From owner-FreeBSD-users-jp@jp.freebsd.org  Thu Aug 23 13:36:57 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id NAA15183;
	Thu, 23 Aug 2001 13:36:57 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from souryu.st.ryukoku.ac.jp (souryu.st.ryukoku.ac.jp [133.83.4.51])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id NAA15173
	for <FreeBSD-users-jp@jp.freebsd.org>; Thu, 23 Aug 2001 13:36:56 +0900 (JST)
	(envelope-from kjm@ideon.st.ryukoku.ac.jp)
Received: from ideon.st.ryukoku.ac.jp (ideon.st.ryukoku.ac.jp [133.83.36.5])
	by souryu.st.ryukoku.ac.jp (Postfix) with ESMTP id 277671344D
	for <FreeBSD-users-jp@jp.freebsd.org>; Thu, 23 Aug 2001 13:36:56 +0900 (JST)
Received: from ideon.st.ryukoku.ac.jp (ActionKamen@localhost [127.0.0.1])
	by ideon.st.ryukoku.ac.jp (8.11.1/3.7W/kjm-20010321) with ESMTP id f7N4aut47947
	for <FreeBSD-users-jp@jp.freebsd.org>; Thu, 23 Aug 2001 13:36:56 +0900 (JST)
From: KOJIMA Hajime / =?ISO-2022-JP?B?GyRCPi5FZ0glGyhC?= <kjm@rins.ryukoku.ac.jp>
To: FreeBSD-users-jp@jp.freebsd.org
In-reply-to: <200108230402.NAA31113@pon.nintendo.co.jp>
References: <200108230402.NAA31113@pon.nintendo.co.jp>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-2022-jp
Date: Thu, 23 Aug 2001 13:36:56 +0900
Message-ID: <47944.998541416@ideon.st.ryukoku.ac.jp>
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+010328
X-Sequence: FreeBSD-users-jp 63701
Subject: [FreeBSD-users-jp 63701] Re: [QandA 2009] [Update 1813] ja-samba
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: kjm@ideon.st.ryukoku.ac.jp

$BBjL>(B: [FreeBSD-users-jp 63697] Re: [QandA 2009] [Update 1813] ja-samba
(<200108230402.NAA31113@pon.nintendo.co.jp>) $B$K$*$$$F(B
Takashi SHIRAI $B$5$s$,$*$C$7$c$k$K$O(B:
| $B!!(Bsecurity $B4+9p$N?t$rHf$Y$F$_$k$H!"8=;~E@$G$N:G?7HV9f$,$=$l(B
| $B$>$l(B MS01-046 $B$H(B FreeBSD-SA-01:52 $B$G$9$+$i!":#G/$KF~$C$F$+$i(B
| $B$N?t$OYI93$7$F$$$^$9$M!#$`$7$m(B FreeBSD $B$NJ}$,B?$$!#(B
| $B!!$G$b$=$NFbMF$H$$$&$+?<9oEY$OBg$-$/0c$&$H;W$$$^$9!#>/$J$/$H(B
| $B$b(B CodeRed $B$_$?$$$J2xJ*5i$N$b$N$O(B FreeBSD $B$G$O=P$FMh$J$+$C$?(B
| $BLu$G$9$7!#(B

  $B$=$s$J$3$H$O$"$j$^$;$s!#:G6a$N$b$N$@$1$G$b!"(B

  remote root exploit $B$,2DG=(B:

* SA-01:47.xinetd
* SA-01:48.tcpdump
* SA-01:49.telnetd
* SA-01:54.ports-telnetd

  local root exploit $B$,2DG=(B:

* SA-01:42.signal
* SA-01:55.procfs (password $B>pJs$r2r@O$9$k$J$I$9$l$P(B)

  $BFC$KCm0U$9$Y$-$J$N$O(B SA-01:42.signal $B7j$H(B SA-01:49.telnetd $B7j$G(B
  $B$7$g$&$+!#(Bexploit code $B$,9-$/=P2s$C$F$^$9$7!#(BSA-01:49.telnetd $B7j(B
  $B$r;H$C$?%o!<%`$r$D$/$k$N$O!"$=$l$[$IFq$7$/$O$J$$$G$7$g$&!#(B

  $B$b$&$9$0(B sendmail $B$N(B advisory $B$b=P$k$G$7$g$&$7!#(B

<http://msgs.securepoint.com/cgi-bin/get/bugtraq0108/190.html>
<http://www.jp.freebsd.org/cgi/cvsweb.cgi/src/contrib/sendmail/src/trace.c>

| $B!!$"$H!"(BMS $B$NJ}$OF1$8BP>]$KBP$9$k4+9p$,2?EY$b7+$jJV$5$l$F$$(B
| $B$k$N$,5$$K$J$j$^$9!#(BCodeRed $B$GI8E*$K$J$C$?(B IIS $B$J$s$F:#G/$K(B
| $BF~$C$F$@$1$G$b(B 5 $B2s$b=P$F$^$9!#(B

  local SYSTEM $B<h$i$l$k$H$+!"(Bshell $B<B9T$G$-$A$c$&$J$s$F$$$&(B IIS $B4X(B
  $BO"7j$,B?$9$.$k$s$G$9$h$M!#(Bport 80 $B$O(B wall $B$K7j$r3+$1$k%5!<%S%9$N(B
  $BI.F,$G$9$+$i!"LdBj$,Bg$-$/$J$j$,$A$G$9!#(B

  $B$^$"!"(BOS $B$N%G%U%)%k%H%$%s%9%H!<%k$,<e$$$N$b2P$KL}$rCm$$$G$$$k$N(B
  $B$G!"(BIIS $B$@$1$r@U$a$F$b%"%l$J$s$G$9$,!#(B

----
// $B%;%-%e%j%F%#%9%?%8%"%`(B 2001: $B%\%i%s%F%#%"Jg=8Cf(B!
// http://sec-stadium.hawkeye.ac/

$B>.Eg(B $BH%(B - KOJIMA Hajime
[Office] kjm@rins.ryukoku.ac.jp, http://www.st.ryukoku.ac.jp/~kjm/
