SecurityFocus

SecurityFocus Newsletter #320 2005-10-10->2005-10-14 Jan 27 2006 09:08AM
Tsuneo Ogasawara (t ogaswr lac co jp)

$B>.3^86(B@$B%i%C%/$G$9!#(B

SecurityFocus Newsletter $BBh(B 320 $B9f$NOBLu$r$*FO$1$7$^$9!#(B
$BLu$N$J$$9`L\$K$D$$$F$O!VF|K\8lLu$J$7!W$H$7$F6hJL$7$F$"$j$^$9!#(B

------------------------------------------------------------------------
---
BugTraq-JP $B$K4X$9$k(B FAQ ($BF|K\8l(B):
http://www.securityfocus.com/archive/79/description
$B!&(BSecurityFocus Newsletter $B$NOBLu$O(B BugTraq-JP $B$G0l<!G[I[$5$l$F$$$^$9(B
$B!&(BBugTraq-JP $B$X$N;22CJ}K!!"C&B`J}K!$O$3$N(B FAQ $B$r$4;2>H$/$@$5$$(B
------------------------------------------------------------------------
---
SecurityFocus Newsletter $B%"!<%+%$%V(B ($B1Q8l(B):
http://www.securityfocus.com/archive/78
BugTraq $B$K4X$9$k(B FAQ ($B1Q8l(B):
http://www.securityfocus.com/archive/1/description
------------------------------------------------------------------------
---
$B0zMQ$K4X$9$kHw9M(B:
$B!&$3$NOBLu$O(B SecurityFocus $B$N5v2D$r3t<02q<R%i%C%/$,F@$?>e$G9T$o$l$F$$$^$9!#(B
$B!&(BSecurityFocus Newsletter $B$NOBLu$r(B Netnews, Mailinglist, World Wide Web,
$B=q@R(B, $B$=$NB>$N5-O?G^BN$G0zMQ$5$l$k>l9g$K$O%a!<%k$NA4J80zMQ$r$*4j$$$7$^$9!#
(B
$B!&F|K\8lHG%K%e!<%9%l%?!<(B 1 $B9f$+$i(B 3 $B9f$^$G$K$O$3$NHw9M$,IU$$$F$$$^$;$s$,!"(B
$B=`MQ$9$k$b$N$H$7$^$9!#(B
$B!&$^$?!"(BSecurityFocus $BDs6!$N(B BugTraq-JP $B%"!<%+%$%V(B [*1] $B$X$N$$$+$J$k7A<0$N(B
$B%O%$%Q!<%j%s%/$b>e5-$K=`$8$F$/$@$5$$!#(B
1) http://online.securityfocus.com/archive/79
------------------------------------------------------------------------
---
$B$3$NOBLu$K4X$9$kHw9M(B:
$B!&$3$NOBLu$NE,MQ@.2L$K$D$$$F3t<02q<R%i%C%/$O@UG$$rIi$o$J$$$b$N$H$7$^
(B
$B$9!#(B
------------------------------------------------------------------------
---
$BLu<T$+$i$N$*CN$i$;(B:
$B!&$b$7!"(Btypo $B$d8mLu$,8+$D$+$C$?>l9g!"(BBugTraq-JP $B$X(B Errata $B$H$7$F=$@5(B
$BHG$r$4Ej9FD:$/$+!"4F=$<T(B (t.ogaswr (at) lac.co (dot) jp [email concealed]) $B$K$*CN$i$;$/$@$5$$!#(B
$B8e<T$N>l9g$K$O=$@5HG$r$G$-$k$@$1?WB.$KH/9T$7$^$9!#(B
------------------------------------------------------------------------
---
This translation is encoded and posted in ISO-2022-JP.

$B86HG(B:
Date: Tue, 18 Oct 2005 17:03:37 -0600
Message-ID: <43557F48.8060204 (at) securityfocus (dot) com [email concealed]>

SecurityFocus Newsletter #320
-----------------------------

This Issue is Sponsored By: Solsoft

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
1. Two-factor banking
2. ICANN on center stage
3. OpenBSD's network stack
II. BUGTRAQ SUMMARY
1. Xine-Lib Remote CDDB Information Format String Vulnerability
2. Multiple Vendor Antivirus Products Malformed Archives Scan Evasion Vulnerability
3. Cyphor Multiple Input Validation Vulnerabilities
4. Up-IMAPProxy Multiple Unspecified Remote Format String Vulnerabilities
5. Linux Kernel Multiple Security Vulnerabilities
6. Graphviz Insecure Temporary File Creation Vulnerability
7. XLoadImage Multiple Remote Buffer Overflow Vulnerabilities
8. BEA WebLogic Server and WebLogic Express Multiple Vulnerabilities
9. PHPMyAdmin Local File Include Vulnerability
10. Kaspersky Anti-Virus Engine CHM File Parser Remote Buffer Overflow Vulnerability
11. SGI IRIX Runpriv Local Privilege Escalation Vulnerability
12. Microsoft Windows MSDTC Memory Corruption Vulnerability
13. Microsoft MSDTC COM+ Remote Code Execution Vulnerability
14. Microsoft MSDTC TIP Denial Of Service Vulnerability
15. Microsoft MSDTC TIP Distributed Denial Of Service Vulnerability
16. KDE KOffice KWord RTF Import Remote Buffer Overflow Vulnerability
17. Microsoft Internet Explorer COM Object Instantiation Variant Vulnerability
18. RARLAB WinRAR Multiple Remote Vulnerabilities
19. Microsoft DirectX DirectShow AVI Processing Buffer Overflow Vulnerability
20. Microsoft Windows Explorer Web View Script Injection Vulnerability
21. Microsoft Windows Plug And Play UMPNPMGR.DLL wsprintfW Buffer Overflow Vulnerability
22. Microsoft Windows Client Service For Netware Buffer Overflow Vulnerability
23. Microsoft Collaboration Data Objects Remote Buffer Overflow Vulnerability
24. VersatileBulletinBoard Multiple SQL Injection Vulnerabilities
25. Microsoft Windows Malicious Shortcut Handling Remote Code Execution Vulnerability
26. Microsoft Windows Malicious Shortcut Handling Remote Code Execution Variant Vulnerability
27. OpenSSL Insecure Protocol Negotiation Weakness
28. OpenVMPS Logging Function Format String Vulnerability
29. VersatileBulletinBoard Multiple Cross-Site Scripting Vulnerabilities
30. PHP Advanced Transfer Manager Arbitrary File Upload Vulnerability
31. VersatileBulletinBoard Information Disclosure Vulnerability
32. Linux Kernel Multiple Memory Leak Local Denial Of Service Vulnerabilities
33. Accelerated E Solutions SQL Injection Vulnerability
34. Zeroblog Thread.PHP Cross-Site Scripting Vulnerability
35. VERITAS NetBackup Java User-Interface Remote Format String Vulnerability
36. Novell NetMail NMAP Agent Remote Buffer Overflow Vulnerability
37. GFI MailSecurity for Exchange/SMTP Web Interface Remote Buffer Overflow Vulnerability
38. Zope RestructuredText Unspecified Security Vulnerability
39. WebGUI Arbitrary Command Execution Vulnerability
40. Sun Java System Application Server Java Server Page Source Disclosure Vulnerability
41. Linux Orinoco Driver Remote Information Disclosure Vulnerability
42. Xeobook Multiple HTML Injection Vulnerabilities
43. Symantec Brightmail AntiSpam Malformed MIME Message Denial Of Service Vulnerability
44. PHPWebSite Search Module SQL Injection Vulnerability
45. Sun Solaris Multiple Local Vulnerabilities
46. Ahnlab V3 Antivirus Multiple Archive Format Handling Remote Buffer Overflow Vulnerability
47. Yapig View.PHP Cross-Site Scripting Vulnerability
48. Hitachi OpenTP1 Denial Of Service Vulnerability
49. Kerio Personal Firewall and ServerFirewall Local Denial of Service Vulnerability
50. YaPig Homepage Form Field HTML Injection Vulnerability
51. AbiWord Stack-Based Buffer Overflow Vulnerabilities
52. Accelerated Mortgage Manager Password Field SQL Injection Vulnerability
53. HP-UX Itanium Local Denial Of Service Vulnerability
54. Clam Anti-Virus ClamAV OLE2 File Handling Denial Of Service Vulnerability
55. Multiple Vendor WGet/Curl NTLM Username Buffer Overflow Vulnerability
56. XMail Local Buffer Overflow Vulnerability
57. TYPSoft FTP Server RETR Denial Of Service Vulnerability
58. IBM AIX LSCFG Insecure Temporary File Creation Vulnerability
59. Mozilla Thunderbird Insecure SMTP Authentication Protocol Negotiation Weakness
60. RTasarim WebAdmin Login SQL Injection Vulnerability
61. Gallery Main.PHP Directory Traversal Vulnerability
62. Trust Digital Trusted Mobility Suite Authentication Bypass Vulnerability
63. W-Agora Multiple Arbitrary PHP Code Injection Vulnerabilities
64. Complete PHP Counter SQL Injection Vulnerability
65. Complete PHP Counter Cross-Site Scripting Vulnerability
66. SPE Insecure File Permissions Vulnerability
67. PunBB Search.PHP SQL Injection Vulnerability
III. SECURITYFOCUS NEWS
1. Worm worries don't wait for Windows exploits
2. Arrests unlikely to impact bot net threat, say experts
3. Fingerprint payments taking off despite security concerns
4. E-voting experts call for revised security guidelines
5. Say hello to the Skype Trojan
6. Shared music abuse bug hits iTunes
7. US cybersecurity all at sea
8. Worm fears over MS October patch batch

I. FRONT AND CENTER ($BF|K\8lLu$J$7(B)
----------------------------

II.BUGTRAQ SUMMARY
--------------------
1. Xine-Lib Remote CDDB Information Format String Vulnerability
BugTraq ID: 15044
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15044
$BMWLs(B:
Xine-lib $B$K$O!"%j%b!<%H$+$iMxMQ2DG=$J%U%)!<%^%C%H%9%H%j%s%0$NLdBj$,B8:_(B
$B$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!";XDj$5$l$?%U%)!<%^%C%H$KJQ49$7$F=PNO$
r9T(B
$B$&4X?t$,%;%-%e%j%F%#>eE,@Z$K<BAu$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$NMxMQ$,@.8y$9$k$H!"%j%b!<%H$N967b<T$,LdBj$N$"$k%"%W%j%1!<%7%
g%s(B
$B$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%^%7%s%3!<%I$r<B9T$9$k$3$H$,5v$5$
l$F(B
$B$7$^$$$^$9!#(B

Xine-lib 0.9.13$B!"(B1.0$B!"(B1.0.1$B!"(B1.0.2$B!"$*$h$S(B 1.1.0 $B$K$*$$$F1F6A$r<u$1$k$3(B
$B$H$,Js9p$5$l$F$$$^$9!#$=$NB>$N%P!<%8%g%s!"$*$h$S$3$N%i%$%V%i%j$N1F6A$
r<u(B
$B$1$k%P!<%8%g%s$r;HMQ$9$k$9$Y$F$N%"%W%j%1!<%7%g%s$b1F6A$r<u$1$k2DG=@-$
,$"(B
$B$j$^$9!#(B

2. Multiple Vendor Antivirus Products Malformed Archives Scan Evasion Vulnerability
BugTraq ID: 15046
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15046
$BMWLs(B:
$B$5$^$6$^$J%Y%s%@$+$iDs6!$5$l$F$$$kJ#?t$N%"%s%A%&%$%k%9@=IJ$K$O!"0U?^E
*$K(B
$B:n@.$5$l$?%"!<%+%$%V%U%!%$%k$,8!=P$r2sHr$9$k$3$H$r5v$7$F$7$^$&5?$$$,$
"$k(B
$B$HJs9p$5$l$F$$$^$9!#(B

$B$3$NLdBj$O!"56B$$5$l8m2r$r>7$/62$l$N$"$k(B MS-DOS $B<B9T%U%!%$%k$N(B MZ $B%X%C%@(B
$B$r4^$`!"0U?^E*$K2~$6$s$5$l$?%U%!%$%k$,=hM}$5$l$k$H$-$K0z$-5/$3$5$l$^$
9!#(B

$B$3$NLdBj$K$h$j!"0-0U$"$k%"!<%+%$%V$,8!=P$r2sHr$7!"<u?.<T$K$h$C$F%3%s%
F%s(B
$B%D$,3+$+$l$k2DG=@-$,$"$j$^$9!#(B

$BLdBj$N$"$k%Q%C%1!<%8$*$h$S%P!<%8%g%s$K4X$9$k6qBNE*$J>pJs$O8=:_Ds6!$5$
l$F(B
$B$$$J$$E@$KN10U$9$Y$-$G$9!#$3$NLdBj$NJs9p<T$O!"0U?^E*$K:n@.$5$l$?J#?t$
N0[(B
$B$J$k%"!<%+%$%V$K3JG<$5$l$F$$$k(B EICAR $B%F%9%H%a%C%;!<%8$r;HMQ$7$^$7$?!#Ld(B
$BBj$,$"$k$HJs9p$5$l$?%Q%C%1!<%8$N0lIt$O!"<B:]$K$O$3$NLdBj$N1F6A$r<u$1$
J$$(B
$B2DG=@-$,$"$j$^$9!#(B

$B>\:Y>pJs$,8x3+$5$l<!Bh!"$3$N(B BID $B$O99?7$5$l$kM=Dj$G$9!#(B

3. Cyphor Multiple Input Validation Vulnerabilities
BugTraq ID: 15047
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-08
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15047
$BMWLs(B:
Cyphor $B$K$O!"J#?t$N%/%m%9%5%$%H%9%/%j%W%F%#%s%0$NLdBj$*$h$S(B SQL $B9=J8$rCm(B
$BF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$BLdBj$,MxMQ$5$l$k$3$H$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$d%G!<%?%Y!<(B
$B%9$N%G!<%?$KBP$9$kIT@5%"%/%;%9$J$I$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$
=$N(B
$BB>$N967b$,<B9T$5$l$k2DG=@-$b$"$j$^$9!#(B

4. Up-IMAPProxy Multiple Unspecified Remote Format String Vulnerabilities
BugTraq ID: 15048
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15048
$BMWLs(B:
up-IMAPProxy $B$K$O!"%j%b!<%H$+$iMxMQ2DG=$JL$FCDj$NJ#?t$N%U%)!<%^%C%H%9%H(B
$B%j%s%0$NLdBj$,B8:_$9$k5?$$$,$"$k$HJs9p$5$l$F$$$^$9!#(B

$B967b$,@.8y$9$k$H!"$3$N%"%W%j%1!<%7%g%s$K>c32$,H/@8$9$k!"$"$k$$$O$3$N%
"%W(B
$B%j%1!<%7%g%s$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$,<B9T$5$l$F$7$
^$&(B
$B2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$N>\:Y$O8=;~E@$G$OITL@$G$9!#>\:Y$,8x3+$5$l<!Bh!"$3$N(B BID $B$O99?7(B
$B$5$l$kM=Dj$G$9!#(B

5. Linux Kernel Multiple Security Vulnerabilities
BugTraq ID: 15049
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15049
$BMWLs(B:
Linux Kernel $B$K$O!"J#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"(B
$B%m!<%+%k$*$h$S%j%b!<%H$N967b<T$,%5!<%S%9ITG=>uBV$r0z$-5/$3$7$?$j!"=EM
W$J(B
$B%+!<%M%k%a%b%j$r3+<($7$?$j$9$k$3$H$r5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#(B

$B8=;~E@$G$O(B Linux Kernel 2.6.x $B$K$*$$$F1F6A$r<u$1$k$3$H$,L@$i$+$K$J$C$F$$(B
$B$^$9!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

6. Graphviz Insecure Temporary File Creation Vulnerability
BugTraq ID: 15050
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15050
$BMWLs(B:
Graphviz $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#(B

$B$3$N967b$K$h$j=EMW$J%U%!%$%k$,>e=q$-$5$l$k>l9g!"%G!<%?$,GK2u$5$l$k$^$
?$O(B
$B%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,9b$$$H?dB,$5$l$^$9!#$=$NB>$N967b$,<B9T$
5$l(B
$B$k2DG=@-$b$"$j$^$9!#(B

Graphviz 2.2.1 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,Js9p$5$l$F$$$^$9$,!"(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

7. XLoadImage Multiple Remote Buffer Overflow Vulnerabilities
BugTraq ID: 15051
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15051
$BMWLs(B:
xloadimage $B$O!"%j%b!<%H$+$iMxMQ2DG=$J%P%C%U%!%*!<%P!<%U%m!<$K4XO"$9$kJ#(B
$B?t$NLdBj$N1F6A$r<u$1$^$9!#(B

$B$3$NLdBj$O!"0U?^E*$K:n@.$5$l$?2hA|%?%$%H%k$,=hM}$5$l$k$H$-$K0z$-5/$3$
5$l(B
$B$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%"%W%j%1!<%7%g%s$r<B9T$9$k%
f!<(B
$B%6$N8"8B$GG$0U$N%3!<%I$r<B9T$9$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"IT@5%"%
/%;(B
$B%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

8. BEA WebLogic Server and WebLogic Express Multiple Vulnerabilities
BugTraq ID: 15052
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15052
$BMWLs(B:
BEA $B$O!"(BBEA WebLogic Server $B$*$h$S(B WebLogic Express $B$K1F6A$rM?$($kMM!9$J(B
$BLdBj$rFCDj$9$k(B 24 $B7o$N%"%I%P%$%6%j$rH/9T$7$^$7$?!#$3$l$i$NLdBj$O%j%b!<%H(B
$B$*$h$S%m!<%+%k$N6<0R$r>7$-!"1F6A$r<u$1$k%3%s%T%e!<%?$N@09g@-!"5!L)@-!
"$*(B
$B$h$S2DMQ@-$K1F6A$r5Z$\$9967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$l$i$N0lIt$NLdBj$K$h$j!"1F6A$r<u$1$k%3%s%T%e!<%?$N5!G=$r40A4$KB;$J$
o$;(B
$B$k$3$H$r967b<T$K5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#(B

$B$3$l$i$NLdBj$K$D$$$F$NJ,@O$,8=:_9T$o$l$F$$$^$9!#99$J$kJ,@O$,40N;<!Bh!
"$3(B
$B$N(B BID $B$O99?7$5$l!"8DJL$N(B BID $B$,%j%j!<%9$5$l$kM=Dj$G$9!#(B

9. PHPMyAdmin Local File Include Vulnerability
BugTraq ID: 15053
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15053
$BMWLs(B:
phpMyAdmin $B$K$O!"%m!<%+%k$G%U%!%$%k$,%$%s%/%k!<%I$5$l$k5?$$$,$"$j$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%3%s%T%e!<%?>e$G(B Web $B%5!<%P%W%m%;(B
$B%9$N8"8B$r;HMQ$7!"G$0U$N%5!<%P%5%$%I%9%/%j%W%H%3!<%I$r<B9T$9$k2DG=@-$
,$"(B
$B$j$^$9!#$3$l$K$h$j!"IT@5%"%/%;%9$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

phpMyAdmin 2.6.4-pl1 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$HJs9p$5$l$F$$$^$9!#(B
$B$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

10. Kaspersky Anti-Virus Engine CHM File Parser Remote Buffer Overflow Vulnerability
BugTraq ID: 15054
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15054
$BMWLs(B:
Kaspersky Anti-Virus Engine $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%P%C%U%!%*!<%P!<(B
$B%U%m!<$,H/@8$9$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O!"967b<T$,0U?^E*$K:n@.$5$l$?(B CHM $B%U%!%$%k$rLdBj$N$"$k%3%s%T%e!<(B
$B%?$KAw?.$7!"$3$N%U%!%$%k$,(B Kaspersky $B$N(B CHM $B%U%!%$%k2r@O%D!<%k$K$h$C$F=h(B
$BM}$5$l$k$H$-$KH/@8$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#%
3%s(B
$B%F%-%9%HFb$GG$0U$N%^%7%s%3!<%I$r<B9T$9$k2DG=@-$,$"$j$^$9!#967b<T$O!"L
dBj(B
$B$N$"$k%"%W%j%1!<%7%g%s$r<B9T$9$k%3%s%T%e!<%?$K%j%b!<%H$+$i%"%/%;%9$9$
k$?(B
$B$a$N8"8B$r<hF@$9$k2DG=@-$,$"$j$^$9!#(B

11. SGI IRIX Runpriv Local Privilege Escalation Vulnerability
BugTraq ID: 15055
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-10
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15055
$BMWLs(B:
SGI IRIX runpriv $B$O!"%m!<%+%k$N967b<T$,8"8B$r>:3J$9$k$3$H$r5v$7$F$7$^$&(B
$B2DG=@-$,$"$j$^$9!#(B

$B%m!<%+%k%f!<%6$O!"%"%W%j%1!<%7%g%s$N<B9TCf$KG$0U$N%3%^%s%I$rDI2C$7!"4
IM}(B
$B<T8"8B$G<B9T$9$k2DG=@-$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"967b<T$,LdBj$N$"$k%3%s%T%e!<%?$G8"8B$r>:3J$7!"5!G=$
r40(B
$BA4$KB;$M$k$3$H$r5v$7$F$7$^$$$^$9!#(B

IRIX 6.5.22 ($B%a%s%F%J%s%9(B) $B$K$*$$$F!"$3$NLdBj$,Js9p$5$l$F$$$^$9!#$=$NB>(B
$B$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

12. Microsoft Windows MSDTC Memory Corruption Vulnerability
BugTraq ID: 15056
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15056
$BMWLs(B:
Microsoft Windows MSDTC (Microsoft Distribution Transaction Coordinator)
$B$K$O!"%a%b%j$,GK2u$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$K$h$j!"$3$N%5!<%S%9$
N%;(B
$B%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I<B9T$,5v$5$l$F$7$^$&2DG=@-$,$"$
j$^(B
$B$9!#FCDj$N>u672<$G$O%j%b!<%H$+$i$3$NLdBj$,MxMQ$5$l$k2DG=@-$,$"$j$^$9$
,!"(B
$B%m!<%+%k$G$N8"8B>:3J$r5v$7$F$7$^$&2DG=@-$b$"$j$^$9!#(B

Windows 2000 $B%W%i%C%H%U%)!<%`$G$O(B Network DTC $B$,%G%U%)%k%H$GM-8z$K@_Dj$5(B
$B$l$F$$$k$?$a!"%j%b!<%H$+$i$3$NLdBj$rMxMQ$9$k$3$H$,2DG=$G$9!#(BWindow
s XP
$B$G$O!"%m!<%+%k%f!<%6$,$3$N%5!<%S%9$r5/F0$7$?>l9g$K%j%b!<%H$+$iMxMQ$5$
l$k(B
$B2DG=@-$,$"$j$^$9!#(B Windows Server 2003 $B$G$O!"4IM}<T$K$h$C$F(B Network DTC
$B$,L@<(E*$KM-8z2=$5$l$F$$$k>l9g$r=|$-!"$3$NLdBj$O%m!<%+%k$G$N8"8B>:3J$
K8B(B
$BDj$5$l$^$9!#$3$NLdBj$O!"(BWindows XP SP2 $B$*$h$S(B Windows Server 2003 SP1 $B$G(B
$B$OH/@8$7$^$;$s!#(B

$B99?7(B: $B$$$/$D$+$N%7%9%F%`$K$*$$$F!"$3$NLdBj$r2r>C$9$k=EMW$J99?7%W%m%0%i%`(B

Microsoft Security Bulletin MS05-051 $B$N%$%s%9%H!<%k8e$K(B 1 $B$D0J>eLdBj$,H/(B
$B@8$7$F$$$k$3$H$,!"(BMicrosoft $B$K$h$C$FJs9p$5$l$F$$$^$9!#$3$l$i$NLdBj$N>\:Y(B
$B$J@bL@$K$D$$$F$O!"E:IU$N(B Microsoft Knowledge Base Article 909444 $B$r;2>H(B
$B$7$F$/$@$5$$!#(B

13. Microsoft MSDTC COM+ Remote Code Execution Vulnerability
BugTraq ID: 15057
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15057
$BMWLs(B:
Microsoft Windows $B$K$O!"(BMSDTC (Microsoft Distribution Transaction
Coordinator) $B%5!<%S%9$N(B COM+ (Component Object Model) $B5!G=$NLdBj$,B8:_$9(B
$B$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%j%b!<%H$*$h$S%m!<%+%k$N967b<T$,$3$N%5!
<%S(B
$B%9$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$r<B9T$9$k$3$H$r5v$7$F$7$
^$&(B
$B2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$O!"%j%b!<%H$NF?L>$N967b<T$,(B Windows 2000 $B%W%i%C%H%U%)!<%`$KBP$9(B
$B$k967b$r<B9T$9$k$?$a$KMxMQ$5$l$k2DG=@-$,$"$j$^$9!#(BWindows XP SP1 $B0JA0$G(B
$B$O!"967b<T$,$3$NLdBj$rMxMQ$9$k$?$a$K$O(B Guest $B$^$?$OJL$N%"%+%&%s%H$H$7$F(B
$BG'>Z$5$l$kI,MW$,$"$j$^$9!#(BWindows XP SP2 $B$*$h$S$9$Y$F$N(B Windows Server
2003 $B%*%Z%l!<%F%#%s%0%7%9%F%`$G$O!"$3$NLdBj$O%m!<%+%k$G$N8"8B>:3J$K8BDj(B

$B$5$l$^$9!#(B

$B99?7(B: $B$$$/$D$+$N%7%9%F%`$K$*$$$F!"$3$NLdBj$r2r>C$9$k=EMW$J99?7%W%m%0%i%`(B

Microsoft Security Bulletin MS05-051 $B$N%$%s%9%H!<%k8e$K(B 1 $B$D0J>eLdBj$,H/(B
$B@8$7$F$$$k$3$H$,!"(BMicrosoft $B$K$h$C$FJs9p$5$l$F$$$^$9!#$3$l$i$NLdBj$N>\:Y(B
$B$J@bL@$K$D$$$F$O!"E:IU$N(B Microsoft Knowledge Base Article 909444 $B$r;2>H(B
$B$7$F$/$@$5$$!#(B

14. Microsoft MSDTC TIP Denial Of Service Vulnerability
BugTraq ID: 15058
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15058
$BMWLs(B:
Microsoft Windows $B$N(B MSDTC (Microsoft Distribution Transaction
Coordinator) $B%5!<%S%9$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O!"(BMSDTC $B$K$h$C$FDs6!$5$l$k(B TIP (Transaction Internet Protocol)
$B5!G=$KB8:_$7$^$9!#$3$NLdBj$O!"%j%b!<%H$N967b<T$,(B MSDTC $B$K0MB8$7$F$$$k%5!<(B
$B%S%9$r;HMQ$G$-$J$$>uBV$K4Y$i$;$k$?$a$KMxMQ$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$O!"(BTIP $B%W%m%H%3%k$N%5%]!<%H$,M-8z$K$J$C$F$$$k%*%Z%l!<%F%#%s%0%7(B
$B%9%F%`$K$*$$$F$N$_B8:_$7$^$9!#(BWindows 2000 $B$N%G%U%)%k%H@_Dj$G$O!"%j%b!<(B
$B%H$+$i$3$NLdBj$,MxMQ$5$l$k2DG=@-$,$"$j$^$9!#(BWindows XP $B$*$h$S(B Windows
Server 2003 $B$K$*$$$F$O!"$?$H$((B MSDTC $B%5!<%S%9$,<B9TCf$G$"$C$F$b(B TIP $B$O%G(B
$B%U%)%k%H$GM-8z$K@_Dj$5$l$F$$$^$;$s!#(B

$B99?7(B: $B$$$/$D$+$N%7%9%F%`$K$*$$$F!"$3$NLdBj$r2r>C$9$k=EMW$J99?7%W%m%0%i%`(B

Microsoft Security Bulletin MS05-051 $B$N%$%s%9%H!<%k8e$K(B 1 $B$D0J>eLdBj$,H/(B
$B@8$7$F$$$k$3$H$,!"(BMicrosoft $B$K$h$C$FJs9p$5$l$F$$$^$9!#$3$l$i$NLdBj$N>\:Y(B
$B$J@bL@$K$D$$$F$O!"E:IU$N(B Microsoft Knowledge Base Article 909444 $B$r;2>H(B
$B$7$F$/$@$5$$!#(B

15. Microsoft MSDTC TIP Distributed Denial Of Service Vulnerability
BugTraq ID: 15059
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15059
$BMWLs(B:
Microsoft MSDTC (Microsoft Distribution Transaction Coordinator) $B%5!<%S(B
$B%9$K$O!"$3$N%5!<%S%9$r%5!<%S%9ITG=>uBV$K4Y$i$;$k967b$r5v$7$F$7$^$&!"$
"$k(B
$B$$$OB>$N%3%s%T%e!<%?$KBP$9$kJ,;67?%5!<%S%95qH]967b$r>7$$$F$7$^$&LdBj$
,B8(B
$B:_$9$k5?$$$,$"$j$^$9!#(B

$B$3$NLdBj$O!"(BMSDTC $B$K$h$C$FDs6!$5$l$k(B TIP (Transaction Internet Protocol)
$B5!G=$KB8:_$7$^$9!#(B

$B$3$NLdBj$O!"(BTIP $B%W%m%H%3%k$N%5%]!<%H$,M-8z$K$J$C$F$$$k%*%Z%l!<%F%#%s%0%7(B
$B%9%F%`$K$*$$$F$N$_B8:_$7$^$9!#(BWindows 2000 $B$N%G%U%)%k%H@_Dj$G$O!"%j%b!<(B
$B%H$+$i$3$NLdBj$,MxMQ$5$l$k2DG=@-$,$"$j$^$9!#(BWindows XP $B$*$h$S(B Windows
Server 2003 $B$K$*$$$F$O!"$?$H$((B MSDTC $B%5!<%S%9$,<B9TCf$G$"$C$F$b(B TIP $B$O%G(B
$B%U%)%k%H$GM-8z$K@_Dj$5$l$F$$$^$;$s!#(B

$B99?7(B: $B$$$/$D$+$N%7%9%F%`$K$*$$$F!"$3$NLdBj$r2r>C$9$k=EMW$J99?7%W%m%0%i%`(B

Microsoft Security Bulletin MS05-051 $B$N%$%s%9%H!<%k$7$?8e$K(B 1 $B$D0J>eLdBj(B
$B$,H/@8$7$F$$$k$3$H$,!"(BMicrosoft $B$K$h$C$FJs9p$5$l$F$$$^$9!#$3$l$i$NLdBj$N(B
$B>\:Y$J@bL@$K$D$$$F$O!"E:IU$N(B Microsoft Knowledge Base Article 909444 $B$r(B
$B;2>H$7$F$/$@$5$$!#(B

16. KDE KOffice KWord RTF Import Remote Buffer Overflow Vulnerability
BugTraq ID: 15060
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15060
$BMWLs(B:
KWord $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$(B

$B$,$"$j$^$9!#(B

$B$3$NLdBj$O!"0U?^E*$K:n@.$5$l$?(B RTF $B%U%!%$%k$,=hM}$5$l$k$H$-$K0z$-5/$3$5(B
$B$l$^$9!#(B

$B967b$,@.8y$9$k$H!"(BKword $B$r<B9T$9$k%f!<%6$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$(B
$B0U$N%3!<%I$,<B9T$5$l!"%j%b!<%H$+$i$N%"%/%;%98"8B$,IT@5$K<hF@$5$l$k2DG
=@-(B
$B$,$"$j$^$9!#(B

KOffice 1.2.0 $B$+$i(B 1.4.1 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^$9!#(B

17. Microsoft Internet Explorer COM Object Instantiation Variant Vulnerability
BugTraq ID: 15061
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15061
$BMWLs(B:
Microsoft Internet Explorer $B$K$O!"(BCOM $B%*%V%8%'%/%H$N%$%s%9%?%s%92=$K4XO"(B
$B$9$k%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"LdBj$N$"$k%3%s%T%e!<%?>e$G%m%0%$%sCf$N%f!<%6$N%;%-%
e%j(B
$B%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$r<B9T$9$k$3$H$r%j%b!<%H$N967b<T$K5v$
7$F(B
$B$7$^$&2DG=@-$,$"$j$^$9!#(B

$B$3$l$O(B BID 14511 $B!H(BMicrosoft Internet Explorer COM Object Instantiation
Buffer Overflow Vulnerability$B!I(B $B$G<($5$l$?LdBj$NJQ<o$G$9!#$3$NLdBj$H(B BID
14511 $B$H$N0c$$$O!"0JA0$N(B BID $B$G2r>C$5$l$J$+$C$?0[$J$k<oN`$N(B COM $B%*%V%8%'(B
$B%/%H%;%C%H$,1F6A$r<u$1$kE@$G$9!#(B

18. RARLAB WinRAR Multiple Remote Vulnerabilities
BugTraq ID: 15062
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15062
$BMWLs(B:
WinRAR $B$K$O!"%j%b!<%H$+$i<B9T2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$l$i$NLdBj$K$O!"%U%)!<%^%C%H%9%H%j%s%0$NLdBj$*$h$S%P%C%U%!%*!<%P!<%
U%m!<(B
$B$NLdBj$,4^$^$l$^$9!#967b$,@.8y$9$k$H!"967b<T$,1F6A$r<u$1$k%3%s%T%e!<%
?>e(B
$B$GG$0U$N%3!<%I$r<B9T$9$k$3$H$r5v$7$F$7$^$&2DG=@-$,$"$j$^$9!#(B

WinRAR 3.50 $B0JA0$N%P!<%8%g%s$K$*$$$F!"$3$l$i$NLdBj$N1F6A$r<u$1$^$9!#(B

19. Microsoft DirectX DirectShow AVI Processing Buffer Overflow Vulnerability
BugTraq ID: 15063
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15063
$BMWLs(B:
Microsoft Windows DirectX $B%3%s%]!<%M%s%H$K$O!"%P%C%U%!%*!<%P!<%U%m!<$NLd(B
$BBj$,B8:_$7$^$9!#$3$NLdBj$O!"(B.AVI (Audio Visual Interleave) $B7A<0$N%a%G%#(B
$B%"%U%!%$%k$N=hM}$K4XO"$7$F$$$^$9!#FCDj$NLdBj$,(B DirectShow $B$KB8:_$7$F$*$j!"(B
.AVI $B%U%!%$%k$r=hM}$9$k$?$a$K(B DirectShow $B$r;HMQ$9$k%"%W%j%1!<%7%g%s$r2p(B
$B$7$FLdBj$,0z$-5/$3$5$l$^$9!#(B

$B967b$,@.8y$9$k$H!"0-0U$"$k(B .AVI $B%U%!%$%k$r3+$/%f!<%6$N%;%-%e%j%F%#%3%s%F(B
$B%-%9%HFb$G!"G$0U$N%3!<%I$,<B9T$5$l$F$7$^$&2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$O!"967b<T$,0-0U$"$k(B .AVI $B%U%!%$%k$r2?$i$+$N<jCJ$r;H$C$FI8E*%f!<(B
$B%6$KAw?.$7$FMxMQ$5$l$k2DG=@-$,$"$j$^$9!#(BWeb $B%Y!<%9$N967b%7%J%j%*$G$O!"0-(B
$B0U$"$k(B Web $B%Z!<%8$,(B Windows Media Player $B$K$h$k(B .AVI $B%U%!%$%k$N<+F0%m!<(B
$B%I$r0z$-5/$3$9$3$H$,$G$-$k>l9g!"<+F0E*$K967b$,<B9T$5$l$k2DG=@-$,$"$j$
^$9!#(B
$BEE;R%a!<%k$d%$%s%9%?%s%H%a%C%;!<%8%s%0$J$I$rMxMQ$9$k$=$NB>$N967b<jK!$
G$O!"(B
$BI8E*%f!<%6$,0-0U$"$k(B .AVI $B%U%!%$%k$r<jF0$G3+$/I,MW$,$"$j$^$9!#(B

$B%5!<%I%Q!<%F%#@=$N%"%W%j%1!<%7%g%s$,(B .AVI $B%U%!%$%k$N=hM}$K(B DirectShow $B$r(B
$B;HMQ$7$F$$$k$+$I$&$+$OITL@$G$9!#;HMQ$7$F$$$k>l9g!"$=$N$h$&$J%"%W%j%1!
<%7%g(B
$B%s$K$*$$$F$b967b$r>7$$$F$7$^$&2DG=@-$,$"$j$^$9!#(B

20. Microsoft Windows Explorer Web View Script Injection Vulnerability
BugTraq ID: 15064
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15064
$BMWLs(B:
Microsoft Windows $B$N(B Explorer Web View $B$O!"G$0U$N%9%/%j%W%H$rA^F~2DG=$J(B
$BLdBj$N1F6A$r<u$1$^$9!#(B

$B967b<T$O0-0U$"$k%U%!%$%k$r:n@.$7!"$=$N%U%!%$%k$r(B Web $B%5%$%H>e$KG[CV$9$k(B
$B$+EE;R%a!<%k$G%f!<%6$KAw?.$9$k$+$7$F(B Windows $B%(%/%9%W%m!<%i(B $B$G%W%l%S%e!<(B
$B$9$k$h$&$KM6F3$9$k$3$H$K$h$j!"$3$NLdBj$rMxMQ$9$k2DG=@-$,$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!"1F6A$r<u$1$k%f!<%6$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G%j%
b!<(B
$B%H$+$i$N967b$r<u$1$k2DG=@-$,$"$j$^$9!#(B

21. Microsoft Windows Plug And Play UMPNPMGR.DLL wsprintfW Buffer Overflow Vulnerability
BugTraq ID: 15065
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15065
$BMWLs(B:
Microsoft Windows $B$N(B Plug and Play $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9(B
$B$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?%G!<%?$r%5%$%:$,IT==J,$
J%a(B
$B%b%j%P%C%U%!$K%3%T!<$9$kA0$K!"6-3&%A%'%C%/$,E,@Z$K<B9T$5$l$J$$$3$H$KM
3Mh(B
$B$7$^$9!#(B

$B$3$NLdBj$O2a>j$J%G!<%?$r4^$s$@0-0U$"$k%a%C%;!<%8$,(B PnP $B%5!<%S%9$K$h$C$F(B
$B=hM}$5$l$k$H$-$KH/@8$7$^$9!#(B

$B$3$NLdBj$K$h$j!"%P%C%/%(%s%I$N%*%Z%l!<%F%#%s%0%7%9%F%`$K1~$8$F%m!<%+%
k$G(B
$B$N8"8B>:3J$d%j%b!<%H$+$i$NIT@5%"%/%;%9$,0z$-5/$3$5$l$^$9!#967b$,@.8y$
9$k(B
$B$H!"G$0U$N%3!<%I$,<B9T$5$l!"7k2L$H$7$F967b<T$,(B SYSTEM $B8"8B$r<hF@$9$k2DG=(B
$B@-$,$"$j$^$9!#(B

$B$3$NLdBj$O!"(BBID 14513, "Microsoft Windows Plug and Play Buffer Overflow
Vulnerability" $B$GJs9p$5$l$?LdBj$H$OL54X78$G$9$,!"$3$N(B 2 $B$D$NLdBj$N967b%7(B
$B%J%j%*$*$h$S1F6A$ON`;w$7$F$$$^$9!#(B

22. Microsoft Windows Client Service For Netware Buffer Overflow Vulnerability
BugTraq ID: 15066
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15066
$BMWLs(B:
Microsoft Client Service for Netware $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8(B
$B$9$kLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$K$h$j!"%j%b!<%H$+$iG$0U$N%
3!<(B
$B%I$,<B9T$5$l$k2DG=@-$,$"$j$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$F!"G$0U$N%3!<%I$r<B9T$7!"%3%s%T%e!
<%?(B
$B$N5!G=$r40A4$KB;$J$o$;$k2DG=@-$,$"$j$^$9!#$3$NLdBj$rMxMQ$9$k%m!<%+%k$
N96(B
$B7b<T$K$h$j!"8"8B>:3J$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

$BLdBj$N$"$k%*%Z%l!<%F%#%s%0%7%9%F%`$G$O!"(BClient Service for Netware $B$O%G(B
$B%U%)%k%H$G$O%$%s%9%H!<%k$5$l$J$$E@$KN10U$9$k$Y$-$G$9!#(BMicrosoft Windows
XP Home $B$,$3$NLdBj$N1F6A$r<u$1$k$3$H$OA4$/$"$j$^$;$s!#(B

23. Microsoft Collaboration Data Objects Remote Buffer Overflow Vulnerability
BugTraq ID: 15067
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15067
$BMWLs(B:
Microsoft CDO $B$K$O!"%j%b!<%H$+$i$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<$,H/@8(B
$B$9$k2DG=@-$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?%G!<%?$r%5%$%:$,IT=
=J,(B
$B$J%a%b%j%P%C%U%!$K%3%T!<$9$kA0$K!"$3$N%i%$%V%i%j$K$h$k6-3&%A%'%C%/$,E
,@Z(B
$B$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$O!"967b<T$,0U?^E*$K:n@.$5$l$?EE;R%a!<%k%a%C%;!<%8$rLdBj$N$"$
k%i(B
$B%$%V%i%j$r;HMQ$9$kEE;R%a!<%k%5!<%P$KBP$7$FAw?.$9$k$H$-$KH/@8$7$^$9!#
(B

$B$3$NLdBj$K$h$j!"%j%b!<%H$N967b<T$,$3$N%i%$%V%i%j$r;HMQ$9$k%"%W%j%1!<%
7%g(B
$B%s$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%^%7%s%3!<%I$r<B9T$9$k$3$H$,5v$
5$l(B
$B$F$7$^$$$^$9!#(B

24. VersatileBulletinBoard Multiple SQL Injection Vulnerabilities
BugTraq ID: 15068
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15068
$BMWLs(B:
versatileBulletinBoard $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?(B
$B$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$K$h$kF~NOCM$r(B SQL $B%/%(%j$KDI2C$9$k(B
$BA0$K!"F~NOCM$KBP$9$k%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$
9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

$B$3$l$i$NLdBj$rMxMQ$9$k$?$a$K$O!"(B'magic_quotes_gpc' $B$,(B 'off' $B$K@_Dj$5$l$F(B
$B$$$kI,MW$,$"$kE@$KN10U$9$k$Y$-$G$9!#(B

25. Microsoft Windows Malicious Shortcut Handling Remote Code Execution Vulnerability
BugTraq ID: 15069
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15069
$BMWLs(B:
Microsoft Windows $B$K$O!"0-0U$"$k%7%g!<%H%+%C%H(B (.lnk) $B%U%!%$%k$r=hM}$9$k(B
$B$H$-$K!"%j%b!<%H$+$i%3!<%I$,<B9T$5$l$k5?$$$,$"$j$^$9!#(B

$B967b<T$O0-0U$"$k%U%!%$%k$r:n@.$7$F(B Web $B%5%$%H>e$KG[CV$9$k$+EE;R%a!<%k$G(B
$B%f!<%6$KAw?.$9$k$+$7$F!"$=$N%U%!%$%k$r3+$-%U%!%$%k$N%W%m%Q%F%#$rI=<($
9$k(B
$B$h$&$KM6F3$9$k$3$H$K$h$j!"$3$NLdBj$rMxMQ$9$k2DG=@-$,$"$j$^$9!#(B

$BK\Mh8"8B$r;}$?$J$$%m!<%+%k$N967b<T$O!"%f!<%6$K$h$kA`:n$,$J$/$F$b$3$NL
dBj(B
$B$rMxMQ$7$F8"8B$r>:3J$G$-$k$?$a!"%m!<%+%k$G$N6<0R$r>7$/2DG=@-$b$"$j$^$
9!#(B

$B$3$NLdBj$K$h$j!"(BSYSTEM $B8"8B$GG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$O!"(BBID 15070 (Microsoft Windows Malicious Shortcut Handling
Remote Code Execution Variant Vulnerability) $B$G<($5$l$F$$$kLdBj$K4XO"$7(B
$B$F$$$^$9!#(B

26. Microsoft Windows Malicious Shortcut Handling Remote Code Execution Variant Vulnerability
BugTraq ID: 15070
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15070
$BMWLs(B:
Microsoft Windows $B$K$O!"0-0U$"$k%7%g!<%H%+%C%H(B (.lnk) $B%U%!%$%k$,=hM}$5$l(B
$B$k$H$-$K%j%b!<%H$+$i%3!<%I$,<B9T$5$l$k5?$$$,$"$j$^$9!#(B

$B967b<T$O0-0U$"$k%U%!%$%k$r:n@.$7$F(B Web $B%5%$%H>e$KG[CV$9$k$+EE;R%a!<%k$G(B
$B%f!<%6$KAw?.$9$k$+$7$F!"$=$N%U%!%$%k$r3+$-%U%!%$%k$N%W%m%Q%F%#$rI=<($
9$k(B
$B$h$&$KM6F3$9$k$3$H$K$h$j!"$3$NLdBj$rMxMQ$9$k2DG=@-$,$"$j$^$9!#(B

$BK\Mh8"8B$r;}$?$J$$%m!<%+%k$N967b<T$O!"%f!<%6$K$h$kA`:n$,$J$/$F$b$3$NL
dBj(B
$B$rMxMQ$7$F8"8B$r>:3J$G$-$k$?$a!"%m!<%+%k$G$N6<0R$r>7$/2DG=@-$b$"$j$^$
9!#(B

$B$3$NLdBj$K$h$j!"(BSYSTEM $B8"8B$GG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,$"$j$^$9!#(B

$B$3$NLdBj$O!"(BBID 15069 (Microsoft Windows Malicious Shortcut Handling
Remote Code Execution Vulnerability) $B$G<($5$l$F$$$kLdBj$K4XO"$7$F$$$^$9!#(B

27. OpenSSL Insecure Protocol Negotiation Weakness
BugTraq ID: 15071
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15071
$BMWLs(B:
OpenSSL $B$O!"%j%b!<%H$+$iMxMQ2DG=$J%W%m%H%3%k%M%4%7%(!<%7%g%s$NLdBj$N1F6A(B
$B$r<u$1$^$9!#$3$NLdBj$O!"%5!<%I%Q!<%F%#@=%=%U%H%&%'%"$H$N8_49@-$rJ]$D$
?$a(B
$B$N(B 'SSL_OP_MSIE_SSLV2_RSA_PADDING' $B%*%W%7%g%s$N<BAu$KM3Mh$7$^$9!#(B

$B$3$NLdBj$O!"(B2 $B$D$N%T%"$,DL?.$9$k$?$a$N%W%m%H%3%k$r%M%4%7%(!<%H$7$h$&$H$9(B
$B$k$H$-$K0z$-5/$3$5$l$^$9!#(BSSL $BDL?.$NK5<u$*$h$S2~$6$s$,2DG=$J967b<T$O!"$3(B
$B$NLdBj$rMxMQ$7$F6/@)E*$K(B SSL 2 $B$,A*Br$5$l$k$h$&$K$9$k2DG=@-$,$"$j$^$9!#(B

$B<!$K!"967b<T$O(B SSL 2 $B$KB8:_$9$kMM!9$J%;%-%e%j%F%#LdBj$rMxMQ$7$F!"I8E*%/(B
$B%i%$%"%s%H$H%5!<%P4V$NJ?J8DL?.$KIT@5$K%"%/%;%9$9$k!"$^$?$O$=$NFbMF$r2
~$6(B
$B$s$9$k2DG=@-$,$"$j$^$9!#(B

'SSL_OP_MSIE_SSLV2_RSA_PADDING' $B%*%W%7%g%s$O!";HMQIQEY$N9b$$(B 'SSL_OP_ALL'
$B%*%W%7%g%s$H0l=o$KM-8z$K@_Dj$5$l$kE@$KN10U$9$Y$-$G$9!#(B

SSL 2 $B$r5v2D$7$J$$$h$&$K@_Dj$5$l$F$$$k(B SSL $B%T%"$O$3$NLdBj$N1F6A$r<u$1$^(B
$B$;$s!#(B

28. OpenVMPS Logging Function Format String Vulnerability
BugTraq ID: 15072
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15072
$BMWLs(B:
OpenVMPS $B$O!"%j%b!<%H$+$iMxMQ2DG=$J%U%)!<%^%C%H%9%H%j%s%0$NLdBj$N1F6A$r(B
$B<u$1$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r%7%9%F%`%m%0%(%s%H%j$G=
q<0(B
$B;XDj;R$H$7$F;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$
3$H(B
$B$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"D>@\E*$J1F6A$H$7$F%5!<%S%9ITG=>uBV$,0z$-5/$3$5$l$k$
3$H(B
$B$,%l%]!<%H$K$h$j<(:6$5$l$F$$$^$9!#(B

29. VersatileBulletinBoard Multiple Cross-Site Scripting Vulnerabilities
BugTraq ID: 15073
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15073
$BMWLs(B:
versatileBulletinBoard $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0$K4XO"$9$kJ#?t(B
$B$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOC
M$N(B
$B%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdB
j$N(B
$B$"$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9
T$9(B
$B$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N(B
$B967b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

30. PHP Advanced Transfer Manager Arbitrary File Upload Vulnerability
BugTraq ID: 15074
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15074
$BMWLs(B:
PHP Advanced Transfer Manager $B$K$O!"G$0U$N%U%!%$%k$,%"%C%W%m!<%I$5$l$k5?(B
$B$$$,$"$j$^$9!#(B

$B$3$NLdBj$O%j%b!<%H$N967b<T$,LdBj$N$"$k%5!<%P>e$G0-0U$"$k%9%/%j%W%H$J$
I$N(B
$BG$0U$N%U%!%$%k$r%"%C%W%m!<%I$7$?$j!"%9%/%j%W%H$r<B9T$7$?$j$9$k$3$H$r5
v$7(B
$B$F$7$^$&2DG=@-$,$"$j$^$9!#(B

31. VersatileBulletinBoard Information Disclosure Vulnerability
BugTraq ID: 15075
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15075
$BMWLs(B:
versatileBulletinBoard $B$K$O!">pJs$,O31L$9$k5?$$$,$"$j$^$9!#(B

$B%j%b!<%H$N967b<T$O!"$3$N%"%W%j%1!<%7%g%s$K4XO"$9$k$9$Y$F$N%U%!%$%k$N%
j%9(B
$B%H$r1\Mw$G$-$k2DG=@-$,$"$j$^$9!#(B

versatileBulletinBoard 1.0.0.RC2 $B$K$*$$$F1F6A$r<u$1$^$9!#(B

32. Linux Kernel Multiple Memory Leak Local Denial Of Service Vulnerabilities
BugTraq ID: 15076
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15076
$BMWLs(B:
Linux Kernel $B$O!"%m!<%+%k$G$N967b$K$h$j%5!<%S%9ITG=>uBV$K4Y$kLdBj$N1F6A(B
$B$r<u$1$^$9!#$3$l$i$NLdBj$O!"%a%b%j$NO31L$r0z$-5/$3$9@_7W>e$NITHw$KM3M
h$7(B
$B$^$9!#(B

$B$3$l$i$NLdBj$O!"%m!<%+%k%f!<%6$,%+!<%M%k%j%=!<%9$r2aEY$K>CHq$9$k$?$a$
KMx(B
$BMQ$5$l$k2DG=@-$,$"$j$^$9!#$=$N7k2L!"@55,%f!<%6$X$N%5!<%S%95qH]$,0z$-5
/$3(B
$B$5$l$^$9!#(B

Linux Kernel 2.6.14-rc4 $B$h$jA0$N%P!<%8%g%s$K$*$$$F!"$3$l$i$NLdBj$N1F6A$r(B
$B<u$1$^$9!#(B

33. Accelerated E Solutions SQL Injection Vulnerability
BugTraq ID: 15077
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15077
$BMWLs(B:
Accelerated E $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3(B
$B$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5(B
$B%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

34. Zeroblog Thread.PHP Cross-Site Scripting Vulnerability
BugTraq ID: 15078
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-11
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15078
$BMWLs(B:
Zeroblog $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$
$$3(B
$B$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

35. VERITAS NetBackup Java User-Interface Remote Format String Vulnerability
BugTraq ID: 15079
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15079
$BMWLs(B:
NetBackup Java $B%f!<%6%$%s%?%U%'!<%9$O!"%j%b!<%H$+$iMxMQ2DG=$J%U%)!<%^%C(B
$B%H%9%H%j%s%0$NLdBj$N1F6A$r<u$1$^$9!#(B

$B967b<T$O!"=q<0;XDj;R$r4^$`0-0U$N$"$k%j%/%(%9%H$r0U?^E*$K:n@.$9$k$3$H$
G!"(B
$B$3$NLdBj$rMxMQ$9$k$3$H$,2DG=$G$9!#967b$,@.8y$9$k$H!"%5!<%P$,%/%i%C%7%
e$7(B
$B$?$j!"G$0U$N%3!<%I$,<B9T$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(B
SYSTEM
$B8"8B$^$?$O4IM}<T8"8B$GIT@5%"%/%;%9$d8"8B>:3J$,0z$-5/$3$5$l$k2DG=@-$,$
"$j(B
$B$^$9!#(B

36. Novell NetMail NMAP Agent Remote Buffer Overflow Vulnerability
BugTraq ID: 15080
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15080
$BMWLs(B:
NetMail Network Messaging Application Protocol (NMAP) Agent $B$O!"%j%b!<%H(B
$B$+$iMxMQ2DG=$J%P%C%U%!%*!<%P!<%U%m!<$NLdBj$N1F6A$r<u$1$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%5!<%P%W%m%;%9$N%;%-%
e%j(B
$B%F%#%3%s%F%-%9%HFb$GG$0U$N%^%7%s%3!<%I$r<B9T$9$k2DG=@-$,$"$j$^$9!#(B

37. GFI MailSecurity for Exchange/SMTP Web Interface Remote Buffer Overflow Vulnerability
BugTraq ID: 15081
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15081
$BMWLs(B:
GFI MailSecurity for Exchange/SMTP $B$O!"%j%b!<%H$+$iMxMQ2DG=$J%P%C%U%!%*!<(B
$B%P!<%U%m!<$NLdBj$N1F6A$r<u$1$^$9!#(B

$BFC$K!"$3$N%"%W%j%1!<%7%g%s$N(B Web $B4IM}%$%s%?%U%'!<%9$,0U?^E*$K:n@.$5$l$?(B
HTTP $B%j%/%(%9%H$r=hM}$9$k$H$-$K$3$NLdBj$,H/@8$7$^$9!#(B

$B967b$,@.8y$9$k$H!"1F6A$r<u$1$k%3%s%T%e!<%?$N5!G=$,40A4$KB;$J$o$l$k2DG
=@-(B
$B$,$"$j$^$9!#(B

GFI MailSecurity for Exchange/SMTP 8.1 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$^(B
$B$9!#(B

38. Zope RestructuredText Unspecified Security Vulnerability
BugTraq ID: 15082
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15082
$BMWLs(B:
Zope $B$N(B docutils $B%b%8%e!<%k$K$O!"L$FCDj$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B$=$NB>$N>pJs$ODs6!$5$l$F$$$^$;$s!#>\:Y$,8x3+$5$l<!Bh!"$3$N(B BID $B$O99?7$5(B
$B$l$kM=Dj$G$9!#(B

39. WebGUI Arbitrary Command Execution Vulnerability
BugTraq ID: 15083
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15083
$BMWLs(B:
WebGUI $B$K$O!"G$0U$N%3%^%s%I$,<B9T$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<(B
$B%6$,;XDj$7$?%G!<%?$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$
9!#(B

$B$3$NLdBj$K$h$j!"%j%b!<%H$+$iIT@5$K%"%/%;%9$5$l$k>l9g$,$"$j$^$9!#(B

40. Sun Java System Application Server Java Server Page Source Disclosure Vulnerability
BugTraq ID: 15084
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15084
$BMWLs(B:
Sun Java System Application Server $B$NLdBj$O!"(BJava Server Pages $B$N%=!<%9(B
$B%3!<%I$NO31L$r0z$-5/$3$7$^$9!#$3$NLdBj$O!"967b<T$,=EMW$J>pJs$KIT@5$K%
"%/(B
$B%;%9$9$k$3$H$r5v$7$F$7$^$&$?$a!"99$J$k967b$N<j=u$1$H$J$k2DG=@-$,$"$j$
^$9!#(B

41. Linux Orinoco Driver Remote Information Disclosure Vulnerability
BugTraq ID: 15085
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15085
$BMWLs(B:
Linux Kernel $BMQ$N(B Orinoco $B%I%i%$%P$K$O!"%j%b!<%H$+$i>pJs$,3+<($5$l$k2DG=(B
$B@-$,$"$j$^$9!#$3$NLdBj$O!"%I%i%$%P$,=i4|2=$5$l$F$$$J$$%+!<%M%k%a%b%j$
r>.(B
$B$5$J%M%C%H%o!<%/%Q%1%C%H$GAw?.$9$k$3$H$KM3Mh$7$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$9$k$3$H$K$h$j!"@x:_E*$K=EMW$J%+!<%M%
k%a(B
$B%b%j$K%"%/%;%9$7!"99$J$k967b$N<j=u$1$H$7$F;HMQ$9$k2DG=@-$,$"$j$^$9!#
(B

42. Xeobook Multiple HTML Injection Vulnerabilities
BugTraq ID: 15086
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15086
$BMWLs(B:
Xeobook $B$K$O!"(BHTML $B%?%0$rA^F~2DG=$JJ#?t$NL$FCDj$NLdBj$,B8:_$9$k5?$$$,$"(B
$B$j$^$9!#(B

$B$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$
l$J(B
$B$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N2r<aJ}K!$r@)8f$9$k2DG=@-$b$"$j$^$
9!#(B
$B$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

43. Symantec Brightmail AntiSpam Malformed MIME Message Denial Of Service Vulnerability
BugTraq ID: 15087
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15087
$BMWLs(B:
Symantec Brightmail AntiSpam $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,$"$j$^(B
$B$9!#$3$NLdBj$O!"0U?^E*$K:n@.$5$l$?FCDj$N(B MIME $B%3%s%F%s%D$,E,@Z$K=hM}$5$l(B
$B$J$$$3$H$KM3Mh$7$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$F%"%W%j%1!<%7%g%s$r%/%i%C%7%e$5$;!
"@5(B
$B5,%f!<%6$KBP$9$k$=$l0J9_$NEE;R%a!<%k%9%-%c%s$N%5!<%S%95qH]$r>7$/2DG=@
-$,(B
$B$"$j$^$9!#(B

44. PHPWebSite Search Module SQL Injection Vulnerability
BugTraq ID: 15088
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-12
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15088
$BMWLs(B:
phpWebSite $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$N(B
$BLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K(B
$B%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

$B%Y%s%@$O!"$3$NLdBj$r2r>C$9$k%Q%C%A(B
phpwebsite_security_patch_20051202.tgz $B$r%j%j!<%9$7$^$7$?!#(B

$BEv=i$3$NLdBj$O(B BID 14172 (PHPWebSite Index.PHP Multiple SQL Injection
Vulnerabilities) $B$K4XO"$7$F$$$k$H9M$($i$l$F$$$^$7$?$,!"<B:]$K$OJL$NLdBj(B
$B$G$9!#(B

45. Sun Solaris Multiple Local Vulnerabilities
BugTraq ID: 15090
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15090
$BMWLs(B:
Sun Solaris $B$K$O!"%m!<%+%k$GH/@8$9$kJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$l$i$NLdBj$rMxMQ$9$k967b<T$O!"%5!<%S%9ITG=>uBV$r0z$-5/$3$7$?$j!"=EM
W$J(B
$B>pJs$r<hF@$7$?$j$9$k2DG=@-$,$"$j$^$9!#(B

Solaris 10 $B$K$*$$$F!"$3$l$i$NLdBj$N1F6A$r<u$1$^$9!#(B

46. Ahnlab V3 Antivirus Multiple Archive Format Handling Remote Buffer Overflow Vulnerability
BugTraq ID: 15091
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15091
$BMWLs(B:
Ahnlab V3 Antivirus $B$O%j%b!<%H$+$i$N967b$K$h$j!"B?MM$J%"!<%+%$%V7A<0$r=h(B
$BM}$9$k$H$-$K%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$kLdBj$N1F6A$r<u$1$^$9!#(B

$B967b<T$O!"0-0U$"$k%"!<%+%$%V$r0U?^E*$K:n@.$7$F%3%s%T%e!<%?$KAw$j$D$1!
"Ld(B
$BBj$N$"$k%"%W%j%1!<%7%g%s$G%9%-%c%s$5$;$k$3$H$G!"$3$NLdBj$rMxMQ$9$k$3$
H$,(B
$B2DG=$G$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"(BSYSTEM $B8"8B$G%j%b!<%H$+$iIT@5$K%"%/%;%9$9$k(B
$B2DG=@-$,$"$j$^$9!#(B

47. Yapig View.PHP Cross-Site Scripting Vulnerability
BugTraq ID: 15092
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15092
$BMWLs(B:
Yapig $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$$,$"$j$^$9!#$3$N(B

$BLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$
H$K(B
$BM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"(B
$B$k%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$
9$k(B
$B2DG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N96(B
$B7b$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

Yapig 0.95b $B0JA0$N%P!<%8%g%s$K$*$$$F!"LdBj$N1F6A$r<u$1$^$9!#(B

48. Hitachi OpenTP1 Denial Of Service Vulnerability
BugTraq ID: 15093
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15093
$BMWLs(B:
OpenTP1 $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"0U?^E*$K(B
$B:n@.$5$l$?%G!<%?$,E,@Z$K=hM}$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$NLdBj$rMxMQ$7$FLdBj$N$"$k%5!<%S%9$r%/%i%C%7%e$5$
;!"(B
$B@55,%f!<%6$X$N%5!<%S%95qH]$r>7$/$3$H$,$G$-$^$9!#(B

49. Kerio Personal Firewall and ServerFirewall Local Denial of Service Vulnerability
BugTraq ID: 15094
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15094
$BMWLs(B:
Kerio Personal Firewall $B$*$h$S(B ServerFirewall $B$K$O!"%m!<%+%k$G%5!<%S%9IT(B
$BG=>uBV$K4Y$k5?$$$,$"$j$^$9!#(B

FWDRV $B%I%i%$%P$O%"%W%j%1!<%7%g%s$N(B Process Environment Block (PEB) $B$K4X(B
$BO"IU$1$i$l$F$$$k%a%b%j$X$N%"%/%;%9$r8!>Z$7$J$$$3$H$,%l%]!<%H$K$h$j<(:
6$5(B
$B$l$F$$$^$9!#967b<T$O!"CWL?E*$JNc30$r0z$-5/$3$7!"%U%!%$%"%&%)!<%k%W%m%
;%9(B
$B$r=*N;$5$;$k$3$H$,2DG=$G$9!#(B

$B%U%!%$%"%&%)!<%k$G%5!<%S%9ITG=>uBV$,H/@8$9$k$H!"%3%s%T%e!<%?$,99$J$k9
67b(B
$B$r<u$1$k2DG=@-$,$"$j$^$9!#(B

50. YaPig Homepage Form Field HTML Injection Vulnerability
BugTraq ID: 15095
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15095
$BMWLs(B:
YaPig $B$K$O(B HTML $B%?%0$rA^F~$5$l$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj(B
$B$7$?F~NOCM$rF0E*$K@8@.$7$?%3%s%F%s%D$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%
:=h(B
$BM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$,Ds6!$7$?(B HTML $B$d%9%/%j%W%H%3!<%I$OLdBj$N$"$k(B Web $B%5%$%H$N%;%-%e(B
$B%j%F%#%3%s%F%-%9%HFb$G<B9T$5$l$k2DG=@-$,$"$j!"$3$l$K$h$j(BCookie $B$KM3Mh$9(B
$B$kG'>ZMQ>pJs$N@`<h$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$O$3$
NLd(B
$BBj$rMxMQ$7$F!"%f!<%6$KBP$9$k%5%$%H$N2r<aJ}K!$r@)8f$9$k2DG=@-$b$"$j$^$
9!#(B
$B$=$NB>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

51. AbiWord Stack-Based Buffer Overflow Vulnerabilities
BugTraq ID: 15096
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15096
$BMWLs(B:
AbiWord $B$K$O!"%9%?%C%/%Y!<%9$N%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$kJ#?t$NLdBj(B
$B$,B8:_$9$k2DG=@-$,$"$j$^$9!#=$@5%W%m%0%i%`$,8x3+$5$l$F$$$^$9!#$3$l$i$
NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?%G!<%?$r%5%$%:$,IT==J,$J%a%b%j%P%C%U%!$K%3%T!<$
9$k(B
$BA0$K!"6-3&%A%'%C%/$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"LdBj$N$"$k%"%W%j%1!<%7%g%s$r<B9T$9$k%
f!<(B
$B%6$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%^%7%s%3!<%I$r<B9T$9$k2DG=@-$,$
"$j(B
$B$^$9!#(B

$B$3$l$i$NLdBj$O(B BID 14971 (AbiWord RTF File Processing Buffer Overflow
Vulnerability) $B$G<($5$l$?LdBj$KN`;w$7$F$$$^$9$,!"JL$NLdBj$G$9!#(B

52. Accelerated Mortgage Manager Password Field SQL Injection Vulnerability
BugTraq ID: 15097
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15097
$BMWLs(B:
Accelerated Mortgage Manager $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?(B
$B$$$,$"$j$^$9!#$3$NLdBj$O%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$KEO$9A0$K!"(B
$BF~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

53. HP-UX Itanium Local Denial Of Service VulnerabilityBugTraq ID: 15100
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15100
$BMWLs(B:
HP-UX $B$K$O!"%m!<%+%k$+$i$N967b$G%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3(B

$B$NLdBj$ONc30E*$J>u67$N=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B8"8B$r;}$D%m!<%+%k$N967b<T$O!"$3$NLdBj$rMxMQ$7$F%7%9%F%`$N5!G=Dd;_$r0
z$-(B
$B5/$3$7!"7k2L$H$7$F@55,%f!<%6$X$N%5!<%S%95qH]$r>7$/2DG=@-$,$"$j$^$9!#
(B

Itanium (IPF $B%"!<%-%F%/%A%c(B) $B%W%i%C%H%U%)!<%`>e$N(B HP-UX B.11.23 $B$G2TF0$9(B
$B$k(B HP9000 $B%5!<%P$N$_$,1F6A$r<u$1$^$9!#(B

54. Clam Anti-Virus ClamAV OLE2 File Handling Denial Of Service Vulnerability
BugTraq ID: 15101
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15101
$BMWLs(B:
ClamAV $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"0U?^E*$K(B
$B:n@.$5$l$?(B OLE2 $B%U%!%$%k$,E,@Z$K=hM}$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B$3$NLdBj$,MxMQ$5$l$k$H!"%"%W%j%1!<%7%g%s$,L58B%k!<%W$K4Y$j!"7k2L$H$7$
F%5!<(B
$B%S%9ITG=>uBV$K4Y$k2DG=@-$,$"$j$^$9!#(B

55. Multiple Vendor WGet/Curl NTLM Username Buffer Overflow Vulnerability
BugTraq ID: 15102
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15102
$BMWLs(B:
GNU wget $B$*$h$S(B cURL $B$K$O!"%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,$"$j$^(B
$B$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?%G!<%?$r%a%b%j%3%T!<A`:n$G;HMQ$9$kA0$
K%G!<(B
$B%?$N6-3&%A%'%C%/$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"1F6A$r<u$1$k%"%W%j%1!<%7%g%s$r;HMQ$9$k%f!
<%6(B
$B$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%3!<%I$r<B9T$9$k2DG=@-$,$"$j$^$9!
#(B

$B$3$NLdBj$rMxMQ$9$k$?$a$K$O!"LdBj$N$"$k%/%i%$%"%s%H$G(B NTLM $BG'>Z$,M-8z$K@_(B
$BDj$5$l$F$$$kI,MW$,$"$j$^$9!#(B

56. XMail Local Buffer Overflow Vulnerability
BugTraq ID: 15103
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15103
$BMWLs(B:
XMail $B$K$O!"%m!<%+%k$G$N967b$K$h$j%P%C%U%!%*!<%P!<%U%m!<$,H/@8$9$k5?$$$,(B

$B$"$j$^$9!#(B

$B967b$,@.8y$9$k$H!">:3J$5$l$?8"8B$GG$0U$N%3!<%I$,<B9T$5$l$k2DG=@-$,$"$
j$^(B
$B$9!#967b<T$O!"%P%C%/%(%s%I$N%*%Z%l!<%F%#%s%0%7%9%F%`$*$h$S%G%#%9%H%j%
S%e!<(B
$B%7%g%s$K1~$8$F!"4IM}<T8"8B$^$?$O%0%k!<%W%a!<%k8"8B$r<hF@$9$k$3$H$,2DG
=$G(B
$B$9!#(B

XMail 1.21 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$HJs9p$5$l$F$$$^$9!#$=$NB>$N(B
$B%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$j$^$9!#(B

57. TYPSoft FTP Server RETR Denial Of Service Vulnerability
BugTraq ID: 15104
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-13
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15104
$BMWLs(B:
TYPSoft FTP Server $B$K$O!"%5!<%S%9ITG=>uBV$K4Y$k5?$$$,$"$j$^$9!#$3$NLdBj(B
$B$ONc30E*$J>u67$N=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B8"8B$r;}$D%m!<%+%k$N967b<T$O!"$3$NLdBj$rMxMQ$7$F%7%9%F%`$r5!G=Dd;_$K4
Y$i(B
$B$;!"$=$N7k2L@55,%f!<%6$X$N%5!<%S%95qH]$r>7$/2DG=@-$,$"$j$^$9!#(B

1.11 $B0JA0$N%P!<%8%g%s$K$*$$$F!"$3$NLdBj$N1F6A$r<u$1$k$3$H$,L@$i$+$K$J$C(B

$B$F$$$^$9!#(B

58. IBM AIX LSCFG Insecure Temporary File Creation Vulnerability
BugTraq ID: 15105
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15105
$BMWLs(B:
IBM AIX LSCFG $B$G$O!"0l;~%U%!%$%k$N:n@.$,%;%-%e%j%F%#>eE,@Z$K9T$o$l$^$;$s!#(B

$B$3$N967b$K$h$j=EMW$J%U%!%$%k$,>e=q$-$5$l$k>l9g!"%G!<%?$,GK2u$5$l$k$^$
?$O(B
$B%5!<%S%9ITG=>uBV$K4Y$k2DG=@-$,9b$$$H?dB,$5$l$^$9!#$=$NB>$N967b$,<B9T$
5$l(B
$B$k2DG=@-$b$"$j$^$9!#(B

$B$3$NLdBj$rMxMQ$9$k967b<T$O(B '/etc/passwd' $B$r>e=q$-$G$-$k$?$a!"8"8B$N>:3J(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$k$3$H$,%l%]!<%H$K$h$j<(:6$5$l$F$$$^$9!#(B

59. Mozilla Thunderbird Insecure SMTP Authentication Protocol Negotiation Weakness
BugTraq ID: 15106
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15106
$BMWLs(B:
Mozilla Thunderbird $B$K$O!"%;%-%e%j%F%#>eITE,@Z$J(B SMTP $BG'>Z$K4XO"$9$k%W%m(B
$B%H%3%k%M%4%7%(!<%7%g%s$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B

$B$3$N%"%W%j%1!<%7%g%s$G$O!"%/%i%$%"%s%H$H%5!<%P$N4V$G(B CRAM-MD5 $B$^$?$O(B
STARTTLS $B$,3NN)$G$-$J$$>l9g$K(B PLAIN $BG'>Z$,;HMQ$5$l$k$3$H$,%l%]!<%H$K$h$j(B
$B<(:6$5$l$F$$$^$9!#$=$N$?$a!"967b<T$,%M%C%H%o!<%/%H%i%U%#%C%/$KIT@5$K%
"%/(B
$B%;%9$7$F>ZL@=q$r<hF@$9$k$3$H$r5v$7$F$7$^$$$^$9!#(B

$B$3$NLdBj$O!"967b<T$,0-0U$"$k%5!<%P$r3NN)$7$F(B CRAM-MD5 $B$^$?$O(B STARTTLS $B$N(B
$B<:GT$r0z$-5/$3$9$3$H$K$h$j!"%5!<%P$H%/%i%$%"%s%H$H$N4V$KF~$j!"$d$j<h$
j$5(B
$B$l$k>pJs$r2~$6$s$*$h$S@`<h$9$k967b$r<B9T$9$k$3$H$r5v$7$F$7$^$$$^$9!#$
=$N(B
$B7k2L!"1F6A$r<u$1$k%f!<%6$NG'>ZMQ>pJs$r<hF@$9$k2DG=@-$,$"$j$^$9!#(B

Mozilla Thunderbird 1.0.7 $B$*$h$S(B 1.5 Beta 2 $B$K$*$$$F!"$3$NLdBj$N1F6A$r<u(B
$B$1$k$3$H$,Js9p$5$l$^$7$?!#$=$NB>$N%P!<%8%g%s$b1F6A$r<u$1$k2DG=@-$,$"$
j$^(B
$B$9!#(B

60. RTasarim WebAdmin Login SQL Injection Vulnerability
BugTraq ID: 15107
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15107
$BMWLs(B:
RTasarim WebAdmin $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N(B
$B%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

61. Gallery Main.PHP Directory Traversal Vulnerability
BugTraq ID: 15108
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15108
$BMWLs(B:
Gallery $B$K$O!"%G%#%l%/%H%j%H%i%P!<%5%k967b$r<u$1$k5?$$$,$"$j$^$9!#$3$NLd(B
$BBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$
KM3(B
$BMh$7$^$9!#(B

$B$3$NLdBj$,MxMQ$5$l$k$H!"5!L)@-$,<:$o$l$k2DG=@-$,$"$j$^$9!#<hF@$5$l$?>
pJs(B
$B$K$h$j!"%P%C%/%(%s%I%7%9%F%`$KBP$7$F99$J$k967b$,2C$($i$l$k2DG=@-$,$"$
j$^(B
$B$9!#B>$N967b$,0z$-5/$3$5$l$k2DG=@-$b$"$j$^$9!#(B

62. Trust Digital Trusted Mobility Suite Authentication Bypass Vulnerability
BugTraq ID: 15109
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15109
$BMWLs(B:
Trusted Mobility Suite $B$K$O!"G'>Z$,2sHr$5$l$kLdBj$,B8:_$9$k5?$$$,$"$j$^(B
$B$9!#(B

$B$3$NLdBj$,MxMQ$5$l$k$H!"@\B3Cf$N7HBSC<Kv$K4X$7$F@_Dj$5$l$F$$$k$9$Y$F$
N%](B
$B%j%7$,2sHr$5$l$^$9!#(B

63. W-Agora Multiple Arbitrary PHP Code Injection Vulnerabilities
BugTraq ID: 15110
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15110
$BMWLs(B:
W-Agora $B$K$O!"(BPHP $B%3!<%I$rA^F~2DG=$JJ#?t$NLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#(B
$B$3$l$i$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$
l$J(B
$B$$$3$H$KM3Mh$7$^$9!#(B

$B%j%b!<%H$N967b<T$O$3$l$i$NLdBj$rMxMQ$7$F!"%"%W%j%1!<%7%g%s$KG$0U$N(B
PHP
$B%3!<%I$r%"%C%W%m!<%I$^$?$OA^F~$7!"(BWeb $B%5!<%P%W%m%;%9$N%;%-%e%j%F%#%3%s%F(B
$B%-%9%HFb$G<B9T$9$k2DG=@-$,$"$j$^$9!#(B

64. Complete PHP Counter SQL Injection Vulnerability
BugTraq ID: 15111
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15111
$BMWLs(B:
Complete PHP Counter $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j(B
$B$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~(B
$BNOCM$N%5%K%?%$%:=hM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

65. Complete PHP Counter Cross-Site Scripting Vulnerability
BugTraq ID: 15112
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-14
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15112
$BMWLs(B:
Complete PHP Counter $B$K$O!"%/%m%9%5%$%H%9%/%j%W%F%#%s%0967b$r<u$1$k5?$$(B
$B$,$"$j$^$9!#$3$NLdBj$O!"%f!<%6$,;XDj$7$?F~NOCM$N%5%K%?%$%:=hM}$,E,@Z$
K<B(B
$B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b<T$O$3$NLdBj$rMxMQ$7$F!"5?$$$r;}$?$J$$%f!<%6$N%V%i%&%6$G!"LdBj$N$
"$k(B
$B%5%$%H$N%;%-%e%j%F%#%3%s%F%-%9%HFb$G!"G$0U$N%9%/%j%W%H%3!<%I$r<B9T$9$
k2D(B
$BG=@-$,$"$j$^$9!#$3$l$K$h$j!"(BCookie $B$KM3Mh$9$kG'>ZMQ>pJs$N@`<h$J$I$N967b(B
$B$,0z$-5/$3$5$l$k2DG=@-$,$"$j$^$9!#(B

66. SPE Insecure File Permissions Vulnerability
BugTraq ID: 15113
$B%j%b!<%H$+$i$N:F8=@-(B: $B$J$7(B
$B8xI=F|(B: 2005-10-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15113
$BMWLs(B:
SPE $B$K$O!"%;%-%e%j%F%#>eITE,@Z$J%U%!%$%k%Q!<%_%C%7%g%s$K4XO"$9$kLdBj$,B8
(B
$B:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"%"%W%j%1!<%7%g%s$r%$%s%9%H!<%k$9$k:
]$N(B
$BITHw$KM3Mh$7$^$9!#(B

$B%m!<%+%k967b<T$O$3$NLdBj$rMxMQ$7$F!"1F6A$r<u$1$k%"%W%j%1!<%7%g%s$r;HM
Q$9(B
$B$k%f!<%6$N%;%-%e%j%F%#%3%s%F%-%9%HFb$GG$0U$N%^%7%s%3!<%I$r<B9T$9$k2DG
=@-(B
$B$,$"$j$^$9!#(B

67. PunBB Search.PHP SQL Injection Vulnerability
BugTraq ID: 15114
$B%j%b!<%H$+$i$N:F8=@-(B: $B$"$j(B
$B8xI=F|(B: 2005-10-15
$B4XO"$9$k(B URL: http://www.securityfocus.com/bid/15114
$BMWLs(B:
PunBB $B$K$O!"(BSQL $B9=J8$rCmF~2DG=$JLdBj$,B8:_$9$k5?$$$,$"$j$^$9!#$3$NLdBj$O!"(B
$B%f!<%6$,;XDj$7$?F~NOCM$r(B SQL $B%/%(%j$G;HMQ$9$kA0$K!"F~NOCM$N%5%K%?%$%:=h(B
$BM}$,E,@Z$K<B9T$5$l$J$$$3$H$KM3Mh$7$^$9!#(B

$B967b$,@.8y$9$k$H!"%"%W%j%1!<%7%g%s$KBP$9$k6<0R$,>7$+$l$?$j!"%G!<%?$,3
+<((B
$B$5$l$?$jA`:n$5$l$?$j$9$k2DG=@-$,$"$j$^$9!#$^$?!"967b<T$,%P%C%/%(%s%I%
G!<(B
$B%?%Y!<%9$N<BAu$NLdBj$rMxMQ$9$k$3$H$,5v$5$l$F$7$^$&2DG=@-$b$"$j$^$9!#
(B

III.SECURITYFOCUS NEWS ARTICLES
--------------------------------
1. Worm worries don't wait for Windows exploits
$BCx<T(B: Robert Lemos
$B:G6aH/I=$5$l$?(B Microsoft Windows $B$NLdBj$,%$%s%?!<%M%C%H%o!<%`$N1B?)$H$J(B
$B$k2DG=@-$K$D$$$F!"%;%-%e%j%F%#8&5f<T$?$A$N0U8+$O?)$$0c$C$F$$$^$9!#(B

http://www.securityfocus.com/news/11346

2. Arrests unlikely to impact bot net threat, say experts
$BCx<T(B: Robert Lemos
$B967b$r<u$1$?(B 100,000 $BBf0J>e$N%3%s%T%e!<%?$+$i@.$k%M%C%H%o!<%/$r@)8f$7$?(B
$BMF5?$G@hF|%*%i%s%@$G(B 3 $B?M$NCK@-$,BaJa$5$l$^$7$?$,!"$3$l$K$h$C$F%\%C%H%M%C(B
$B%H$r<h$j0O$`AH?%HH:a$,8:>/$9$k2DG=@-$ODc$$$G$7$g$&!#(B

http://www.securityfocus.com/news/11344

3. Fingerprint payments taking off despite security concerns
$BCx<T(B: Robert Lemos
$B6a$$>-Mh!">CHq<T$O:bI[$r;}$?$:$K30=P$G$-$k$h$&$K$J$k$+$b$7$l$^$;$s$,!
";X(B
$BLfG'>Z$K$h$k;YJ'$$$N;EAH$_$K$h$C$FBP:v$NFq$7$$(B ID $B:>5=$,0z$-5/$3$5$l$?$j!"(B
$B?M8"?/32$,?<9o$K$J$C$?$j$9$k$3$H$r%;%-%e%j%F%#$*$h$S%W%i%$%P%7!<$N@lL
g2H(B
$B$?$A$O4mW|$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11339

4. E-voting experts call for revised security guidelines
$BCx<T(B: Robert Lemos
$BO"K.@/I\$N;q6b$G1?1D$5$l$F$$$kEjI<5;=Q@lLg2H$N%0%k!<%W$O!"JF9qA*5s;Y1
g0Q(B
$B0w2q$KBP$7!"A*5s%7%9%F%`$N0BA4@-$NI>2A%W%m%;%9$r2~A1$9$k$h$&$K5a$a$^$
7$?!#(B

http://www.securityfocus.com/news/11336

5. Say hello to the Skype Trojan
$BCx<T(B: John Leyden
$B%&%$%k%9:n@.<T$O!"?M5$$N9b$$(B VoIP $B%=%U%H%&%'%"$N:G?7%P!<%8%g%s$K8+$;$+$1(B
$B$??7$?$J%H%m%$$NLZGO$r;HMQ$7$F!"(BSkype $B%f!<%6$rI8E*$K$7$F$$$^$9!#(B

http://www.securityfocus.com/news/11348

6. Shared music abuse bug hits iTunes
$BCx<T(B: John Leyden
$B%;%-%e%j%F%#8&5f<T$O!"?M5$$N9b$$(B Apple $B$N(B iTunes $B%W%m%0%i%`$GLdBj$rH/8+(B
$B$7$^$7$?!#$3$NLdBj$O!"6&M-$N2;3Z%@%&%s%m!<%I$rK832$9$k$?$a$KMxMQ$5$l$
k2D(B
$BG=@-$,$"$j$^$9!#(B

http://www.securityfocus.com/news/11347

7. US cybersecurity all at sea
$BCx<T(B: John Leyden
$B9qEZ0BA4J]>c>J$K$h$k%"%a%j%+9qFb$N%5%$%P!<%;%-%e%j%F%#%j%9%/$N4IM}$OI
T==(B
$BJ,$G$"$k!"$H@h$NJF9qBgE}NN>pJs%;%-%e%j%F%#C4Ev8\Ld$OH/8@$7$F$$$^$9!#
(B

http://www.securityfocus.com/news/11345

8. Worm fears over MS October patch batch
$BCx<T(B: John Leyden
Microsoft $B$O(B 9 $B7o$N%"%C%W%G!<%H$r4^$`=$@5%W%m%0%i%`$r2PMKF|$KH/I=$7$^$7(B
$B$?!#(B

http://www.securityfocus.com/news/11342

--
$BK]Lu(B: LAC $BK]Lu%A!<%`(B
$B4F=$(B: $B>.3^8691M:(B (OGASAWARA Tsuneo)
LAC Co., Ltd.
http://www.lac.co.jp/index.html
0?l *?H?÷
?]0?Y10 +0 *?H?÷
?
û0?0?k9ÊT?þP"2þ2ÙÛû?0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
180518235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
*?H?÷
0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ÝªY?Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu0
*?H?÷
?÷Îv\«??Ü?o49]?>kr,áÇ¢{@)¹x?ºLÅ£j^?n{ãòAf¾û®¢Î?ó¢4?´²¶$òåÕàÈåbm?{Ë¾»?|WÊð7©¯?î¾(?Ù&v ÍÄNð®Õ¾¯WjÐ BBBô
Ì¥x??&8?G0?0?kLÇêª?>qÓ?ø=:???0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
980518000000Z
280801235959Z0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0?0
*?H?÷
0?ªÐº¾-¸?ÔÊÒ¼v1Ê?Ø??V¼ÙooR6nuV
UÓßC?!e?~½!Þk2??4?A5ë?ë?ÝªY?Sm?Oíåâ*ZÁ¹Ä¦ÏÈEë¦]??>ðd$v¥Í«o¶Ø{Qa
n¦?Èâ·å4ÜA?ê @¾s?=kçu0
*?H?÷
©OÃ
Çg¾,ËÙ¨Í-uç~?;rë~ë\- ?Ökm`|å®Å#\JÐ¯±]óÇ¶
Ûà?
Ý¼Çv?µÝOÃ?u¸ÀæÉ[k¥¸?Ü¬¤ÝríN¡÷O¼ÓêÈdt{Â?A?esXñ?<j±?ÉÄ?¼ÏEmEân"?þ¼1\
èòÙ0?¶0? %îs<û ?U??{?í¿0
*?H?÷
0Á10 UUS10U
VeriSign, Inc.1<0:U3Class 1 Public Primary Certification Authority - G21:08U1(c) 1998 VeriSign, Inc. - For authorized use only10UVeriSign Trust Network0
020404000000Z
070403235959Z0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0?0
*?H?÷
0?¼+þîO×ùútüoÃøÊ?(v'È4 Ëªr-Éö?~?hòKïÉÿo½?îÓ??ÿ¨þîhU°¼ð°óåNhfisµ:V÷^uæo;êâd'\`?ÝÛ+·¼¶ª¡$)¯t¦?¯GöÕK~,e3îÛ¥<
KCp?ÙÙÂ??Äø(£¤0¡0Uÿ0ÿ0FU ?0=0;`?H?øE0,0*+https://www.verisign.co.jp/rpa0U
ÿ0 `?H?øB0 U0¤010UC1C2-1-40
*?H?÷
\?Ïh??¿ÏÓ_n²N>?Qs?e¢w ~ü v1?ÿîv4YVÊæGèãTÓÈ?Î?«bMo]?¸¢±?_K??Çó[m³#ÕcÑU*¿þ·ÄUò´o:?¿ê§q^/=¯?
?òt)ÿÌõ
?¬ÕÕ?ô÷7ªÔ?pd{0?10?? d2?7Åw?É??¹?b?ñ0
*?H?÷
0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CA0
050331000000Z
060331235959Z0ü10U
VeriSign Japan K.K.10UISP Service CA1503U,Terms of use at www.verisign.co.jp/rpa (c)011806U/Service Name - 5BF88D474BD2A6D3E7E073163F0C4D1210UHitachijoho10UTsuneo Ogasawara1!0 *?H?÷
t.ogaswr (at) lac.co (dot) jp0 [email concealed]?0
*?H?÷
0?¿*E´\2ÅÍóDíÐÏÇ~?+Ü=Ù&-u4)~è§ÊÇ2ÉnAàÙWÍØoÓÐûÊfÚq³.?³¥Hë¼ÀÚ×?!0¯6iÚ??±?rÙDÏdA[?Ùî?´q\~ãè?ú¨
Ä»ù?oÊi1¶+_ãr?#??>¥þ?IÁeA£ä0á0 U00EU >0<0:
`?H?øE0,0*+https://www.verisign.co.jp/rpa0U 0
`?H?øB?0ZUS0Q0O M K?Ihttp://onsitecrl.verisign.co.jp/VeriSi
gnJapanKKISPServiceCA/LatestCRL.crl0
`?H?øE ÿ0
*?H?÷
TMÎ¤©ýäøpßËµ"òÎ©,ÍË¶Q??`puÏ?¥?F?ÿ¬ãÅz?¸íñ²Oð)ô2ð$³q?âüý |øu
ßx©?Ì0³Jçjñ^9?^ p('?öC¦^ã=?øîÍ?&´ª.àTaxz4ÓÄÇ«<v?òY³QúÄ1?90?50Þ0É10U
VeriSign Japan K.K.10UVeriSign Trust Network1=0;U4Terms of use at https://www.verisign.co.jp/rpa (c)02100.U'Class 1 OnSite Individual Subscriber CA10UISP Service CAd2?7Åw?É??¹?b?ñ0 + ±0 *?H?÷
1 *?H?÷
0 *?H?÷
1
060127090800Z0# *?H?÷
1êê¯îÊÅ@ª9»õ7iP0R *?H?÷
1E0C0
*?H?÷
0*?H?÷
?0+0
*?H?÷
@0
*?H?÷
(0
*?H?÷
?¹8øU¼ÔI!ÓÀ«ACË1á¿0Þ¨?<ú?üþcc?Ê???^p!øñ
+qµï¸¡1;ªóÖ:óÌ?©sòEÙ¯h=_?x?O³!??öq"?fÖ]ì?ù?^HXKdågôHm,¨?ºø.÷
;?¨ÃjxèWæ0

[ reply ]