SecurityFocus

SecurityFocus Newsletter #317 2005-09-19->2005-09-23 Jan 20 2006 09:30AM
Tsuneo Ogasawara (t ogaswr lac co jp)

$B>.3^86(B@$B%i%C%/$G$9!#(B

SecurityFocus Newsletter $BBh(B 317 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

------------------------------------------------------------------------
---
BugTraq-JP $B$K4X$9$k(B FAQ ($BF|K\8l(B):
http://www.securityfocus.com/archive/79/description
$B!&(BSecurityFocus Newsletter $B$NOBLu$O(B BugTraq-JP $B$G0l<!G[I[$5$l$F$$$^$9(B
$B!&(BBugTraq-JP $B$X$N;22CJ}K!!"C&B`J}K!$O$3$N(B FAQ $B$r$4;2>H$/$@$5$$(B
------------------------------------------------------------------------
---
SecurityFocus Newsletter $B%"!<%+%$%V(B ($B1Q8l(B):
http://www.securityfocus.com/archive/78
BugTraq $B$K4X$9$k(B FAQ ($B1Q8l(B):
http://www.securityfocus.com/archive/1/description
------------------------------------------------------------------------
---
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B SecurityFocus $B$N5v2D$r3t<02q<R%i%C%/$,F@$?>e$G9T$o$l$F$$$^$9!#(B
$B!&(BSecurityFocus Newsletter $B$NOBLu$r(B Netnews, Mailinglist, World Wide Web,
$B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$NA4J80zMQ$r$*4j$$$7$^$9!#
(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;$s$,!"(B
$B=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurityFocus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k7A<0$N(B
$B%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://online.securityfocus.com/archive/79
------------------------------------------------------------------------
---
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02q<R%i%C%/$O@UG$$rIi$o$J$$$b$N$H$7$^
(B
$B$9!#(B
------------------------------------------------------------------------
---
$BLu<T$+$i$N$*CN$i$;(B:
$B!&$b$7!"(Btypo $B$d8mLu$,8+$D$+$C$?>l9g!"(BBugTraq-JP $B$X(B Errata $B$H$7$F=$@5(B
$BHG$r$4Ej9FD:$/$+!"4F=$<T(B (t.ogaswr (at) lac.co (dot) jp [email concealed]) $B$K$*CN$i$;$/$@$5$$!#(B
$B8e<T$N>l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
------------------------------------------------------------------------
---
This translation is encoded and posted in ISO-2022-JP.

$B86HG(B:
Date: Tue, 27 Sep 2005 16:16:35 -0600
Message-ID: <4339C4C3.707 (at) securityfocus (dot) com [email concealed]>

SecurityFocus Newsletter #317
-----------------------------

This Issue is Sponsored By: Norwich U

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
1. Anonymity made easy
2. Skype security and privacy concerns
3. Windows rootkits come of age
II. BUGTRAQ SUMMARY
1. Veritas Storage Exec Multiple Remote DCOM Buffer Overflow Vulnerabilities
2. Py2Play Object Unpickling Remote Python Code Execution Vulnerability
3. Tofu Object Unpickling Remote Python Code Execution Vulnerability
4. Apple Safari Data URI Memory Corruption Vulnerability
5. CutePHP CuteNews Flood Protection Client-IP PHP Code Injection Vulnerability
6. Multi-Computer Control System Remote Denial of Service Vulnerability
7. EPay Pro Index.PHP Directory Traversal Vulnerability
8. VBulletin Multiple Moderator And Administrator SQL Injection Vulnerabilities
9. NooToplist Index.PHP Multiple SQL Injection Vulnerabilities
10. VBulletin Multiple Cross-Site Scripting Vulnerabilities
11. Sybari Antigen for Exchange/SMTP Attachment Rule Bypass Vulnerability
12. MX Shop Index.PHP Multiple SQL Injection Vulnerabilities
13. Cisco IOS Multiple Unspecified EIGRP Vulnerabilities
14. Sun Solaris 10 Tl Driver Local Denial Of Service Vulnerability
15. Hesk Session ID Authentication Bypass Vulnerability
16. Opera Web Browser Mail Client Multiple Vulnerabilities
17. Bacula Insecure Temporary File Creation Vulnerabilities
18. Digger Solutions Intranet Open Source Project-Edit.ASP SQL Injection Vulnerability
19. PHP Advanced Transfer Manager Multiple Directory Traversal Vulnerabilities
20. Opera Web Browser Unspecified Drag And Drop File Upload Vulnerability
21. IBM Rational ClearQuest Unspecified Multiple Cross-Site Scripting Vulnerabilities
22. HP Tru64 FTP Server Remote Denial Of Service Vulnerability
23. PHP Advanced Transfer Manager Multiple Cross-Site Scripting Vulnerabilities
24. Mozilla Browser/Firefox Arbitrary Command Execution Vulnerability
25. Webmin / Usermin Remote PAM Authentication Bypass Vulnerability
26. MasqMail Local Privilege Escalation Vulnerabilities
27. Copernicus Jupiter Multiple Unspecified SQL Injection Vulnerabilities
28. Zengaia Unspecified SQL Injection Vulnerability
29. Alkalay.Net Multiple Scripts Arbitrary Remote Command Execution Vulnerabilities
30. PerlDiver Perldiver.CGI Cross-Site Scripting Vulnerability
31. Copernicus Europa Multiple Unspecified SQL Injection Vulnerabilities
32. Land Down Under Multiple Remote SQL Injection Vulnerabilities
33. Simplog Multiple SQL Injection Vulnerabilities
34. Mall23 AddItem.ASP SQL Injection Vulnerability
35. Microsoft Internet Explorer for Mac OS Denial of Service Vulnerability
36. PunBB Forgotten Email Cross-Site Scripting Vulnerability
37. Lotus Domino Unspecified Cross-Site Scripting Vulnerability
38. Linux Kernel 64-Bit SMP Routing_ioctl() Local Denial of Service Vulnerability
39. GeSHI Example.PHP Directory Traversal Vulnerability
40. PunBB Language Selection File Include Vulnerability
41. Eric3 Unspecified Security Vulnerability
42. Kerio ServerFirewall Unspecified Denial of Service Vulnerability
43. HylaFAX Insecure Temporary File Creation Vulnerability
44. My Little Forum Search.PHP SQL Injection Vulnerability
45. Yukihiro Matsumoto Ruby SAFE Level Restriction Bypass Vulnerability
46. Movable Type Remote File Include Vulnerability
47. Movable Type Username Information Disclosure Vulnerability
48. Movable Type Multiple Unspecified HTML Injection Vulnerabilities
49. Apple Mac OS X Security Update 2005-008 Multiple Vulnerabilities
50. Sun Solaris UFS Local Denial of Service Vulnerability
51. Mozilla Browser/Firefox XBM Image Processing Heap Overflow Vulnerability
52. Mozilla Browser/Firefox JavaScript Engine Integer Overflow Vulnerability
53. Mozilla Browser/Firefox Zero-Width Non-Joiner Stack Corruption Vulnerability
54. Mozilla Browser/Firefox Chrome Window Spoofing Vulnerability
55. Mozilla Browser/Firefox Chrome Page Loading Restriction Bypass Privilege Escalation Weakness
56. Mozilla Browser/Firefox DOM Objects Spoofing Vulnerability
57. PowerArchiver Long Filename Buffer Overflow Vulnerability
58. Mozilla Browser/Firefox Arbitrary HTTP Request Injection Vulnerability
59. Multiple Browser Proxy Auto-Config Script Handling Remote Denial of Service Vulnerability
60. 7-Zip ARJ File Buffer Overflow Vulnerability
61. PHPMyFAQ Password.PHP SQL Injection Vulnerabililty
62. PHPMyFAQ Multiple Cross-Site Scripting Vulnerabilities
63. PHPMyFAQ Local File Include Vulnerability
64. PHPMyFAQ Logs Unauthorized Access Vulnerability
65. Interchange Multiple Vulnerabilities
66. AlstraSoft E-Friends Remote File Include Vulnerability
67. UNU Networks MailGust User_email.PHP SQL Injection Vulnerability
III. SECURITYFOCUS NEWS
1. Digital plague hits online game World of Warcraft
2. Mozilla's popularity stressing its security image
3. Key clicks betray passwords, typed text
4. Microsoft's delay to patch fuels concerns
5. Password overload plagues US.biz
6. Tiscali in UK consumer data security breach
7. PC-hopping mobile malware sighted
8. Airport PCs stuffed with meaty goodness

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
----------------------------

II.BUGTRAQ SUMMARY
--------------------
1. Veritas Storage Exec Multiple Remote DCOM Buffer Overflow Vulnerabilities
BugTraq ID: 14801
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14801
$BMWLs(B:
Veritas Storage Exec $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<(B
$B$,H/@8$9$kJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$
,;X(B
$BDj$7$?%G!<%?$r8GDjD9$N%a%b%j%P%C%U%!$K%3%T!<$9$kA0$K!"6-3&%A%'%C%/$,E
,@Z(B
$B$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$l$i$NLdBj$O!"LdBj$N$"$k@=IJ$NJ#?t$N(B DCOM $B%5!<%P$KB8:_$7$^$9!#%9%?%C%/(B
$B%Y!<%9$*$h$S%R!<%W%Y!<%9$N%*!<%P!<%U%m!<$NN>J}$,B8:_$9$k$3$H$,L@$i$+$
K$J$C(B
$B$F$$$^$9!#4XO"$9$k(B ActiveX $B%3%s%H%m!<%k$r8F$S=P$9$3$H$G!"967b<T$O$3$l$i(B
$B$N%P%C%U%!%*!<%P!<%U%m!<$NLdBj$rMxMQ$7G$0U$N%^%7%s%3!<%I$r<B9T$9$k2DG
=@-(B
$B$,$"$j$^$9!#(B

$B0-0U$N$"$k(B Web $B%5%$%H$rK,Ld$9$k!"$"$k$$$O0-0U$N$"$k%9%/%j%W%H%3!<%I$,4^(B
$B$^$l$k(B HTML $B7A<0$NEE;R%a!<%k$rI=<($9$k$3$H$K$h$j!"$3$l$i$NLdBj$,MxMQ$5$l(B
$B$k2DG=@-$,$"$j$^$9!#(B

2. Py2Play Object Unpickling Remote Python Code Execution Vulnerability
BugTraq ID: 14864
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14864
$BMWLs(B:
Py2Play $B$K$O!"%j%b!<%H$N967b<T$,%W%m%0%i%`$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G(B
$BG$0U$N(B Python $B%3!<%I$r<B9T$9$k$3$H$r5v$7$F$7$^$&LdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#(B

$B$3$NLdBj$O!"%j%b!<%H$N%T%"$+$iMxMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

3. Tofu Object Unpickling Remote Python Code Execution Vulnerability
BugTraq ID: 14865
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14865
$BMWLs(B:
Tofu $B$K$O!"%j%b!<%H$N967b<T$,%W%m%0%i%`$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$(B

$B0U$N(B Python $B%3!<%I$r<B9T$9$k$3$H$r5v$7$F$7$^$&LdBj$,B8:_$9$k5?$$$,$"$j$^(B
$B$9!#(B

$B$3$NLdBj$O!"%j%b!<%H$N%T%"$+$iMxMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

4. Apple Safari Data URI Memory Corruption Vulnerability
BugTraq ID: 14868
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14868
$BMWLs(B:
Apple Safari $B$K$O!"%a%b%j$,GK2u$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O$3$N%V%i(B
$B%&%6$K$h$C$FFCDj$N(B 'data:' URI $B$,3+$+$l$k$H$-$KH/@8$7!"(B $B%V%i%&%6$N%/%i%C(B
$B%7%e$r>7$-$^$9!#(B

$BL$8!>Z$G$9$,!"$3$NLdBj$OG$0U$N%3!<%I$r<B9T$9$k$?$a$KMxMQ$5$l$k2DG=@-$
,$"(B
$B$j$^$9!#(B

5. CutePHP CuteNews Flood Protection Client-IP PHP Code Injection Vulnerability
BugTraq ID: 14869
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-17
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14869
$BMWLs(B:
CutePHP CuteNews $B$K$O!"%j%b!<%H$N967b<T$,(B PHP $B$rA^F~$7(B PHP $B%3!<%I$r<B9T(B
$B$9$k$3$H$r5v$7$F$7$^$&5?$$$,$"$j$^$9!#$3$NLdBj$O!"F~NOCM$NBEEv@-3NG'$
NIT(B
$BHw$KM3Mh$7$^$9!#$3$l$K$h$j!"%"%W%j%1!<%7%g%s$N(B flood protection $B5!G=$G;H(B
$BMQ$5$l$k0l;~%U%!%$%k$K%j%b!<%H%f!<%6$,(B PHP $B%3!<%I$rA^F~$9$k$3$H$,5v$5$l(B
$B$F$7$^$$$^$9!#(B

$B$3$NLdBj$NMxMQ$K$h$j!"$3$N%"%W%j%1!<%7%g%s$N%[%9%H$H$J$k%5!<%P$N%;%-%
e%j(B
$B%F%#%3%s%F%-%9%HFb$G!"%j%b!<%H$+$i(B PHP $B%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$^(B
$B$9!#(B

CuteNews 1.4.0 $B$K$*$$$F!"$3$NLdBj$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s(B
$B$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

6. Multi-Computer Control System Remote Denial of Service Vulnerability
BugTraq ID: 14870
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14870
$BMWLs(B:
Multi-Computer Control System $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9ITG=(B
$B>uBV$K4Y$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$NMxMQ$K@.8y$9$k$3$H!"%j%b!<%H$N967b<T$,@55,%f!<%6$KBP$9$k%5!
<%S(B
$B%95qH]$r>7$$$?$j!"%/%i%$%"%s%H$r%/%i%C%7%e$5$;$?$j$9$k$3$H$r5v$7$F$7$
^$$(B
$B$^$9!#(B

MCSS 1.1 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r(B
$B<u$1$k2DG=@-$,$"$j$^$9!#(B

7. EPay Pro Index.PHP Directory Traversal Vulnerability
BugTraq ID: 14871
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14871
$BMWLs(B:
EPay Pro $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$k5?$$$,$"$j$^$9!#$3$N(B
$BLdBj$O%f!<%6$,;XDj$7$?F~NOCM$NBEEv@-8!>Z$,E,@Z$K<B9T$5$l$J$$$3$H$KM3M
h$7(B
$B$^$9!#(B

$BG'>Z$5$l$F$$$J$$%f!<%6$O!"%G%#%l%/%H%j;2>H$K4X$9$kJ8;zNs(B '../' $B$rLdBj$N(B
$B$"$k%Q%i%a!<%?$K;XDj$9$k$3$H$G!"G$0U$N%U%!%$%k$rFI$_=P$9$3$H$,2DG=$G$
9!#(B
$B$3$NLdBj$,MxMQ$5$l$k$H!"5!L)@-$,<:$o$l$k2DG=@-$,$"$j$^$9!#<hF@$5$l$?>
pJs(B
$B$K$h$j!"%P%C%/%(%s%I%7%9%F%`$KBP$7$F99$J$k967b$,2C$($i$l$k2DG=@-$,$"$
j$^(B
$B$9!#B>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

8. VBulletin Multiple Moderator And Administrator SQL Injection Vulnerabilities
BugTraq ID: 14872
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14872
$BMWLs(B:
vBulletin $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NO(B
$BCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

9. NooToplist Index.PHP Multiple SQL Injection Vulnerabilities
BugTraq ID: 14873
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14873
$BMWLs(B:
NooToplist $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$
l$J(B
$B$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

10. VBulletin Multiple Cross-Site Scripting Vulnerabilities
BugTraq ID: 14874
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14874
$BMWLs(B:
vBulletin $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0$K4XO"$9$kJ#?t$NLdBj$,B8:_$9(B
$B$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=
hM}(B
$B$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"I8E
*$H(B
$B$J$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N(B
$B967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

11. Sybari Antigen for Exchange/SMTP Attachment Rule Bypass Vulnerability
BugTraq ID: 14875
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14875
$BMWLs(B:
Sybari Antigen for Exchange/SMTP $B@=IJ$O!"E:IU%U%!%$%k$N%k!<%k$,2sHr$5$l(B
$B$kLdBj$N1F6A$r<u$1$^$9!#(B

$B967b$,@.8y$9$k$H!"G$0U$NE:IU%U%!%$%k$*$h$SK>$^$l$J$$%3%s%F%s%D$,%f!<%
6$K(B
$BG[?.$5$l$k2DG=@-$,$"$j$^$9!#$3$NLdBj$K$h$jE:IU%U%!%$%k$KBP$9$k%&%$%k%
9%9(B
$B%-%c%s5!G=$,L58z$K$J$C$?$j2sHr$5$l$?$j$O$7$J$$E@$KN10U$9$Y$-$G$9!#(B

Sybari Antigen v8.0 SR2 for Exchange $B$*$h$S(B Sybari Antigen v8.0 SR2 for
SMTP Gateways $B$,LdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g(B
$B%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

12. MX Shop Index.PHP Multiple SQL Injection Vulnerabilities
BugTraq ID: 14876
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14876
$BMWLs(B:
MX Shop $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3(B
$B$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"%5%K%?(B
$B%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

13. Cisco IOS Multiple Unspecified EIGRP Vulnerabilities
BugTraq ID: 14877
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-19
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14877
$BMWLs(B:
Cisco IOS $B$K$O!"L$FCDj$NJ#?t$N(B EIGRP $BLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B99$J$k>\:Y$O!"8=;~E@$G$O8xI=$5$l$F$$$^$;$s!#>\:Y$,8x3+$5$l<!Bh!"$3$N
(B BID
$B$O99?7$5$l$kM=Dj$G$9!#(B

$B%W%m%H%3%k$N@-<A>e!"967b<T$OLdBj$N$"$k%W%m%H%3%k$r;HMQ$7$F$$$k%M%C%H%
o!<(B
$B%/>e$N%[%9%H$K%"%/%;%9$9$kI,MW$,$"$k$3$H$,?dB,$5$l$^$9!#(B

14. Sun Solaris 10 Tl Driver Local Denial Of Service Vulnerability
BugTraq ID: 14878
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14878
$BMWLs(B:
Sun Solaris 10 tl $B%I%i%$%P$K$O!"%m!<%+%k$G%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"(B
$B$j$^$9!#(B

$B%m!<%+%k$N967b<T$O$3$NLdBj$rMxMQ$7$F%+!<%M%k%Q%K%C%/$r0z$-5/$3$7!"@55
,%f!<(B
$B%6$X$N%5!<%S%95qH]$r>7$/2DG=@-$,$"$j$^$9!#(B

Sun Solaris 10 $B$N$_$,$3$NLdBj$N1F6A$r<u$1$kE@$KN10U$9$Y$-$G$9!#$3$l$h$j(B
$BA0$N(B Solaris $B$N%P!<%8%g%s$O$3$NLdBj$N1F6A$r<u$1$^$;$s!#(B

15. Hesk Session ID Authentication Bypass Vulnerability
BugTraq ID: 14879
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14879
$BMWLs(B:
Hesk $B$K$O!"G'>Z$,2sHr$5$l$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$BLdBj$NMxMQ$K@.8y$9$k$H!"%"%W%j%1!<%7%g%s$N4IM}<T%"%/%;%9$r967b<T$KM?$
($F(B
$B$7$^$$$^$9!#$3$NLdBj$K$h$j!"=EMW$J%G!<%?$X$N%"%/%;%9!"%X%k%W%G%9%/%G!
<%?(B
$B$d%W%m%0%i%`%3!<%I$N2~$6$s!"$*$h$S$=$NB>$N967b$,9T$o$l$k>l9g$,$"$j$^$
9!#(B

16. Opera Web Browser Mail Client Multiple Vulnerabilities
BugTraq ID: 14880
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14880
$BMWLs(B:
Opera Web Browser Mail Client $B$O!"J#?t$NLdBj$N1F6A$r<u$1$^$9!#%j%b!<%H$N(B
$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"E:IU%U%!%$%k$NL>A0$r56Au$7$?$j!"%9%/%
j%W(B
$B%H$NA^F~$r<B9T$7$?$j$9$k2DG=@-$,$"$j$^$9!#(B

$B$3$l$i$NLdBj$OB>$N967b$N<B9T$N$?$a$KAH$_9g$o$5$l$FMxMQ$5$l$k2DG=@-$,$
"$j(B
$B$^$9!#(B

Opera Web Browser 8.02 $B$K$3$NLdBj$,B8:_$9$k$3$H$,Js9p$5$l$F$$$^$9$,!"B>(B
$B$N%P!<%8%g%s$bF1MM$K1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

17. Bacula Insecure Temporary File Creation Vulnerabilities
BugTraq ID: 14881
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14881
$BMWLs(B:
Bacula $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#(B

$B%m!<%+%k$K%"%/%;%9$,2DG=$J967b<T$O$3$NLdBj$r;HMQ$9$k$3$H$K$h$j!"%U%!%
$%k(B
$B$rI=<($7$?$j!"K\Mh%"%/%;%9$9$k$K$O8"8B$,I,MW$J>pJs$rF~<j$9$k2DG=@-$,$
"$j(B
$B$^$9!#967b<T$O%7%s%\%j%C%/%j%s%/967b$r<B9T$7!"LdBj$N$"$k%"%W%j%1!<%7%
g%s(B
$B$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%U%!%$%k$r>e=q$-$9$k2DG=@-$b$"$j$
^$9!#(B

$B$3$NLdBj$,MxMQ$5$l$k$H!"5!L)@-$,<:$o$l!"K\Mh%"%/%;%9$9$k$K$O8"8B$,I,M
W$J(B
$B>pJs$,967b<T$KF~<j$5$l$F$7$^$&7k2L$K$H$J$k$3$H$,?dB,$5$l$^$9!#%7%s%\%
j%C(B
$B%/%j%s%/967b$,@.8y$9$k$H!"=EMW$J@_Dj%U%!%$%k$,>e=q$-$5$l$k2DG=@-$,$"$
j$^(B
$B$9!#$3$l$K$h$j!"%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,$"$j$^$9!#$^$?!"$=$NB>$
N96(B
$B7b$,9T$o$l$k2DG=@-$b$"$j$^$9!#(B

18. Digger Solutions Intranet Open Source Project-Edit.ASP SQL Injection Vulnerability
BugTraq ID: 14882
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14882
$BMWLs(B:
Intranet Open Source $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~(B
$BNOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

19. PHP Advanced Transfer Manager Multiple Directory Traversal Vulnerabilities
BugTraq ID: 14883
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14883
$BMWLs(B:
PHP Advanced Transfer Manager $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$k(B
$BJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F
~NO(B
$BCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$l$i$NLdBj$,MxMQ$5$l$k$H!"5!L)@-$,<:$o$l$k2DG=@-$,$"$j$^$9!#<hF@$5$
l$?(B
$B>pJs$K$h$j!"%P%C%/%(%s%I%7%9%F%`$KBP$7$F99$J$k967b$,2C$($i$l$k2DG=@-$
,$"(B
$B$j$^$9!#B>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

20. Opera Web Browser Unspecified Drag And Drop File Upload Vulnerability
BugTraq ID: 14884
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14884
$BMWLs(B:
Opera Web Browser $B$O!"%I%i%C%0%"%s%I%I%m%C%W$K$h$j%U%!%$%k$,%"%C%W%m!<%I(B
$B$5$l$kL$FCDj$NLdBj$N1F6A$r<u$1$^$9!#(B

$B$3$NLdBj$N860x$OFCDj$5$l$F$$$^$;$s$,!"$3$NLdBj$O%j%b!<%H$N967b<T$,%3%
s%T%e!<(B
$B%?$KG$0U$N%U%!%$%k$r%"%C%W%m!<%I$9$k$3$H$r5v$7$F$7$^$&2DG=@-$,$"$j$^$
9!#(B
$B$3$NLdBj$O!"%V%i%&%6$r<B9T$7$F$$$k%f!<%6$N%;%-%e%j%F%#%3%s%F%-%9%HFb$
GG$(B
$B0U$N%3!<%I<B9T$,5v$5$l$F$7$^$&$J$I$N3F<o$NLdBj$r0z$-5/$3$92DG=@-$,$"$
j$^(B
$B$9!#(B

$B>\:Y$,ITL@$J$?$a!"99$J$k>pJs$O8=;~E@$G$ODs6!$G$-$^$;$s!#>\:Y$,99?7$5$
l<!(B
$BBh!"$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

21. IBM Rational ClearQuest Unspecified Multiple Cross-Site Scripting Vulnerabilities
BugTraq ID: 14885
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14885
$BMWLs(B:
IBM Rational ClearQuest $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kL$(B
$BFCDj$NJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O%f!<%6$,;XDj$7$?F
~NO(B
$BCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdB
j$N(B
$B$"$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N(B
$B967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

22. HP Tru64 FTP Server Remote Denial Of Service Vulnerability
BugTraq ID: 14886
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14886
$BMWLs(B:
HP Tru64 FTP $B%5!<%P$N<BAu$K$*$$$F!"%j%b!<%H$+$i$N967b$K$h$j%5!<%S%9ITG=(B
$B>uBV$K4Y$kLdBj$,B8:_$9$k$3$H$,Js9p$5$l$F$$$^$9!#%j%b!<%H$NG'>Z:Q$_$N
(B FTP
$B%f!<%6$O(BFTP $B%5!<%P$N%W%m%;%9$r1~Ez$G$-$J$$>uBV$K$9$k2DG=@-$,$"$j$^$9!#$3(B
$B$NLdBj$O!"(BFTP $B$X$NF?L>%"%/%;%9$,M-8z$H$J$C$F$$$k>l9g$K(B FTP $B$X$NF?L>%f!<(B
$B%6$+$i$bMxMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$N5;=QE*$J>\:Y$O8=;~E@$G$O8x3+$5$l$F$$$^$;$s!#?7$?$J>pJs$,8x3
+$5(B
$B$l<!Bh!"$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

23. PHP Advanced Transfer Manager Multiple Cross-Site Scripting Vulnerabilities
BugTraq ID: 14887
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14887
$BMWLs(B:
PHP Advanced Transfer Manager $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u(B
$B$1$kJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$
7$?(B
$BF~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"I8E
*$H(B
$B$J$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N(B
$B967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

24. Mozilla Browser/Firefox Arbitrary Command Execution Vulnerability
BugTraq ID: 14888
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14888
$BMWLs(B:
Mozilla Browser/Firefox $B$O!"G$0U$N%3%^%s%I$,<B9T$5$l$kLdBj$N1F6A$r<u$1$^(B
$B$9!#(B

$BLdBj$N$"$k%"%W%j%1!<%7%g%s$r<B9T$9$k%f!<%6$N%;%-%e%j%F%#%3%s%F%-%9%HF
b$G(B
$B$3$N967b$,9T$o$l!"%j%b!<%H$N%"%/%;%98"8B$,IT@5$K<hF@$5$l$k2DG=@-$,$"$
j$^(B
$B$9!#(B

UNIX $B%Y!<%9$N%W%i%C%H%U%)!<%`>e$G<B9T$7$F$$$k(B Mozilla Firefox 1.0.6 $B$,$3(B
$B$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s$*$h$S
(B
Firefox $B$rF3F~$7$F$$$k%"%W%j%1!<%7%g%s$bF1MM$K1F6A$r<u$1$k2DG=@-$,$"$j$^(B
$B$9!#(B

Mozilla Browser 1.7.x $B$*$h$S(B Thunderbird 1.x $B$K$*$$$F$b$3$NLdBj$N1F6A$r(B
$B<u$1$^$9!#(B

25. Webmin / Usermin Remote PAM Authentication Bypass Vulnerability
BugTraq ID: 14889
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-20
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14889
$BMWLs(B:
Webmin / Usermin $B$K$O!"%j%b!<%H$+$i(B PAM $BG'>Z$,2sHr$5$l$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"$3$l$i$N%"%W%j%1!<%7%g%s$KF1:-$5$l$F$$$k(B 'miniserv.pl' Web
$B%5!<%P$KB8:_$7$^$9!#(B

$BF~NO$KBP$9$kBEEv@-$N3NG'$,E,@Z$K9T$o$l$F$$$J$$$?$a!"%7%'%k$N%a%?%-%c%
i%/(B
$B%?$,G'>Z5!9=$N2sHr$K;HMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$l$i$N%"%W%j%1!<%7%g%s$N@-<A>e!"%"%/%;%98"8B$,<hF@$5$l$k$H%7%9%F%`A
4BN(B
$B$KBP$9$k6<0R$r>7$/2DG=@-$,$"$j$^$9!#(B

26. MasqMail Local Privilege Escalation Vulnerabilities
BugTraq ID: 14890
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14890
$BMWLs(B:
MasqMail $B$K$O!"%m!<%+%k$G8"8B>:3J$,0z$-5/$3$5$l$k(B 2 $B$D$NLdBj$,B8:_$9$k5?(B
$B$$$,$"$j$^$9!#(B

$B$3$N%"%W%j%1!<%7%g%s$O!"%f!<%6$,;XDj$7$?%G!<%?$N%5%K%?%$%:=hM}$,E,@Z$
K<B(B
$B9T$5$l$J$$$?$a$K%3%^%s%I$,<B9T$5$l$kLdBj$N1F6A$r<u$1$^$9!#(B

$B@_7W>e$NITHw$K$h$j!"$3$N%"%W%j%1!<%7%g%s$O%7%s%\%j%C%/%j%s%/967b$r<u$
1$k(B
$BLdBj$N1F6A$b<u$1$^$9!#(B

MasqMail 0.2.18 $B$K$*$$$F!"$3$l$i$NLdBj$N1F6A$r<u$1$k$3$H$,H=L@$7$F$$$^$9!#(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

27. Copernicus Jupiter Multiple Unspecified SQL Injection Vulnerabilities
BugTraq ID: 14891
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14891
$BMWLs(B:
Copernicus Jupiter $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JL$FCDj$NJ#?t$NLdBj$,B8:_$9(B
$B$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$K$h$kF~NOCM$r(B SQL $B%/%(%j$G;HMQ(B
$B$9$kA0$K!"F~NOCM$KBP$9$k%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$
7$^(B
$B$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#G
'>Z(B
$B2sHr$b2DG=$H$J$k$3$H$,%l%]!<%H$G<(:6$5$l$F$$$^$9!#(B

28. Zengaia Unspecified SQL Injection Vulnerability
BugTraq ID: 14892
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14892
$BMWLs(B:
Zengaia $B$O!"(BSQL $B9=J8$rCmF~2DG=$JL$FCDj$NLdBj$N1F6A$r<u$1$k$HJs9p$5$l$F$$(B
$B$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

Zengaia 0.2 $B$h$j$bA0$N%P!<%8%g%s$,1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9!#(B

29. Alkalay.Net Multiple Scripts Arbitrary Remote Command Execution Vulnerabilities
BugTraq ID: 14893
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14893
$BMWLs(B:
Multiple Alkalay.net $B$N%9%/%j%W%H$K$O!"%j%b!<%H$+$iG$0U$N%3%^%s%I$,<B9T(B
$B$5$l$kJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XD
j$7(B
$B$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O!"G$0U$N%3%^%s%I$K@\F,<-$H$7$F(B '|' $B$N%Q%$%WJ8;z$rIU$1$F!"(BWeb $B%5!<(B
$B%P%W%m%;%9$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G$3$l$i$N%3%^%s%I$r<B9T$9$k$3$
H$,(B
$B2DG=$G$9!#(B

30. PerlDiver Perldiver.CGI Cross-Site Scripting Vulnerability
BugTraq ID: 14894
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14894
$BMWLs(B:
PerlDiver $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$
$$3(B
$B$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

31. Copernicus Europa Multiple Unspecified SQL Injection Vulnerabilities
BugTraq ID: 14895
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14895
$BMWLs(B:
Copernicus Europa $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JL$FCDj$NJ#?t$NLdBj$,B8:_$9$k(B
$B5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$K$h$kF~NOCM$r(B SQL $B%/%(%j$G;HMQ$9(B
$B$kA0$K!"F~NOCM$KBP$9$k%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$
^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#G
'>Z(B
$B2sHr$b2DG=$H$J$k$3$H$,%l%]!<%H$G<(:6$5$l$F$$$^$9!#(B

32. Land Down Under Multiple Remote SQL Injection Vulnerabilities
BugTraq ID: 14896
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14896
$BMWLs(B:
Land Down Under $B$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$N1F6A$r<u$1$^$9!#$3$l(B
$B$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$K4^$a$kA0$K!"BEEv@-$N3N(B
$BG'$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"%G!<%?%Y!<%9$NG$0U$N%G!<%?$rI=<($7$?$
jGK(B
$B2u$7$?$j$9$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$
k!"(B
$B$"$k$$$O%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,$"$j$^$9!#(B

33. Simplog Multiple SQL Injection Vulnerabilities
BugTraq ID: 14897
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14897
$BMWLs(B:
Simplog $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3(B
$B$l$i$NLdBj$O!"%f!<%6$K$h$kF~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$KBP(B
$B$9$k%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

34. Mall23 AddItem.ASP SQL Injection Vulnerability
BugTraq ID: 14898
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-21
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14898
$BMWLs(B:
Mall23 $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj(B
$B$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"%5%K%?%$%:=hM}$,(B
$BE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

35. Microsoft Internet Explorer for Mac OS Denial of Service Vulnerability
BugTraq ID: 14899
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14899
$BMWLs(B:
Microsoft Internet Explorer for Mac OS $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$(B
$B$,$"$j$^$9!#(BInternet Explorer $B$,0U?^E*$K:n@.$5$l$?%3%s%F%s%D$r4^$`(B Web
$B%Z!<%8$r%l%s%@%j%s%0$9$k$H$-$K!"$3$NLdBj$,H/@8$7$^$9!#(B

$B$3$NLdBj$O!"(BInternet Explorer 5.2.3 for Mac OS $B$KB8:_$7$^$9!#(B

36. PunBB Forgotten Email Cross-Site Scripting Vulnerability
BugTraq ID: 14900
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14900
$BMWLs(B:
PunBB $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"$j$^$9!#$3$N(B

$BLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$
H$K(B
$BM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

37. Lotus Domino Unspecified Cross-Site Scripting Vulnerability
BugTraq ID: 14901
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14901
$BMWLs(B:
IBM Lotus Domino $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"(B
$B$j$^$9!#$3$NLdBj$O!"(BURI $B%Q%i%a!<%?$r2p$7$F6!5k$5$l$kF~NOCM%G!<%?$NBEEv@-(B
$B3NG'$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

HTML $B$d%9%/%j%W%H%3!<%I$r4^$`0-0U$"$k%j%s%/$r%/%j%C%/$9$k$h$&$KI8E*%f!<(B

$B%6$rM6F3$9$k$3$H$G!"967b<T$O$3$NLdBj$rMxMQ$9$k2DG=@-$,$"$j$^$9!#$3$N%
j%s(B
$B%/$,%/%j%C%/$5$l$k$H!"Kd$a9~$^$l$F$$$k0-0U$N$"$k(B HTML $B$d%9%/%j%W%H%3!<%I(B
$B$,I8E*%f!<%6$N%V%i%&%6$K$h$j2r<a$5$l$k2DG=@-$,$"$j$^$9!#$3$N0-0U$N$"$
k%3!<(B
$B%I$K$h$j!"LdBj$N$"$k%=%U%H%&%'%"$r%[%9%H$7$F$$$k%5%$%H$N%W%m%Q%F%#>pJ
s$K(B
$B%"%/%;%9$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$,MxMQ$5$l$k$H!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b$r5v(B
$B$7$F$7$^$&2DG=@-$,$"$j$^$9!#$=$NB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!
#(B

38. Linux Kernel 64-Bit SMP Routing_ioctl() Local Denial of Service Vulnerability
BugTraq ID: 14902
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14902
$BMWLs(B:
64 $B%S%C%H$N(B SMP ($BBP>N7?%^%k%A%W%m%;%C%5(B) $B%W%i%C%H%U%)!<%`$K$*$1$k(B Linux
$B$O!"%m!<%+%k$G$N967b$K$h$j%5!<%S%9ITG=>uBV$K4Y$kLdBj$N1F6A$r<u$1$^$9!
#(B

$BFC$K!"(B32 $B%S%C%H8_49$N(B 'routing_ioctl()' $B4X?t$K$*$$$F(B 'sockfd_put()' $B4X?t(B
$B$N8F$S=P$7$,>JN,$5$l$k$3$H$K$h$j$3$NLdBj$,H/@8$7$^$9!#(B

x86-64 $B%W%i%C%H%U%)!<%`$K$*$1$k(B 32 $B%S%C%H8_49$N(B 'tiocgdev ioctl()' $B4X?t(B
$B$bF1MM$K$3$NLdBj$N1F6A$r<u$1$^$9!#(B

39. GeSHI Example.PHP Directory Traversal Vulnerability
BugTraq ID: 14903
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14903
$BMWLs(B:
GeSHI $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$k5?$$$,$"$j$^$9!#$3$NLdBj(B

$B$O%f!<%6$,;XDj$7$?F~NOCM$NBEEv@-8!>Z$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$
^$9!#(B

$B$3$NLdBj$,MxMQ$5$l$k$H!"5!L)@-$,<:$o$l$k2DG=@-$,$"$j$^$9!#<hF@$5$l$?>
pJs(B
$B$K$h$j!"%P%C%/%(%s%I%7%9%F%`$KBP$7$F99$J$k967b$,2C$($i$l$k2DG=@-$,$"$
j$^(B
$B$9!#B>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

40. PunBB Language Selection File Include Vulnerability
BugTraq ID: 14904
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14904
$BMWLs(B:
PunBB $B$O!"%U%!%$%k$,%$%s%/%k!<%I$5$l$kLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj$O!"(B

$B%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$
7$^(B
$B$9!#(B

$B$3$NLdBj$N>\:Y$O8=;~E@$G$ODs6!$5$l$F$$$^$;$s!#$7$+$7!"967b<T$O$3$NLdB
j$r(B
$BMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$G(B Web $B%5!<%P%W%m%;%9$N8"8B$r;HMQ$7!"(B
$BG$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$,$"$k$H?dB,$5$l$^$
9!#(B
$B$3$NLdBj$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"$
=$N(B
$BB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

41. Eric3 Unspecified Security Vulnerability
BugTraq ID: 14905
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14905
$BMWLs(B:
eric3 $B$O!"L$FCDj$N%;%-%e%j%F%#LdBj$N1F6A$r<u$1$^$9!#(B

$B$3$NLdBj$K4X$9$k>\:Y$J>pJs$O$[$H$s$I8x3+$5$l$F$$$^$;$s!#?7$?$J>pJs$,8
x3+(B
$B$5$l<!Bh!"$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

42. Kerio ServerFirewall Unspecified Denial of Service Vulnerability
BugTraq ID: 14906
$B%j%b!<%H$+$i$N:F8=@-(B: $BITL@(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14906
$BMWLs(B:
Kerio ServerFirewall $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$kL$FCDj$NLdBj$,B8:_$9$k(B
$B5?$$$,$"$j$^$9!#(B

43. HylaFAX Insecure Temporary File Creation Vulnerability
BugTraq ID: 14907
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14907
$BMWLs(B:
HylaFAX $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#%m!<(B
$B%+%k$N967b<T$O$3$NLdBj$rMxMQ$7$F!"%7%s%\%j%C%/%j%s%/967b$r<B9T$9$k2DG
=@-(B
$B$,$"$j$^$9!#(B

$B$3$NLdBj$NMxMQ$K@.8y$9$k$H!"=EMW$J%G!<%?$d@_Dj%U%!%$%k$,>e=q$-$5$l$k7
k2L(B
$B$r>7$/2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,$"$
j$^(B
$B$9!#$=$NB>$N967b$b9T$o$l$k2DG=@-$,$"$j$^$9!#(B

44. My Little Forum Search.PHP SQL Injection Vulnerability
BugTraq ID: 14908
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14908
$BMWLs(B:
my little forum $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N(B
$B%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

45. Yukihiro Matsumoto Ruby SAFE Level Restriction Bypass Vulnerability
BugTraq ID: 14909
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14909
$BMWLs(B:
Ruby $B$O!"(BSAFE $B%l%Y%k$N@)Ls$,2sHr$5$l$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$N(B
$BLdBj$O(B SAFE $B%l%Y%k$N%A%'%C%/$r<BAu$9$kO@M}$NITHw$KM3Mh$7$^$9!#(B

$B$3$NLdBj$K$h$j!"967b<T$OK\MhE,MQ$5$l$k$Y$-(B SAFE $B%l%Y%k$N@)Ls$r2sHr$7$F!"(B
$BIT@5$J%9%/%j%W%H%3!<%I$rLdBj$N$"$k%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%
F%-(B
$B%9%HFb$G<B9T$9$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$K$h$k1F6A$O!"(BSAFE $B%l%Y%k$N%;%-%e%j%F%#%A%'%C%/$r;HMQ$9$k%9%/%j(B
$B%W%H$N<BAu<!Bh$H$J$j$^$9!#(B

Ruby 1.8.3 $B$h$jA0$N%P!<%8%g%s$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#(B

46. Movable Type Remote File Include Vulnerability
BugTraq ID: 14910
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14910
$BMWLs(B:
Movable Type $B$K$O!"%j%b!<%H$+$i%U%!%$%k$,%$%s%/%k!<%I$5$l$k5?$$$,$"$j$^(B
$B$9!#$3$NLdBj$O%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$
J$$(B
$B$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$G(B Web $B%5!<%P%W%m%;(B
$B%9$N8"8B$r;HMQ$7!"G$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$
,$"(B
$B$j$^$9!#$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

47. Movable Type Username Information Disclosure Vulnerability
BugTraq ID: 14911
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14911
$BMWLs(B:
Movable Type $B$K$O!">pJs$,O31L$9$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#F~NO$5$l(B
$B$?%f!<%6L>$NBEEv@-$K4X$7$F!"%"%W%j%1!<%7%g%s$,0[$J$kJ#?t$N%a%C%;!<%8$
G1~(B
$BEz$7$F$7$^$$$^$9!#(B

$B$3$NLdBj$rMxMQ$9$k$H967b<T$OM-8z$J%"%W%j%1!<%7%g%s%f!<%6$N%j%9%H$r<hF
@$9(B
$B$k$3$H$,2DG=$H$J$j!"%V%k!<%H%U%)!<%9967b(B ($BAmEv$j967b(B) $B$KMxMQ$5$l$k2DG=@-(B
$B$,$"$j$^$9!#(B

48. Movable Type Multiple Unspecified HTML Injection Vulnerabilities
BugTraq ID: 14912
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14912
$BMWLs(B:
Movable Type $B$K$O!"(BHTML $B%?%0$rA^F~2DG=$JL$FCDj$NJ#?t$NLdBj$,B8:_$9$k5?$$(B
$B$,$"$j$^$9!#(B

$B$3$NLdBj$O%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$
3$H(B
$B$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N2r<aJ}K!$r@)8f$9$k2DG=@-$b$"$j$^$
9!#(B
$B$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

49. Apple Mac OS X Security Update 2005-008 Multiple Vulnerabilities
BugTraq ID: 14914
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-22
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14914
$BMWLs(B:
Apple $B$O(B Mac OS X $B$K$*$1$k%m!<%+%k$*$h$S%j%b!<%H$+$i$NJ#?t$NLdBj$r2r>C$9(B
$B$k$?$a$N%;%-%e%j%F%#%"%C%W%G!<%H(B 2005-008 $B$r%j%j!<%9$7$^$7$?!#(B

$B0J2<$NLdBj$,$3$N%;%-%e%j%F%#%"%C%W%G!<%H$K$h$j2r>C$5$l$^$9!#(B

ImageIO $B$K$*$1$kG$0U$N%3!<%I$,<B9T$5$l$kLdBj(B

Mail $B$K$*$1$k(B2 $B$D$NLdBj$K$h$j>pJs$,O31L$9$kLdBj(B

malloc $B$K$*$1$k%m!<%+%k$G8"8B>:3J$,0z$-5/$3$5$l$kLdBj!#$3$NLdBj$O!"(BBID
14939 $B$KJ,3d$5$l$F$$$^$9!#(B

QuickDraw Manager $B$K$*$1$kG$0U$N%3!<%I$,<B9T$5$l$kLdBj(B

QuickTime for Java $B$K$*$1$k8"8B>:3J$,0z$-5/$3$5$l$kLdBj(B

Ruby $B$K$*$1$kG$0U$N%3!<%I$,<B9T$5$l$kLdBj(B

Safari $B$K$*$1$k%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kLdBj(B

SecurityAgent $B$K$*$1$kIT@5%"%/%;%9$,0z$-5/$3$5$l$kLdBj(B

securityd $B$K$*$1$k8"8B>:3J$,0z$-5/$3$5$l$kLdBj(B

50. Sun Solaris UFS Local Denial of Service Vulnerability
BugTraq ID: 14915
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14915
$BMWLs(B:
Sun Solaris UFS$B$K$O!"%m!<%+%k$G%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#(BUFS
$B%m%0$,M-8z$K$J$C$F$$$k>l9g!"$3$NLdBj$,H/@8$7$^$9!#(B

Solaris 8 $B$*$h$S(B 9 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#(B

51. Mozilla Browser/Firefox XBM Image Processing Heap Overflow Vulnerability
BugTraq ID: 14916
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14916
$BMWLs(B:
Mozilla $B$*$h$S(B Firefox $B%V%i%&%6$O!"0U?^E*$K:n@.$5$l$?(B XBM $B2hA|$r=hM}$9$k(B
$B$H$-$K%R!<%WNN0h$G%*!<%P!<%U%m!<$,H/@8$9$kLdBj$,B8:_$9$k5?$$$,$"$j$^$
9!#(B
$B967b$,@.8y$9$k$H!"G$0U$N%3!<%I$,<B9T$5$l$F$7$^$&2DG=@-$,$"$j$^$9!#(B

52. Mozilla Browser/Firefox JavaScript Engine Integer Overflow Vulnerability
BugTraq ID: 14917
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14917
$BMWLs(B:
Mozilla Browser/Firefox $B$O!"(BJavaScript $B%(%s%8%s$G@0?t%*!<%P!<%U%m!<$,H/(B
$B@8$9$kLdBj$N1F6A$r<u$1$^$9!#(B

$B0-0U$"$k%5%$%H$K%"%/%;%9$9$k$h$&$K%f!<%6$rM6F3$9$k$3$H$K$h$j!"%j%b!<%
H$N(B
$B967b<T$K$h$j$3$NLdBj$,MxMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"LdBj$N$"$k%3%s%T%e!<%?$KBP$7$F%j%b!<%H$+$iIT@5$K%"%
/%;(B
$B%9$5$l$k2DG=@-$,$"$j$^$9!#(B

Netscape Browser 8.0.3.3$B!"(BNetscape 7.2$B!"$*$h$S(B K-Meleon 0.9 $B$K$*$$$F$b!"(B
$BF1MM$K$3$NLdBj$,B8:_$7$^$9!#(B

53. Mozilla Browser/Firefox Zero-Width Non-Joiner Stack Corruption Vulnerability
BugTraq ID: 14918
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14918
$BMWLs(B:
Mozilla $B$*$h$S(B Firefox $B$O!"%9%?%C%/$,GK2u$5$l$kLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#967b$,@.8y$9$k$H!"G$0U$N%3!<%I$,<B9T$5$l$F$7$^$&2DG=@-$,$"$j$^$
9!#(B

54. Mozilla Browser/Firefox Chrome Window Spoofing Vulnerability
BugTraq ID: 14919
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14919
$BMWLs(B:
Mozilla $B$*$h$S(B Firefox $B%V%i%&%6$K$O!"%&%#%s%I%&$,56Au$5$l$kLdBj$,B8:_$9(B
$B$k5?$$$,$"$j$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"%U%#%C%7%s%0967b$r9T$&$3$H$,2DG=$G$9!#(B

55. Mozilla Browser/Firefox Chrome Page Loading Restriction Bypass Privilege Escalation Weakness
BugTraq ID: 14920
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14920
$BMWLs(B:
Mozilla $B%V%i%&%6(B/Firefox $B$O!"G$0U$N%3!<%I$,<B9T$5$l$kLdBj$,B8:_$9$k5?$$(B
$B$,$"$j$^$9!#(B

$BFC$K!"967b<T$O8"8B$,IU$1$i$l$F$$$k(B 'chrome' $B%Z!<%8$r8"8B$N$J$$(B 'about: '
$B%Z!<%8$+$iFI$_=P$9$3$H$,2DG=$G$9!#F1$8FI$_=P$785$N0cH?$H$J$kLdBj$HAH$
_9g(B
$B$o$5$k$3$H$,$J$$8B$j!"$3$NLdBj$O6<0R$H$O$J$j$^$;$s!#(B

$B$3$NLdBj$NMxMQ$K@.8y$9$k$H!"%j%b!<%H$N967b<T$,G$0U$N%3!<%I$r<B9T$7%3%
s%T%e!<(B
$B%?$X$N%j%b!<%H$+$i$NIT@5%"%/%;%9$9$k$3$H$r5v$7$F$7$^$$$^$9!#%3!<%I$N<
B9T(B
$B$O!"%V%i%&%6$r<B9T$7$F$$$k%f!<%6$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G0z$-5/$
3$5(B
$B$l$^$9!#(B

56. Mozilla Browser/Firefox DOM Objects Spoofing Vulnerability
BugTraq ID: 14921
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14921
$BMWLs(B:
Mozilla $B$*$h$S(B Firefox $B$K$O!"(BDOM $B%*%V%8%'%/%H$,56Au$5$l$kLdBj$,B8:_$9$k(B
$B5?$$$,$"$j$^$9!#$3$NLdBj$NMxMQ$K@.8y$9$k$H!">:3J$5$;$?8"8B$GG$0U$N%9%
/%j(B
$B%W%H%3!<%I$r<B9T$9$k$3$H$r%j%b!<%H$N967b<T$K5v$7$F$7$^$&2DG=@-$,$"$j$
^$9!#(B

57. PowerArchiver Long Filename Buffer Overflow Vulnerability
BugTraq ID: 14922
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14922
$BMWLs(B:
PowerArchiver $B%"%W%j%1!<%7%g%s$K$O%j%b!<%H$+$i%P%C%U%!%*!<%P!<%U%m!<$,0z(B
$B$-5/$3$5$l$kLdBj$,B8:_$7$^$9!#$3$NLdBj$N7k2L$H$7$FG$0U$N%3!<%I$,<B9T$
5$l(B
$B$k2DG=@-$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?%G!<%?$r=EMW$J%W%m%;%
9%P%C(B
$B%U%!$K%3%T!<$9$kA0$K!"6-3&%A%'%C%/$,E,(B $B@Z$K9T$o$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"(BSYSTEM $B$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G%j%b!<(B
$B%H$+$iIT@5$K%"%/%;%9$9$k2DG=@-$,$"$j$^$9!#99$J$k967b$,<B9T$5$l$k2DG=@
-$b(B
$B$"$j$^$9!#(B

58. Mozilla Browser/Firefox Arbitrary HTTP Request Injection Vulnerability
BugTraq ID: 14923
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14923
$BMWLs(B:
Mozilla $B%V%i%&%6$*$h$S(B Firefox $B%V%i%&%6$O!"G$0U$N(B HTTP $B%j%/%(%9%H$rCmF~(B
$B$9$k$3$H$r5v$7$F$7$^$&LdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%
6$,(B
$B;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#
(B

$B%f!<%6$N%^%7%s$+$i%5!<%P$d%W%m%-%7$N7g4Y$rMxMQ$9$k$?$a$K$3$NLdBj$,MxM
Q$5(B
$B$l$k$3$H$,$"$j$^$9!#$^$?!"%5!<%P$d%W%m%-%7$KC10l$N%j%/%(%9%H$r0lO"$NJ
L!9(B
$B$N%j%/%(%9%H$G$"$k$H8mG'<1$5$;$k$?$a$K;HMQ$5$l$k>l9g$,$"$j$^$9!#(B

59. Multiple Browser Proxy Auto-Config Script Handling Remote Denial of Service Vulnerability
BugTraq ID: 14924
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14924
$BMWLs(B:
$BJ#?t$N%V%i%&%6$O!"%W%m%-%7$N<+F0@_Dj%9%/%j%W%H$r=hM}$9$k$H$-$K%j%b!<%
H$+(B
$B$i%5!<%S%9ITG=>uBV$K4Y$kLdBj$N1F6A$r<u$1$^$9!#(B

$B$3$NLdBj$K$h$j%V%i%&%6$N%$%s%9%?%s%9$,%/%i%C%7%e$7$^$9!#(B

Firefox 1.0.6 $B$h$jA0$N%P!<%8%g%s!"(BNetscape Browser 8.0.3.3$B!"$*$h$S(B
Mozilla 1.7.11 $B$h$jA0$N%P!<%8%g%s$,$3$NLdBj$N1F6A$r<u$1$^$9!#(B

60. 7-Zip ARJ File Buffer Overflow Vulnerability
BugTraq ID: 14925
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14925
$BMWLs(B:
7-Zip $B$K$O!"%9%?%C%/%Y!<%9$N%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,$"$j$^(B

$B$9!#(B

$B$3$NLdBj$rMxMQ$9$k967b$,@.8y$9$k$H!"G$0U$N%3!<%I$,<B9T$5$l$F$7$^$$$^$
9!#(B
$B$=$NB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

$B%P!<%8%g%s(B 3.13$B!"(B4.23$B!"$*$h$S(B 4.26 BETA $B$K$*$$$F!"$3$NLdBj$,8!>Z:Q$_$G$9!#(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

61. PHPMyFAQ Password.PHP SQL Injection Vulnerabililty
BugTraq ID: 14927
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14927
$BMWLs(B:
phpMyFAQ $B$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$N1F6A$r<u$1$^$9!#$3$NLdBj$O!"%f!<(B
$B%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,(B
$BE,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$K$h$j!"%j%b!<%H$N967b<T$,%G!<%?%Y!<%9%/%(%j$K0-0U$"$kF~NOCM$
rEO(B
$B$7!"%/%(%j$NO@M}9=B$$rA`:n$9$k$J$I$N967b$,5v$5$l$F$7$^$&2DG=@-$,$"$j$
^$9!#(B

phpMyFAQ 1.5.1 $B$K$*$$$F!"$3$NLdBj$N5?$$$,$"$k$HJs9p$5$l$F$$$^$9!#(B

62. PHPMyFAQ Multiple Cross-Site Scripting Vulnerabilities
BugTraq ID: 14928
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14928
$BMWLs(B:
PHPMyFAQ $B$K$O%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$kJ#?t$NLdBj$,B8:_$9(B
$B$k5?$$$,$"$j$^$9!#(B

$B$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$
l$J(B
$B$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdB
j$N(B
$B$"$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$i$NLdBj$,MxMQ$5$l$k$H!"(BCookie $B$KM3Mh$9$kG'>ZMQ(B
$B>pJs$N@`<h$J$I$N967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

63. PHPMyFAQ Local File Include Vulnerability
BugTraq ID: 14929
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14929
$BMWLs(B:
PHPMyFAQ $B$K$O!"%m!<%+%k$G%U%!%$%k$,%$%s%/%k!<%I$5$l$k5?$$$,$"$j$^$9!#$3(B
$B$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$
3$H(B
$B$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$G(B Web $B%5!<%P%W%m%;(B
$B%9$N8"8B$r;HMQ$7!"G$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$
,$"(B
$B$j$^$9!#$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$NG$0U$N%U%!%$%k$r(B Web $B%5!<(B
$B%P$N8"8B$GFI$_<h$k2DG=@-$,$"$kE@$K$bN10U$9$Y$-$G$9!#(B

64. PHPMyFAQ Logs Unauthorized Access Vulnerability
BugTraq ID: 14930
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-23
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14930
$BMWLs(B:
PHPMyFAQ $B$K$O!"IT@5%"%/%;%9$,9T$o$l$k5?$$$,$"$j$^$9!#%j%b!<%H$N967b<T$O(B
$B$3$NLdBj$rMxMQ$7$F!"%"%W%j%1!<%7%g%s$N%m%0%U%!%$%k$rI=<($9$k$3$H$,2DG
=$G(B
$B$9!#(B

$B$3$NLdBj$K$h$jM-8z$J%f!<%6L>$,3+<($5$l$k2DG=@-$,$"$j!"%V%k!<%H%U%)!<%
996(B
$B7b(B ($BAmEv$j967b(B) $B$KMxMQ$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"<hF@$5$l$?>pJs$O99$J(B
$B$k967b$X$N<j=u$1$H$J$k2DG=@-$b$"$j$^$9!#(B

65. Interchange Multiple Vulnerabilities
BugTraq ID: 14931
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-24
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14931
$BMWLs(B:
Interchange $B$K$O!"J#?t$NLdBj$,B8:_$9$k5?$$$,$"$k$HJs9p$5$l$F$$$^$9!#(B

$B0J2<$NLdBj$,H/8+$5$l$F$$$^$9!#(B

Interchange 5.2.0 $B$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$N1F6A$r<u$1$^$9!#967b$,@.(B
$B8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3+<($5$l$
?$j(B
$BA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%G!<%?%Y!
<%9(B
$B$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#(B

Interchange 5.0.1 $B$O!"(BInterchange Tag Language (ITL) $B$,CmF~$5$l$kLdBj$,(B
$BB8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$K$h$j%;%C%7%g%s%O%$%8%c%C%/$,9T$o$l$
?$j!"(B
$B%5%$%H$N%3%s%F%s%D$,A`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#(B

66. AlstraSoft E-Friends Remote File Include Vulnerability
BugTraq ID: 14932
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-24
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14932
$BMWLs(B:
AlstraSoft E-Friends $B$O!"%j%b!<%H$+$i%U%!%$%k$r%$%s%/%k!<%I2DG=$JLdBj$N(B
$B1F6A$r<u$1$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$G(B Web $B%5!<%P%W%m%;(B
$B%9$N8"8B$r;HMQ$7!"G$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$
,$"(B
$B$j$^$9!#$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

AlstraSoft E-Friends 4.0 $B$K$*$$$F!"LdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$(B
$B$^$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

67. UNU Networks MailGust User_email.PHP SQL Injection Vulnerability
BugTraq ID: 14933
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-09-24
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/14933
$BMWLs(B:
MailGust $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O!"(B'/gorum/user_email.php' $B%9%/%j%W%H$K%f!<%6$,;XDj$7$?F~NOCM$r(B
SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H
(B
$B$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

MailGust 1.9 $B$K$*$$$F!"$3$NLdBj$N5?$$$,$"$k$HJs9p$5$l$F$$$^$9!#(B

III.SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. Digital plague hits online game World of Warcraft
$BCx<T(B: Robert Lemos
$B<+8JA}?#$,@)8B$5$l$F$$$k%2!<%`$N8z2L$,0-0U$"$k%2!<%^!<$K$h$C$FMxMQ$*$
h$S(B
$B3H;6$5$l!"%W%m%0%i%`$KEA@wG=NO$r;}$?$;$k$3$H$N4m81@-$r:]N)$?$;$F$$$^$
9!#(B

http://www.securityfocus.com/news/11330

2. Mozilla's popularity stressing its security image
$BCx<T(B: Robert Lemos
$B:G6a$NLdBj$N3+<(!"$*$h$SA}2C$9$k%;%-%e%j%F%#>e$NLdBj$rJs9p$7$?H>G/$K
(B 1
$BEY$N%l%]!<%H$K$h$j!"%*!<%W%s%=!<%9$N(B Firefox $B%V%i%&%6$N0BA4@-$,5?Ld;k$5(B
$B$l$F$$$^$9!#(B

http://www.securityfocus.com/news/11327

3. Key clicks betray passwords, typed text
$BCx<T(B: Robert Lemos
$B%3%s%T%e!<%?%f!<%6$N%?%$%T%s%0$r(B 10 $BJ,4VO?2;$9$k$@$1$G!"%-!<%\!<%I$GF~NO(B
$B$5$l$?C18l$N(B 90% $B0J>e$r?dB,2DG=$G$"$k$3$H$,!"Bg3X$N8&5f%A!<%`$K$h$j3NG'(B
$B$5$l$^$7$?!#(B

http://www.securityfocus.com/news/11318

4. Microsoft's delay to patch fuels concerns
$BCx<T(B: Robert Lemos
Microsoft $B<R$O3F<o$NLdBj$,8+$D$+$C$?$?$a!"%;%-%e%j%F%#%U%#%C%/%9$r%-%c%s(B
$B%;%k$9$k$3$H$r7hDj$7$^$7$?!#$3$N$?$a$KDj4|E*$K%9%1%8%e!<%k$7$F$$$k%Q%
C%A(B
$B$N2ACM$K$D$$$F%;%-%e%j%F%#%3%_%e%K%F%#$K$*$$$FA{F0$,H/@8$7$F$$$^$9!#
(B

http://www.securityfocus.com/news/11313

5. Password overload plagues US.biz
$BCx<T(B: John Leyden
$BJ#?t$N%Q%9%o!<%I$r4IM}$9$kI,MW$,$"$k$?$a%(%s%I%f!<%6$OB?Bg$JO+NO$rJ'$
C$F(B
$B$$$^$9!#$^$?!"%Q%9%o!<%I$r%j%;%C%H$9$kMW5a$,IQHK$K4s$;$i$l$k$?$a%X%k%
W%G(B
$B%9%/$K$+$+$kHqMQ$bA}Bg$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11331

6. Tiscali in UK consumer data security breach
$BCx<T(B: John Leyden
ISP $B$G$"$k(B Tiscali $B$G$O!"6bMKF|$KL5:n0Y$KCj=P$5$l$?8\5R$NL>A0!"%"%I%l%9!"(B
$BO"Mm@h!"$*$h$S@=IJ$NCmJ8>pJs$,JL$N7@Ls<T$KO31L$7$?%G!<%?%;%-%e%j%F%#L
dBj(B
$B$,H/3P$7!"F1<R$O$3$NLdBj$K$D$$$F<U:a$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11329

7. PC-hopping mobile malware sighted
$BCx<T(B: John Leyden
Windows PC $B%f!<%6$,EEOC$N%a%b%j%+!<%I$r%3%s%T%e!<%?$GFI$_<h$m$&$H$9$k$H(B
$B$3$N%f!<%6$N(B Windows PC $B$K46@w$7$h$&$H$9$k(B Symbian Trojan $B$,%&%$%k%9$N:n(B
$B@.<T$K$h$j3+H/$5$l$F$$$^$9!#(B

http://www.securityfocus.com/news/11328

8. Airport PCs stuffed with meaty goodness
$BCx<T(B: John Leyden
$BB?$/$N%S%8%M%9%^%s$O!"6u9A$N=PH/%m%S!<$K$"$k0lHL$K3+J|$5$l$F$$$kC<Kv$
r<+(B
$BBp$N(B PC $B$N$h$&$K07$C$F$*$j!"5!L)%G!<%?$dEE;R%a!<%k%a%C%;!<%8$rITFCDjB??t(B
$B$NBh;0<T$K8x3+$7$F$7$^$C$F$$$^$9!#(B

http://www.securityfocus.com/news/11324

--
$BK]Lu(B: LAC $BK]Lu%A!<%`(B
$B4F=$(B: $B>.3^8691M:(B (OGASAWARA Tsuneo)
LAC Co., Ltd.
http://www.lac.co.jp/index.html
0?l *?H?÷
?]0?Y10 +0 *?H?÷
?
û0?0?k9ÊT?þP"2þ2ÙÛû?0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
180518235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
*?H?÷
0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ÝªY?Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu0
*?H?÷
?÷Îv\«??Ü?o49]?>kr,áÇ¢{@)¹x?ºLÅ£j^?n{ãòAf¾û®¢Î?ó¢4?´²¶$òåÕàÈåbm?{Ë¾»?|WÊð7©¯?î¾(?Ù&v ÍÄNð®Õ¾¯WjÐ BBBô
Ì¥x??&8?G0?0?kLÇêª?>qÓ?ø=:???0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
280801235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
*?H?÷
0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ÝªY?Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu0
*?H?÷
©OÃ
Çg¾,ËÙ¨Í-uç~?;rë~ë\- ?Ökm`|å®Å#\JÐ¯±]óÇ¶
Ûà?
Ý¼Çv?µÝOÃ?u¸ÀæÉ[k¥¸?Ü¬¤ÝríN¡÷O¼ÓêÈdt{Â?A?esXñ?<j±?ÉÄ?¼ÏEmEân"?þ¼1\
èòÙ0?¶0? %îs<û ?U??{?í¿0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
020404000000Z
070403235959Z0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0?0
*?H?÷
0?¼+þîO×ùútüoÃøÊ?(v'È4 Ëªr-Éö?~?hòKïÉÿo½?îÓ??ÿ¨þîhU°¼ð°óåNhfisµ:V÷^uæo;êâd'\`?ÝÛ+·¼¶ª¡$)¯t¦?¯GöÕK~,e3îÛ¥<
KCp?ÙÙÂ??Äø(£¤0¡0Uÿ0ÿ0FU ?0=0;`?H?øE0,0*+https://www.verisign.co.jp/rpa0U
ÿ0 `?H?øB0 U0¤010UC1C2-1-40
*?H?÷
\?Ïh??¿ÏÓ_n²N>?Qs?e¢w ~ü v1?ÿîv4YVÊæGèãTÓÈ?Î?«bMo]?¸¢±?_K??Çó[m³#ÕcÑU*¿þ·ÄUò´o:?¿ê§q^/=¯?
?òt)ÿÌõ
?¬ÕÕ?ô÷7ªÔ?pd{0?10?? d2?7Åw?É??¹?b?ñ0
*?H?÷
0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0
050331000000Z
060331235959Z0ü10U
VeriSign Japan K.K.10UISP Service CA1503U,Terms of use at www.verisign.co.jp/rpa (c)011806U/Service Name - 5BF88D474BD2A6D3E7E073163F0C4D1210UHitachijoho10UTsuneo Ogasawara1!0 *?H?÷
t.ogaswr (at) lac.co (dot) jp0 [email concealed]?0
*?H?÷
0?¿*E´\2ÅÍóDíÐÏÇ~?+Ü=Ù&-u4)~è§ÊÇ2ÉnAàÙWÍØoÓÐûÊfÚq³.?³¥Hë¼ÀÚ×?!0¯6iÚ??±?rÙDÏdA[?Ùî?´q\~ãè?ú¨
Ä»ù?oÊi1¶+_ãr?#??>¥þ?IÁeA£ä0á0 U00EU >0<0:
`?H?øE0,0*+https://www.verisign.co.jp/rpa0U 0
`?H?øB?0ZUS0Q0O M K?Ihttp://onsitecrl.verisign.co.jp/VeriSi
gnJapanKKISPServiceCA/LatestCRL.crl0
`?H?øE ÿ0
*?H?÷
TMÎ¤©ýäøpßËµ"òÎ©,ÍË¶Q??`puÏ?¥?F?ÿ¬ãÅz?¸íñ²Oð)ô2ð$³q?âüý |øu
ßx©?Ì0³Jçjñ^9?^ p('?öC¦^ã=?øîÍ?&´ª.àTaxz4ÓÄÇ«<v?òY³QúÄ1?90?50Þ0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CAd2?7Åw?É??¹?b?ñ0 + ±0 *?H?÷
1 *?H?÷
0 *?H?÷
1
060120093000Z0# *?H?÷
1©K8'@è£!5ß§4¢&?9<0R *?H?÷
1E0C0
*?H?÷
0*?H?÷
?0+0
*?H?÷
@0
*?H?÷
(0
*?H?÷
?ª?®ÍÄë¼@AOÝ?ã¿m*!?I???jg¾·(h/â[DÕ.Q?§®¼øvmoöEÇ7Y¾?Ò¦¬1
ðeZ«?¼?d6\«f?¥ÅVé?`ÎfO=<¦BG¯Ù(C|?È Èuä*4mõ?2T¥Ã?ìÎàªÛ0¹

[ reply ]