$B%;%-%e%j%F%#%[!<%k(B memo

Last modified: Wed Aug 6 00:17:49 2008 +0900 (JST)

$B!!(BSecurity Watch $B$5$s$,E9$8$^$$$5$l$F$7$^$C$?$N$G!"(B $B8D?M$GDI$$$+$1$F$_$k%F%9%H$G$9!#(B $BHwK:O?$H$7$F=q$$$F$*$/$D$b$j$J$N$G!"(B Security Watch $B$5$s$N$h$&$J>\:Y$J$b$N$G$O$"$j$^$;$s!#(B $B4pK\E*$J%?!<%2%C%H$O(B UNIX$B!"(BWindows$B!"(BMac OS (priority $B=g(B) $B$H$7$^$9!#(B $B$^$?!"$3$N%Z!<%8$NFbMF$O$I$N%Z!<%8$K$bA}$7$FL5J]>Z$G$"$k$3$H$r@k8@$7$F$*$-$^$9!#A4$F$N>pJs$,=8$^$C$F$$$k$o$1$b$"$j$^$;$s!#(B

$B!!$3$3$K:\$;$k>pJs$K$D$$$F$O!"(B $B2DG=$J8B$j(B 1 $BpJs8;$X$N%j%s%/$r:n@.$7$F$*$-$^$9!#(B $B3F<+$G(B 1 $BpJs8;$NFbMF$r3NG'$7$F$/$@$5$$!#(B $B$3$N%Z!<%8$NFbMF$r$/$l$0$l$b1-0{$_$K$7$J$$$h$&$K!#(B $B4V0c$$$rH/8+$5$l$?J}!"5-:\$5$l$F$$$J$$>pJs$r$4B8CN$NJ}!"$<$R(B$B$*$7$($F$/$@$5$$(B$B!#$h$m$7$/$*4j$$$$$?$7$^$9!#(B

$B!!$3$N%Z!<%8$N>pJs$rMxMQ$5$l$kA0$K!"(B$BCm0U=q$-(B$B$r$*FI$_$/$@$5$$!#(B

$B!!(B[ $BDjHV>pJs8;(B ] $B!!2a5n$N5-;v(B: 2008 | 2007 | 2006 | 2005 | 2004 | 2003 | 2002 | 2001 | 2000 | 1999 | 1998

[SCAN Security Wire NP Prize 2001]

Scan Security Wire $BSCAN Security Wire NP Prize 2001 $B$r^(B$B$7$^$7$?!#(B

$B!!(B

$B%M%C%H%i%s%J!<(B$B$N(B $B%Y%9%H!&%*%V!&>o=,^$r!"%Y%9%H!&%*%V!&>o=,^$r^$7$^$7$?!#(B

$B!!(B$BF|7P(B $B%M%C%H%o!<%/%;%-%e%j%F%#(B 2002 Vol.1 $B%5%]!<%H%Z!<%8(B$B$r$D$/$j$^$7$?!#(B (Vol.3 $B$N%5%]!<%H%Z!<%8$bI,MW$J$N$+$J$"!D!DFC$K=q$/$3$H$J$$$N$G$9$,(B)

www.iraqbodycount.org www.iraqbodycount.org

$BI|4)%j%/%(%9%H
$B%8%'%$%`%:(B.$B#F(B.$B%@%K%,%s!V(B $B?7!&@oAh$N%F%/%N%m%8!<(B$B!W(B($B8=:_(B27$BI<(B)
$BCf;3?.90!V(B$B%=%U%H%&%'%"$NK!E*J]8n(B$B!W(B ($B8=:_(B119$BI<(B) ($B%*%s%G%^%s%I9XF~2D(B)
$B%j%G%k!&%O!<%H!V(B$B@oN,O@!!4V@\E*%"%W%m!<%A(B$B!W(B ($BI|4)7hDj(B)
$BN&0f;0O:Lu!&JT!V(B$B%Y%H%J%`5"4TJ<$N>Z8@(B$B!W(B ($B8=:_(B103$BI<(B)
$BNS9nL@!V(B$B%+%U%+%9$N>.$5$J9q!!%A%'%A%'%sFHN)1?F0;OKv(B$B!W(B ($B8=:_(B166$BI<(B)

RSS $B$KBP1~$7$F$_$^$7$?!#(B $B>.%M%?$O4^$^$l$F$$$^$;$s!#!V@/<#$M$?%&%<%'!W$H$$$&?M$O(B RSS $B%Y!<%9$GFI$`$H9,$;$K$J$l$k$G$7$g$&(B ($B%&%6$/$J$$?M$O(B $B$3$C$A$N(B RSS $B$,$h$$$+$b$7$l$^$;$s(B)$B!#(B RSS 1.0 $B$G$9$N$G!"$"$/$^$G(B RDF Site Summary $B$G$9!#(B $B8=:_$O(B Really Simple Syndication $B$K$OBP1~$7$F$$$^$;$s!#(B
$B:#$9$0(B Really Simple Syndication $B$,$[$7$$?M$O!"$N$$$s$5$s$K$h$k(B Web $B%5%$%H$N(B RSS $B$r>! $B$r;2>H$7$F$/$@$5$$!#(B($B$N$$$s$5$s>pJs$"$j$,$H$&$4$6$$$^$9(B)

$B%;%-%e%j%F%#%[!<%k(B memo BoF 2007 $B$r3+:E$7$^$7$?!#%W%l%<%s%F!<%7%g%s$7$FD:$$$?3'MM!"$*$h$S$4;22C$5$l$?3'MM!"$"$j$,$H$&$4$6$$$^$7$?!#(B

$B<BMQ(B SSH $BBh(B2$BHG(B: $B%;%-%e%
2 $B:~$,=P$^$7$?!#(B$B%*%i%$%j!<$GCmJ8$7(B$B!"Hw9MMw$K!VI,$:(B2$B:~$G$"$k$3$H!W$H=q$/$H(B 2 $B:~$r3N

$B"#(B 2008.08.05

$B"#(B $B$$$m$$$m(B (2008.08.05)
(various)

$B"#(B $BM=9p(B.in$B$,IT@5%3!<%IHo32!"1\Mw$G#2$A$c$s$M$k$KHH9TM=9pEj9F(B
(Internet Watch, 2008.08.04)

$B!!M=9p(B.in $B$K(B (2ch $B$K$b(B?) $BBg7j$,$"$C$?LOMM!#4XO"(B: $BM=9p(B.in$B$,(BXSS$B$G$d$i$l$?(B ($B?eL57n$P$1$i$N$($SF|5-(B, 2008.08.04)$B!#(B

$B"#(B $BDI5-(B

Mac OS X - About Security Update 2008-005

$B!!>\:Y!#(B

$B"#(B 2008.08.04

$B"#(B $BDI5-(B

Program update AVG 8.0.156

$B!!(BSergio Alvarez $B;a$N7o$N>\:Y(B: [n.runs-SA-2008 004] - AVG Antivirus UPX parsing Divide by Zero Advisory (n.runs, 2008.07.28)$B!#(B UPX $B$J%U%!%$%k$G(B 0 $B3d$,H/@8$@$=$&$G!#(B CVE-2008-3373$B!#(B

Vulnerability Note VU#800113 - Multiple DNS implementations vulnerable to cache poisoning

$B!!(BBIND 9.3.5-P2 / 9.4.2-P2 / 9.5.0-P2 $B$,8x3+$5$l$^$7$?!#%Q%U%)!<%^%s%9$,2~A1$5$l$F$$$k$=$&$G$9!#(B

$B"#(B 2008.08.01

$B"#(B Mac OS X - About Security Update 2008-005
(apple, 2008.08.01)

$B!!(BMac OS X 10.4.11 / 10.5.4 $BMQ$N(B Security Update 2008-005 $B$,8x3+$5$l$F$$$^$9!#(B Apple Remote Desktop Agent $B$NOC(B$B$d(B Vulnerability Note VU#800113 - Multiple DNS implementations vulnerable to cache poisoning $B$N7o$b=$@5$5$l$F$$$^$9!#(B

2008.08.05 $BDI5-(B:

$B!!>\:Y!#(B

$B"#(B Program update AVG 8.0.156
(AVG)

$B!!(BAVG 8.0.156 $BEP>l!#$3$s$J5-=R$,$"$k!#%;%-%e%j%F%#=$@5$,4^$^$l$kLOMM!#(B

Fixed problem with security vulnerability (reported by Sergio Alvarez) that could cause the scanning engine crash on specific samples.

$B!!$3$s$J5-=R$b(B:

Fixed problem with crashes during the infected archive scanning.
($BCfN,(B)
Fixed problem with crash on some corrupted NSIS archives.

2008.08.04 $BDI5-(B:

$B!!(BSergio Alvarez $B;a$N7o$N>\:Y(B: [n.runs-SA-2008 004] - AVG Antivirus UPX parsing Divide by Zero Advisory (n.runs, 2008.07.28)$B!#(B UPX $B$J%U%!%$%k$G(B 0 $B3d$,H/@8$@$=$&$G!#(B CVE-2008-3373$B!#(B

$B"#(B $B$$$m$$$m(B (2008.08.01)
(various)

$B"#(B JVN#33706820 - $BJ#?t$N%Q%J%=%K%C%/(B $B%3%_%e%K%1!<%7%g%s%:3t<02q
(JVN, 2008.08.01)

$B!!%Q%J%=%K%C%/$N%M%C%H%o!<%/%+%a%i(B BB-HCM511/BB-HCM531/BB-HCM580/BB-HCM581/BB-HCM527 $B$*$h$S(B BL-C111/BL-C131 $B$K7g4Y!#(B $B%(%i!<2hLL$K%/%m%9%5%$%H%9%/%j%W%F%#%s%0@H

$B!!(BBB $B%7%j!<%:$O%U%!!<%`%&%'%"(B Ver.3.51R00$B!"(BBL $B%7%j!<%:$O%U%!!<%`%&%'%"(B Ver.3.50R00 $B$G=$@5$5$l$F$$$k!#(B

$B2a5n$N5-;v(B: 2008 | 2007 | 2006 | 2005 | 2004 | 2003 | 2002 | 2001 | 2000 | 1999 | 1998

[$B%;%-%e%j%F%#%[!<%k(B memo]
$B;d$K$D$$$F(B