$s!#>\:Y$,8x3
+$5(B
$B$l<!Bh!"$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

55. GNOME Workstation Command Center Gwcc_out.TXT Insecure Temporary
File Creation Vulnerability
BugTraq ID: 14857
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14857
$BMWLs(B:
GNOME Workstation Command Center $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#(B
$B>eE,@Z$K9T$o$l$^$;$s!#(B

$B%m!<%+%k$N967b<T$O!"0l;~%U%!%$%k$,:n@.$5$l$k%G%#%l%/%H%j$K0-0U$"$k%7%
s%\(B
$B%j%C%/%j%s%/$r:n@.$9$k$3$H$K$h$C$F!"$3$NLdBj$rMxMQ$9$k2DG=@-$,9b$$$H9
M$((B
$B$i$l$^$9!#(B

$BLdBj$rMxMQ$7$?967b$K$h$j=EMW$J%U%!%$%k$,>e=q$-$5$l$F$7$^$&$H!"%G!<%?$
,<:(B
$B$o$l$?$j%5!<%S%9ITG=>uBV$K4Y$C$?$j$9$k2DG=@-$,9b$$$H9M$($i$l$^$9!#$=$
NB>(B
$B$N967b$,9T$o$l$k2DG=@-$b$"$j$^$9!#(B

GNOME Workstation Command Center 0.98 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3(B
$B$H$,Js9p$5$l$F$$$^$9!#$3$l$h$jA0$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$
j$^(B
$B$9!#(B

56. PHP Session Handling Local Session Hijacking Vulnerability
BugTraq ID: 14858
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14858
$BMWLs(B:
PHP $B$K$O!"%;%C%7%g%sJQ?t$,%m!<%+%k$G%O%$%8%c%C%/$5$l$k5?$$$,$"$j$^$9!#$3
(B
$B$NLdBj$O!"(BPHP $B$G%;%C%7%g%sJQ?t$,J]B8$5$l$k$H$-$K0z$-5/$3$5$l$^$9!#(B

$B$3$NLdBj$,MxMQ$5$l$k$H!"LdBj$N$"$k%P!<%8%g%s$N(B PHP $B$r;HMQ$9$k%7%9%F%`>e(B
$B$GB>$N(B PHP $B%"%W%j%1!<%7%g%s$r<B9T$9$kI8E*%f!<%6$N%;%C%7%g%sJQ?t$,%O%$%8%c%C(B
$B%/$5$l$k2DG=@-$,$"$j$^$9!#(B

PHP 3.x $B$*$h$S(B 4.x $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^(B
$B$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

57. Ncompress Insecure Temporary File Creation Vulnerability
BugTraq ID: 14859
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14859
$BMWLs(B:
Ncompress $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#(B

$B%m!<%+%k$N967b<T$O!"0l;~%U%!%$%k$,:n@.$5$l$k%G%#%l%/%H%j$K0-0U$"$k%7%
s%\(B
$B%j%C%/%j%s%/$r:n@.$9$k$3$H$K$h$C$F!"$3$NLdBj$rMxMQ$9$k2DG=@-$,9b$$$H9
M$((B
$B$i$l$^$9!#(B

$BLdBj$rMxMQ$7$?967b$K$h$j=EMW$J%U%!%$%k$,>e=q$-$5$l$F$7$^$&$H!"%G!<%?$
,<:(B
$B$o$l$?$j%5!<%S%9ITG=>uBV$K4Y$C$?$j$9$k2DG=@-$,9b$$$H9M$($i$l$^$9!#$=$
NB>(B
$B$N967b$,9T$o$l$k2DG=@-$b$"$j$^$9!#(B

$B%P!<%8%g%s(B 4.2.4 $B$K$*$$$F!"$3$NLdBj$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g(B
$B%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

58. PHP-Nuke WYSIWYG Editor Unspecified Security Vulnerability
BugTraq ID: 14860
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14860
$BMWLs(B:
PHP-Nuke $B$O!"L$FCDj$N%;%-%e%j%F%#>e$NLdBj$N1F6A$r<u$1$^$9!#(B

wysiwyg $B%(%G%#%?$,@x:_E*$J%;%-%e%j%F%#$NLdBj$N1F6A$r<u$1$k$3$H$,!"%Y%s%@(B
$B$+$iJs9p$5$l$F$$$^$9!#$3$NLdBj$K$D$$$F99$J$k>pJs$O8x3+$5$l$F$$$^$;$s!
#Ld(B
$BBj$N>\:Y$,8x3+$5$l<!Bh!"$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

$B$3$NLdBj$O!"(BPHP-Nuke 7.9 $B$G2r7h$5$l$F$$$^$9!#(B

59. SuSE YaST Local Buffer Overflow Vulnerability
BugTraq ID: 14861
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14861
$BMWLs(B:
SuSE YaST $B$K$O!"%m!<%+%k$G$N967b$K$h$k%P%C%U%!%*!<%P!<%U%m!<$NLdBj$N1F6A(B
$B$r<u$1$^$9!#(B

$B%m!<%+%k$N967b<T$O$3$NLdBj$rMxMQ$7$F!"4IM}<T8"8B$GG$0U$N%3!<%I$r<B9T$
9$k(B
$B2DG=@-$,$"$j$^$9!#(B

SuSE Linux 9.3 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

60. Arc Insecure Temporary File Creation Vulnerability
BugTraq ID: 14863
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14863
$BMWLs(B:
ARC $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#(B

$B%m!<%+%k$G$N%"%/%;%98"$r;}$D967b<T$O!"$3$NLdBj$rMxMQ$7$F%U%!%$%k$r1\M
w$7!"(B
$B8"8B$rI,MW$H$9$k>pJs$r<hF@$9$k2DG=@-$,$"$j$^$9!#$^$?967b<T$O%7%s%\%j%
C%/(B
$B%j%s%/967b$r<B9T$7!"LdBj$N$"$k%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%F%-%
9%H(B
$BFb$GG$0U$N%U%!%$%k$r>e=q$-$9$k2DG=@-$,$"$j$^$9!#(B

$BLdBj$NMxMQ$K$h$j5!L)@-$,<:$o$l!"8"8B$rI,MW$H$9$k>pJs$,@`<h$5$l$k2DG=@
-$,(B
$B9b$$$H9M$($i$l$^$9!#%7%s%\%j%C%/%j%s%/967b$,@.8y$9$k$H!"=EMW$J@_Dj%U%
!%$(B
$B%k$,>e=q$-$5$l$k2DG=@-$,$"$j$^$9!#$3$NLdBj$K$h$j!"%5!<%S%9ITG=>uBV$,>
7$+(B
$B$l$k2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

ARC 5.21j $B0JA0$N%P!<%8%g%s$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l(B
$B$F$$$^$9!#(B

61. Py2Play Object Unpickling Remote Python Code Execution Vulnerability
BugTraq ID: 14864
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14864
$BMWLs(B:
Py2Play $B$K$O!"$3$N%W%m%0%i%`$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"%j%b!<%H$N96(B
$B7b<T$K$h$jG$0U$N(B Python $B%3!<%I$,<B9T$5$l$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O%j%b!<%H$N%T%"$K$h$jMxMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

62. Tofu Object Unpickling Remote Python Code Execution Vulnerability
BugTraq ID: 14865
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14865
$BMWLs(B:
Tofu $B$K$O!"$3$N%W%m%0%i%`$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G%j%b!<%H$N967b<T(B

$B$K$h$jG$0U$N(B Python $B%3!<%I$,<B9T$5$l$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O%j%b!<%H$N%T%"$K$h$jMxMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

63. ClamAV UPX Compressed Executable Buffer Overflow Vulnerability
BugTraq ID: 14866
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14866
$BMWLs(B:
ClamAV $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?(B
$B$$$,$"$j$^$9!#$3$N>u67$O!"0U?^E*$K:n@.$5$l$?(B UPX $B05=L$N<B9T2DG=%U%!%$%k(B
$B$,=hM}$5$l$k$H$-$KH/@8$7$^$9!#(B

$BLdBj$NMxMQ$,@.8y$9$k$H!"$3$N%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%F%-%9%
HFb(B
$B$GG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$^$9!#(B

64. ClamAV FSG Compressed Executable Infinite Loop Denial Of Service Vulnerability
BugTraq ID: 14867
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-16
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14867
$BMWLs(B:
ClamAV $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^(B
$B$9!#$3$NLdBj$O!"0U?^E*$K:n@.$5$l$?(B FSG $B05=L$N<B9T2DG=%U%!%$%k$,=hM}$5$l(B
$B$k$H$-$K0z$-5/$3$5$l$^$9!#(B

$BLdBj$NMxMQ$K$h$j%"%W%j%1!<%7%g%s$,L58B%k!<%W$K4Y$j!"%5!<%S%9ITG=>uBV$
,>7(B
$B$+$l$k2DG=@-$,$"$j$^$9!#(B

65. Apple Safari Data URI Memory Corruption Vulnerability
BugTraq ID: 14868
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14868
$BMWLs(B:
Apple Safari $B$K$O!"%a%b%j$,GK2u$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%V%i%&(B
$B%6$GFCDj$N(B 'data: ' URI $B$r3+$/$H$-$K0z$-5/$3$5$l$^$9!#$3$l$K$h$j!"%V%i%&(B
$B%6$,%/%i%C%7%e$7$^$9!#(B

$B$3$NLdBj$OG$0U$N%3!<%I$r<B9T$9$k$?$a$KMxMQ$5$l$k2DG=@-$,$"$j$^$9$,!"$
3$l(B
$B$K$D$$$F$OL$8!>Z$G$9!#(B

66. CutePHP CuteNews Flood Protection Client-IP PHP Code Injection Vulnerability
BugTraq ID: 14869
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14869
$BMWLs(B:
CutePHP CuteNews $B$K$O!"%j%b!<%H$N967b<T$K$h$j(B PHP $B$,A^F~$5$l!"(BPHP $B%3!<%I(B
$B$,<B9T$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"F~NOCM$NBEEv@-3NG'$NITHw$KM3M
h$7(B
$B$^$9!#$3$l$K$h$j!"%"%W%j%1!<%7%g%s$N(B flood protection $B5!G=$G;HMQ$5$l$k0l(B
$B;~%U%!%$%k$K%j%b!<%H%f!<%6$,(B PHP $B%3!<%I$rA^F~$9$k$3$H$,5v$5$l$F$7$^$$$^(B
$B$9!#(B

$B$3$NLdBj$NMxMQ$K$h$j!"$3$N%"%W%j%1!<%7%g%s$N%[%9%H$H$J$k%5!<%P$N%;%-%
e%j(B
$B%F%#%3%s%F%-%9%HFb$G!"%j%b!<%H$+$i(B PHP $B%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$^(B
$B$9!#(B

CuteNews 1.4.0 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

III. SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. Key clicks betray passwords, typed text
$BCx<T(B: Robert Lemos
$B%3%s%T%e!<%?%f!<%6$N%?%$%T%s%0$r(B 10 $BJ,4VO?2;$9$k$@$1$G!"%-!<%\!<%I$GF~NO(B
$B$5$l$?C18l$N(B 90% $B0J>e$r?dB,2DG=$G$"$k$3$H$,!"Bg3X$N8&5f%A!<%`$K$h$j3NG'(B
$B$5$l$^$7$?!#(B

http://www.securityfocus.com/news/11318

2. Microsoft's delay to patch fuels concerns
$BCx<T(B: Robert Lemos
Microsoft $B$O!"%;%-%e%j%F%#$K4XO"$9$k=$@5%W%m%0%i%`$N%j%j!<%9$r!"IJ<A$NLd(B
$BBj$,H/3P$7$?8e$G%-%c%s%;%k$7$^$7$?!#$3$l$K$h$j!"Dj4|E*$K%j%j!<%9$5$l$
k%Q%C(B
$B%A$N2ACM$K$D$$$F%;%-%e%j%F%#$N%3%_%e%K%F%#$GO@Ah$,5/$3$C$F$$$^$9!#(B

http://www.securityfocus.com/news/11313

3. Big debate over small packets
$BCx<T(B: Robert Lemos
ICMP $B$N7g4Y$,?<9o$J6<0R$H$J$j$&$k$N$+$H$$$&5DO@$,$R$H2F9T$o$l!"%"%k%<%s(B

$B%A%s$N$"$k8&5f<T$O%$%s%?!<%M%C%H$N5;=Q5,3J5!4X$KBP$7$FLdBj$r=$@5$9$k$
Y$-(B
$B$@$H$9$kH`$NDs0F$r<h$jF~$l$k$h$&$KF/$-$+$1$F$$$^$9!#(B

http://www.securityfocus.com/news/11306

4. Katrina's destruction attracts online fraudsters
$BCx<T(B: Robert Lemos
$BIT?3$J%A%c%j%F%#%5%$%H$+$i%O%j%1!<%s4XO"$NOCBj$rMxMQ$7$?0-0U$N$"$k%3!
<%I(B
$B$^$G!"%K%e!<%*%j%s%:$d%a%-%7%3OQ$r=1$C$?<+A3:R32$H%$%s%?!<%M%C%H>e$N0
-;v(B
$B$rAH$_9g$o$;$FMxMQ$9$k?M4V$,A}$($F$$$^$9!#(B

http://www.securityfocus.com/news/11302

5. Phishers trawl for victims in Europe
$BCx<T(B: John Leyden
$B2$=#7O6d9T$rI8E*$H$9$k%U%#%C%7%s%0:>5=$,5^A}$7$F$$$k$3$H$,Js9p$5$l$F$
$$^(B
$B$9!#%;%-%e%j%F%#4k6H$N(B Websense $B$O!"(B9 $B7n(B 17 $BF|$H(B18 $BF|$K(B 20 $B?t<R$N2$=#7O(B
$B6d9T$KBP$9$k%U%#%C%7%s%0967b$r8!=P$7$^$7$?!#(B

http://www.securityfocus.com/news/11323

6. Firefox and Mac security sanctuaries 'under attack'
$BCx<T(B: John Leyden
$B0lHL$K%;%-%e%j%F%#>e$NMxE@$,$"$k$HG'<1$5$l$F$$$k(B Firefox $B$H(B Apple $B$N(B Mac
$B@=IJ$K$D$$$F!"(BSymantec $B$O(B Microsoft $B@=%=%U%H%&%'%"$HHf3S$7$?>e$G$NITMx$J(B
$BE@$r5s$2!"(BMac $B%f!<%6$N3Z1`$O8+$;$+$1$G$"$k$HHcH=$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11321

7. Worm spoofs Google on infected PCs
$BCx<T(B: John Leyden
$B%$%s%?!<%M%C%H8!:w%(%s%8%s(B Google $B$N?6$kIq$$$r56Au$7!"%O%C%+!<$NI,MW@-$K(B
$B9g$o$;$F7k2L$rI=<($5$;$k$3$H$,$G$-$k%o!<%`$,3+H/$5$l$^$7$?!#(B

http://www.securityfocus.com/news/11322

8. Arrest made in Berkeley laptop theft case
$BCx<T(B: John Leyden
$B%+%j%U%)%k%K%"Bg3X%P!<%/%l!<9;$N(B 98,000 $B?M$rD6$($k@8EL$*$h$S=P4j<T$N8D?M(B
$B%G!<%?$,3JG<$5$l$?%i%C%W%H%C%W(B PC $B$,EpFq$KAx$$$^$7$?$,!"$3$N(B PC $B$NH/8+8e(B
$B$KCK$,BaJa$5$l$^$7$?!#(B

http://www.securityfocus.com/news/11319

--
$BK]Lu(B: LAC $BK]Lu%A!<%`(B
$B4F=$(B: $B>.3^8691M:(B (OGASAWARA Tsuneo)
LAC Co., Ltd.
http://www.lac.co.jp/index.html
0?l *?H?÷
?]0?Y10 +0 *?H?÷
?
û0?0?k9ÊT?þP"2þ2ÙÛû?0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
180518235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
*?H?÷
0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ÝªY?Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu0
*?H?÷
?÷Îv\«??Ü?o49]?>kr,áÇ¢{@)¹x?ºLÅ£j^?n{ãòAf¾û®¢Î?ó¢4?´²¶$òåÕàÈåbm?{Ë¾»?|WÊð7©¯?î¾(?Ù&v ÍÄNð®Õ¾¯WjÐ BBBô
Ì¥x??&8?G0?0?kLÇêª?>qÓ?ø=:???0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
280801235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
*?H?÷
0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ÝªY?Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu0
*?H?÷
©OÃ
Çg¾,ËÙ¨Í-uç~?;rë~ë\- ?Ökm`|å®Å#\JÐ¯±]óÇ¶
Ûà?
Ý¼Çv?µÝOÃ?u¸ÀæÉ[k¥¸?Ü¬¤ÝríN¡÷O¼ÓêÈdt{Â?A?esXñ?<j±?ÉÄ?¼ÏEmEân"?þ¼1\
èòÙ0?¶0? %îs<û ?U??{?í¿0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
020404000000Z
070403235959Z0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0?0
*?H?÷
0?¼+þîO×ùútüoÃøÊ?(v'È4 Ëªr-Éö?~?hòKïÉÿo½?îÓ??ÿ¨þîhU°¼ð°óåNhfisµ:V÷^uæo;êâd'\`?ÝÛ+·¼¶ª¡$)¯t¦?¯GöÕK~,e3îÛ¥<
KCp?ÙÙÂ??Äø(£¤0¡0Uÿ0ÿ0FU ?0=0;`?H?øE0,0*+https://www.verisign.co.jp/rpa0U
ÿ0 `?H?øB0 U0¤010UC1C2-1-40
*?H?÷
\?Ïh??¿ÏÓ_n²N>?Qs?e¢w ~ü v1?ÿîv4YVÊæGèãTÓÈ?Î?«bMo]?¸¢±?_K??Çó[m³#ÕcÑU*¿þ·ÄUò´o:?¿ê§q^/=¯?
?òt)ÿÌõ
?¬ÕÕ?ô÷7ªÔ?pd{0?10?? d2?7Åw?É??¹?b?ñ0
*?H?÷
0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0
050331000000Z
060331235959Z0ü10U
VeriSign Japan K.K.10UISP Service CA1503U,Terms of use at www.verisign.co.jp/rpa (c)011806U/Service Name - 5BF88D474BD2A6D3E7E073163F0C4D1210UHitachijoho10UTsuneo Ogasawara1!0 *?H?÷
t.ogaswr (at) lac.co (dot) jp0 [email concealed]?0
*?H?÷
0?¿*E´\2ÅÍóDíÐÏÇ~?+Ü=Ù&-u4)~è§ÊÇ2ÉnAàÙWÍØoÓÐûÊfÚq³.?³¥Hë¼ÀÚ×?!0¯6iÚ??±?rÙDÏdA[?Ùî?´q\~ãè?ú¨
Ä»ù?oÊi1¶+_ãr?#??>¥þ?IÁeA£ä0á0 U00EU >0<0:
`?H?øE0,0*+https://www.verisign.co.jp/rpa0U 0
`?H?øB?0ZUS0Q0O M K?Ihttp://onsitecrl.verisign.co.jp/VeriSi
gnJapanKKISPServiceCA/LatestCRL.crl0
`?H?øE ÿ0
*?H?÷
TMÎ¤©ýäøpßËµ"òÎ©,ÍË¶Q??`puÏ?¥?F?ÿ¬ãÅz?¸íñ²Oð)ô2ð$³q?âüý |øu
ßx©?Ì0³Jçjñ^9?^ p('?öC¦^ã=?øîÍ?&´ª.àTaxz4ÓÄÇ«<v?òY³QúÄ1?90?50Þ0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CAd2?7Åw?É??¹?b?ñ0 + ±0 *?H?÷
1 *?H?÷
0 *?H?÷
1
060113091600Z0# *?H?÷
1@:Z?}Kö-A9ênH!ê1ïYº0R *?H?÷
1E0C0
*?H?÷
0*?H?÷
?0+0
*?H?÷
@0
*?H?÷
(0
*?H?÷
?"`¼´èíÙ"2öÁ8|¦´ÞÉ÷t£N?Ê+ÙH?3ð¶^?ÌXVæZÛ×-b-Þ-½?wBHAÂ8u¹`e?
µð?æÕ&åt]«A#ÿ°¦ü%V3~?¢Òä`y?êGkC×á=Àdj´®7?hù óçT%??~ tü[?

[ reply ]