-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

                                                         JPCERT-WR-2011-0401
                                                                   JPCERT/CC
                                                                  2011-02-02

            <<< JPCERT/CC WEEKLY REPORT 2011-02-02 >>>

$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B
$B"#(B01/23($BF|(B)$B!A(B01/29($BEZ(B) $B$N%;%-%e%j%F%#4XO">pJs(B
$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B

== $BL\(B  $B<!(B ==================================================================

$B!Z(B1$B![(BMicrosoft Windows $B$N(B MHTML $B%W%m%H%3%k%O%s%I%i$K@H<e@-(B
$B!Z(B2$B![(BOpera $B%V%i%&%6$KJ#?t$N@H<e@-(B
$B!Z(B3$B![(BISC DHCP $B%5!<%P$N(B DHCPv6 $B$N=hM}$K@H<e@-(B
$B!Z(B4$B![(BSAP Crystal Reports Server $B$KJ#?t$N@H<e@-(B
$B!Z(B5$B![(BCitrix Provisioning Services $B$K@H<e@-(B
$B!Z(B6$B![(BRealNetworks RealPlayer $B$K@H<e@-(B
$B!Z(B7$B![(BLomtec ActiveWeb Professional $B$K@H<e@-(B
$B!Z(B8$B![(BMODx Evolution $B$KJ#?t$N@H<e@-(B
$B!Z(B9$B![@)8f%7%9%F%`%;%-%e%j%F%#%+%s%U%!%l%s%9(B 2011 $B3+:E$N$40FFb(B
$B!Z(B10$B![(BC/C++ $B%;%-%e%"%3!<%G%#%s%0%;%_%J!<(B 2010$B!wEl5~(B part6 $B$R$-$D$E$-;22C<TJg=8Cf(B
$B!Z:#=5$N$R$H$/$A%a%b![>pJs%;%-%e%j%F%#7n4V(B

  $B"(>R2p$9$k%;%-%e%j%F%#4XO">pJs$NA*Dj4p=`$O0J2<$N%Z!<%8$r$4Mw$/$@$5$$!#(B
        https://www.jpcert.or.jp/wr/

  $B"((BHTML $BHG$*$h$S(B XML $BHG$O0J2<$N%Z!<%8$r$4Mw$/$@$5$$!#(B
        https://www.jpcert.or.jp/wr/2011/wr110401.html
        https://www.jpcert.or.jp/wr/2011/wr110401.xml
============================================================================


$B!Z(B1$B![(BMicrosoft Windows $B$N(B MHTML $B%W%m%H%3%k%O%s%I%i$K@H<e@-(B

    $B>pJs8;(B
      US-CERT Vulnerability Note VU#326549
      Microsoft Windows MHTML script injection vulnerability
      http://www.kb.cert.org/vuls/id/326549

    $B35MW(B
      Microsoft Windows $B$N(B MHTML $B%W%m%H%3%k%O%s%I%i$K$O!"%9%/%j%W%H%$(B
      $B%s%8%'%/%7%g%s$N@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"1s3V$NBh;0<T$,%f!<(B
      $B%6$N%V%i%&%6>e$GG$0U$N%9%/%j%W%H$r<B9T$9$k2DG=@-$,$"$j$^$9!#(B

      2011$BG/(B2$B7n(B1$BF|8=:_!"$3$NLdBj$KBP$9$k%;%-%e%j%F%#99?7%W%m%0%i%`$ODs(B
      $B6!$5$l$F$$$^$;$s!#%^%$%/%m%=%U%H$O!"2sHr:v$N$R$H$D$H$7$F!V(BFix it$B!W(B
      $B$r(B 2011$BG/(B1$B7n(B28$BF|$K8x3+$7$^$7$?!#>\:Y$K$D$$$F$O!"%^%$%/%m%=%U%H$,(B
      $BDs6!$9$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B (2501696)
      MHTML $B$N@H<e@-$K$h$j!">pJsO3$($$$,5/$3$k(B
      http://www.microsoft.com/japan/technet/security/advisory/2501696.mspx

      $B%^%$%/%m%=%U%H(B $B%5%]!<%H(B $B%*%s%i%$%s(B
      $B%^%$%/%m%=%U%H(B $B%;%-%e%j%F%#(B $B%"%I(B	$B%P%$%6%j(B: MHTML $B$N@H<e@-$K$h$j!">pJsO3$($$$,5/$3$k(B
      http://support.microsoft.com/kb/2501696/ja-jp

      Japan Vulnerability Notes JVNVU#326549
      Microsoft Windows $B$K%9%/%j%W%H%$%s%8%'%/%7%g%s$N@H<e@-(B
      https://jvn.jp/cert/JVNVU326549/index.html

    $B4XO"J8=q(B ($B1Q8l(B)
      Microsoft Security Research & Defense
      More information about the MHTML Script Injection vulnerability
      http://blogs.technet.com/b/srd/archive/2011/01/28/more-information-about-the-mhtml-script-injection-vulnerability.aspx

$B!Z(B2$B![(BOpera $B%V%i%&%6$KJ#?t$N@H<e@-(B

    $B>pJs8;(B
      US-CERT Current Activity Archive
      Opera 11.01 Released
      http://www.us-cert.gov/current/archive/2011/01/28/archive.html#realnetworks_inc_releases_update_for

    $B35MW(B
      Opera $B%V%i%&%6$K$O!"J#?t$N@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"1s3V$NBh(B
      $B;0<T$,G$0U$N%3!<%I$r<B9T$7$?$j!"%5!<%S%91?MQK832(B (DoS) $B967b$r9T$C(B
      $B$?$j!"5!L)>pJs$r<hF@$7$?$j$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B
       
      - Opera 11.01 $B$h$jA0$N%P!<%8%g%s(B
       
      $B$3$NLdBj$O!"(BOpera $B$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B Opera $B%V%i%&(B
      $B%6$r99?7$9$k$3$H$G2r7h$7$^$9!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      Opera Software
      Opera $B%&%'%V%V%i%&%6(B
      http://jp.opera.com/browser/

    $B4XO"J8=q(B ($B1Q8l(B)
      Opera Software
      Opera 11.01 for Windows changelog
      http://www.opera.com/docs/changelogs/windows/1101/

$B!Z(B3$B![(BISC DHCP $B%5!<%P$N(B DHCPv6 $B$N=hM}$K@H<e@-(B

    $B>pJs8;(B
      US-CERT Vulnerability Note VU#686084
      ISC DHCP server DHCPv6 decline message processing vulnerability
      http://www.kb.cert.org/vuls/id/686084

    $B35MW(B
      ISC DHCP $B%5!<%P(B $B$N(B DHCPDECLINE $B%a%C%;!<%8$N=hM}$K$O!"@H<e@-$,$"(B
      $B$j$^$9!#7k2L$H$7$F!"1s3V$NBh;0<T$,%5!<%S%91?MQK832(B (DoS) $B967b$r(B
      $B9T$&2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - ISC DHCP $B%P!<%8%g%s(B 4.0.x $B$+$i(B 4.2.x $B$^$G(B

      $B$J$*(B ISC $B$K$h$k$H!"(BDHCPv6 $B%5!<%P$O1F6A$r<u$1$^$9$,!"(BDHCPv4 $B%5!<(B
      $B%P$O1F6A$r<u$1$^$;$s!#(B

      $B$3$NLdBj$O!";HMQ$7$F$$$k(B OS $B$N%Y%s%@$dG[I[85$,Ds6!$9$k=$@5:Q$_$N(B
      $B%P!<%8%g%s$K(B ISC DHCP $B%5!<%P$r99?7$9$k$3$H$G2r7h$7$^$9!#>\:Y$K$D(B
      $B$$$F$O!"3F%Y%s%@$dG[I[85$,Ds6!$9$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      Japan Vulnerability Notes JVNVU#686084
      ISC DHCPv6 $B$K%5!<%S%91?MQK832(B (DoS) $B$N@H<e@-(B
      https://jvn.jp/cert/JVNVU686084/index.html

    $B4XO"J8=q(B ($B1Q8l(B)
      Internet Systems Consortium
      DHCP May Crash After Processing a DHCPv6 Decline Message
      http://www.isc.org/software/dhcp/advisories/cve-2011-0413

$B!Z(B4$B![(BSAP Crystal Reports Server $B$KJ#?t$N@H<e@-(B

    $B>pJs8;(B
      DOE-CIRC Technical Bulletin T-542
      SAP Crystal Reports Server Multiple Vulnerabilities
      http://www.doecirc.energy.gov/bulletins/t-542.shtml

    $B35MW(B
      SAP Crystal Reports Server $B$K$O!"J#?t$N@H<e@-$,$"$j$^$9!#7k2L$H(B
      $B$7$F!"1s3V$NBh;0<T$,%5!<%P>e$GG$0U$N%3!<%I$r<B9T$7$?$j!"%f!<%6$N(B
      $B%V%i%&%6>e$GG$0U$N%9%/%j%W%H$r<B9T$7$?$j$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - SAP Crystal Reports Server 2008

      $B$3$NLdBj$O!"(BSAP $B$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B SAP Crystal 
      Reports Server $B$r99?7$9$k$3$H$G2r7h$7$^$9!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      SAP
      SAP CRYSTAL REPORTS SERVER
      http://www.sap.com/japan/solutions/sap-crystal-solutions/information-infrastructure/sapcrystalserver/index.epx

    $B4XO"J8=q(B ($B1Q8l(B)
      SAP ($BEPO?$,I,MW$G$9(B)
      SAP Client Support Advisory 1458309
      https://service.sap.com/sap/support/notes/1458309

      SAP ($BEPO?$,I,MW$G$9(B)
      SAP Client Support Advisory 1458310
      https://service.sap.com/sap/support/notes/1458310

      SAP ($BEPO?$,I,MW$G$9(B)
      SAP Client Support Advisory 1458930
      https://service.sap.com/sap/support/notes/1476930

$B!Z(B5$B![(BCitrix Provisioning Services $B$K@H<e@-(B

    $B>pJs8;(B
      DOE-CIRC Technical Bulletin T-541
      Citrix Provisioning Services Unspecified Flaw Let's Remote Users Execute Arbitrary Code
      http://www.doecirc.energy.gov/bulletins/t-541.shtml

    $B35MW(B
      Citrix Provisioning Services $B$K$O!"@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"(B
      $B1s3V$NBh;0<T$,:Y9)$7$?%Q%1%C%H$r=hM}$5$;$k$3$H$GG$0U$N%3!<%I$r<B(B
      $B9T$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - Citrix Provisioning Services 5.6 $B$*$h$S$=$l0JA0(B

      $B$3$NLdBj$O!"(BCitrix $B$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B Citrix 
      Provisioning Services $B$r99?7$9$k$3$H$G2r7h$7$^$9!#(B

    $B4XO"J8=q(B ($B1Q8l(B)
      Citrix Systems
      Vulnerability in Citrix Provisioning Services could result in Arbitrary Code Execution
      http://support.citrix.com/article/CTX127149

$B!Z(B6$B![(BRealNetworks RealPlayer $B$K@H<e@-(B

    $B>pJs8;(B
      US-CERT Current Activity Archive
      RealNetworks, Inc. Releases Update for RealPlayer
      http://www.us-cert.gov/current/archive/2011/01/28/archive.html#realnetworks_inc_releases_update_for

      DOE-CIRC Technical Bulletin T-545
      RealPlayer Heap Corruption Error in 'vidplin.dll' Lets Remote Users Execute Arbitrary Code
      http://www.doecirc.energy.gov/bulletins/t-545.shtml

    $B35MW(B
      RealNetworks RealPlayer $B$K$O!"@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"1s3V(B
      $B$NBh;0<T$,:Y9)$7$?(B AVI $B%U%!%$%k$r%f!<%6$K1\Mw$5$;$k$3$H$G!"G$0U(B
      $B$N%3!<%I$r<B9T$9$k2DG=@-$,$"$j$^$9!#(B

      $B$3$NLdBj$O!"(BRealNetworks $B$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B 
      RealPlayer $B$r99?7$9$k$3$H$G2r7h$7$^$9!#>\:Y$K$D$$$F$O!"(B
      RealNetworks $B$,Ds6!$9$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      RealNetworks
      RealNetworks, Inc.$B!"%;%-%e%j%F%#@H<e@-$KBP1~$9$k%"%C%W%G!<%H$r%j%j!<%9(B
      http://service.real.com/realplayer/security/01272011_player/ja/

    $B4XO"J8=q(B ($B1Q8l(B)
      RealNetworks
      RealNetworks, Inc. Releases Update to Address Security Vulnerabilities
      http://service.real.com/realplayer/security/01272011_player/en/

$B!Z(B7$B![(BLomtec ActiveWeb Professional $B$K@H<e@-(B

    $B>pJs8;(B
      US-CERT Vulnerability Note VU#528212
      Lomtec ActiveWeb Professional 3.0 CMS allows arbitrary file upload and execution
      http://www.kb.cert.org/vuls/id/528212

    $B35MW(B
      Lomtec ActiveWeb Professional 3.0 $B$K$O!"Bh;0<T$K$h$C$FG$0U$N%U%!(B
      $B%$%k$r%"%C%W%m!<%I$5$l$k@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"1s3V$NBh;0(B
      $B<T$,<B9T2DG=$J%9%/%j%W%H$r%"%C%W%m!<%I$7!"(BWeb $B%3%s%F%s%D4IM}%5!<(B
      $B%P$N8"8B$GG$0U$N%3%^%s%I$r<B9T$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - Lomtec ActiveWeb Professional 3.0

      2011$BG/(B2$B7n(B1$BF|8=:_!"$3$NLdBj$KBP$9$k2r7h:v$ODs6!$5$l$F$$$^$;$s!#2s(B
      $BHr:v$H$7$F$O!"(BWeb $B%3%s%F%s%D4IM}%5!<%P$X$N%"%/%;%9$r@)8B$9$k$J$I(B
      $B$NJ}K!$,$"$j$^$9!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      Japan Vulnerability Notes JVNVU#528212
      Lomtec ActiveWeb Professional 3.0 CMS $B$K$*$1$kG$0U$N%U%!%$%k$r%"%C%W%m!<%I$*$h$S<B9T2DG=$J@H<e@-(B
      https://jvn.jp/cert/JVNVU528212/index.html

    $B4XO"J8=q(B ($B1Q8l(B)
      Lomtec
      ActiveWeb
      http://www.lomtec.com/en/ActiveWeb/d/activeweb/basic_info.html

$B!Z(B8$B![(BMODx Evolution $B$KJ#?t$N@H<e@-(B

    $B>pJs8;(B
      Japan Vulnerability Notes JVN#95385972
      MODx Evolution $B$K$*$1$k%G%#%l%/%H%j%H%i%P!<%5%k$N@H<e@-(B
      https://jvn.jp/jp/JVN95385972/index.html

      Japan Vulnerability Notes JVN#54092716
      MODx Evolution $B$K$*$1$k(B SQL $B%$%s%8%'%/%7%g%s$N@H<e@-(B
      https://jvn.jp/jp/JVN54092716/index.html

    $B35MW(B
      MODx CMS Project $B$N%3%s%F%s%D4IM}%7%9%F%`(B MODx Evolution $B$K$O!"(B
      $BJ#?t$N@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"1s3V$NBh;0<T$,%5!<%PFb$K$"$k(B
      $BG$0U$N%U%!%$%k$r1\Mw$7$?$j!":Y9)$7$?(B HTTP $B%j%/%(%9%H$r=hM}$5$;$k(B
      $B$3$H$G%G!<%?%Y!<%9$rA`:n$7$?$j$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - MODx Evolution 1.0.4 $B$*$h$S$=$l0JA0(B

      $B$3$NLdBj$O!"(BMODx CMS Project $B$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B 
      MODx Evolution $B$r99?7$9$k$3$H$G2r7h$7$^$9!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      MODx Japan
      MODx Evolution 1.0.5 $BF|K\8lHG(B
      http://modx.jp/download/download_evo.html

      $BFHN)9T@/K!?M(B $B>pJs=hM}?d?J5!9=(B $B%;%-%e%j%F%#%;%s%?!<(B
      $B!V(BMODx Evolution$B!W$K$*$1$k%;%-%e%j%F%#>e$N<eE@!J@H<e@-!K$NCm0U4-5/(B
      http://www.ipa.go.jp/about/press/20110126.html

    $B4XO"J8=q(B ($B1Q8l(B)
      MODx CMS Project
      MODX Evolution 1.0.5 Tightens Security and Lots of Little Improvements
      http://modxcms.com/forums/index.php/topic,60045.0.html

$B!Z(B9$B![@)8f%7%9%F%`%;%-%e%j%F%#%+%s%U%!%l%s%9(B 2011 $B3+:E$N$40FFb(B

    $B>pJs8;(B
      JPCERT/CC
      $B@)8f%7%9%F%`%;%-%e%j%F%#%+%s%U%!%l%s%9(B 2011 $B3+:E$N$40FFb(B
      https://www.jpcert.or.jp/ics/conference2011.html

    $B35MW(B
      JPCERT $B%3!<%G%#%M!<%7%g%s%;%s%?!<$O!"@)8f%7%9%F%`$K$*$1$k%;%-%e(B
      $B%j%F%#$N6<0R$,8=<B2=$7$F$-$?:#!""c8=<B2=$7$?6<0R$H$=$NBP:v2]Bj"d(B
      $B$r%F!<%^$K7G$2!"$=$N6qBN:v$K8~$1$?2~A1!&KI8f!&2sI|$r%-!<%o!<%I$H(B
      $B$7$F!"$3$l$i$N2]Bj$K$D$$$F4X78<T$N3'MM$H6&$K9M$($k%+%s%U%!%l%s%9(B
      $B$r3+:E$7$^$9!#(B

        [$BF|;~(B] 2011$BG/(B02$B7n(B10$BF|(B($BLZ(B) 10:00 - 16:40 ($B<uIU(B09:30-)

        [$B2q>l(B] $B%3%/%h%[!<%k(B
               $BEl5~ET9A6h9AFn(B1-8-35
               (MAP) http://www.kokuyo.co.jp/showroom/hall/access/

        [$BBP>](B] $B@)8f%7%9%F%`4X78<T!J%f!<%64k6H!&;v6H<T!"%7%9%F%`%$%s%F%0%l!<(B
               $B%?!&%(%s%8%K%"%j%s%02q<R!"@=IJ3+H/<T!"8&5f<T!K(B

        [$BDj0w(B] 300$BL>(B
               $BDj0w$K$J$j<!BhDy$a@Z$j$H$J$j$^$9!#$*Aa$a$K$*?=$79~$_$/$@$5$$!#(B
               $B"(EPO?<T?t$,B?$$4k6HMM$K$O$4;22C<T$ND4@0$r$*4j$$$9$k$3$H$,$"$j(B
                 $B$^$9$N$G$4N;>52<$5$$!#(B

        [$B?=9~$_J}K!(B] https://www.jpcert.or.jp/ics/conference2011.html
      		

$B!Z(B10$B![(BC/C++ $B%;%-%e%"%3!<%G%#%s%0%;%_%J!<(B 2010$B!wEl5~(B part6 $B$R$-$D$E$-;22C<TJg=8Cf(B

    $B>pJs8;(B
      JPCERT/CC
      C/C++ $B%;%-%e%"%3!<%G%#%s%0%;%_%J!<(B 2010 $B!wEl5~(B $B$N$40FFb(B
      https://www.jpcert.or.jp/event/securecoding-TKO-seminar.html

    $B35MW(B
      JPCERT $B%3!<%G%#%M!<%7%g%s%;%s%?!<$O!"(BC/C++ $B8@8l$G@H<e@-$r4^$^$J(B
      $B$$0BA4$J%W%m%0%i%`$r%3!<%G%#%s%0$9$k6qBNE*$J%F%/%K%C%/$H%N%&%O%&(B
      $B$r3X$s$G$$$?$@$/!V(BC/C++ $B%;%-%e%"%3!<%G%#%s%0%;%_%J!<!W$r3+:E$7$F(B
      $B$$$^$9!#(B

      $B!V(BC/C++ $B%;%-%e%"%3!<%G%#%s%0%;%_%J!<(B2010$B!wEl5~(B part6 $B!c(BROSE$B!d!W(B
      $B$N;22C?=$79~$_<uIUCf$G$9!#(Bpart6 $B$G$O!"%=!<%9%3!<%I2r@O%W%i%C%H(B
      $B%U%)!<%`(B ROSE $B$r;H$C$F3+H/$5$l$?(B CERT C $B%;%-%e%"%3!<%G%#%s%0%k!<(B
      $B%k$N%A%'%C%+!<$r>R2p$7$^$9!#(B

      $B:#2s$O<B5!$r;H$C$?%O%s%:%*%s$r<B;\$9$k4X78$G!"Dj0w$r(B 20$BL>$H$5$;(B
      $B$F$$$?$@$-!"F10lFbMF$K$F(B 2$B7n(B24$BF|$H(B 3$B7n(B3$BF|$N(B2$B2s3+:E$7$^$9!#;22C$N(B
      $B:]$K$O!"(B VMware $B$"$k$$$O(B VitualBox $B$r%$%s%9%H!<%k$7$?%N!<%H(B PC 
      $B$r$4;};2$/$@$5$$!#(B

      $B$J$*!"(B2$B7n(B24$BF|(B($BLZ(B) $B$N2s$O$9$G$KK~@J$H$J$C$F$*$j$^$9$N$G!"$4Cm0U$/(B
      $B$@$5$$!#(B

      C/C++ $B%;%-%e%"%3!<%G%#%s%0%;%_%J!<(B2010$B!wEl5~(B part6 $B!c(BROSE$B!d(B
        [$BF|;~(B]
               2011$BG/(B02$B7n(B24$BF|(B($BLZ(B) 13:30 - 18:15 ($B<uIU(B13:00-)
               2011$BG/(B03$B7n(B03$BF|(B($BLZ(B) 13:30 - 18:15 ($B<uIU(B13:00-)

        [$B2q>l(B] JPCERT$B%3!<%G%#%M!<%7%g%s%;%s%?!<2q5D<<(B
               $BEl5~ET@iBeED6h?@ED6SD.(B3-17 $BW"@%%S%k(B 11$B3,(B
               (MAP) https://www.jpcert.or.jp/about/img/jpcert_map.gif

        [$BDj0w(B] 20$BL>!?2s(B
               ($B;22C<TB??t$N>l9g$O$*?=$79~$_@hCe=g$H$J$j$^$9(B)

        [$BBP>](B] C/C++$B8@8l$G$N%=%U%H%&%'%"3+H/$K7H$o$k%W%m%0%i%^!"%W%m(B
               $B%8%'%/%H%^%M!<%8%c!"%3!<%I%l%S%e%"!<!"IJ<A4IM}C4Ev<T!"(B
               $B%W%m%0%i%^!&%(%s%8%K%"$N650iC4Ev<T!"Ey(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      JPCERT/CC
      C/C++ $B%;%-%e%"%3!<%G%#%s%0%;%_%J!<(B 2010 $B!w(B $BEl5~(B $B$*?=$79~$_(B
      https://www.jpcert.or.jp/event/securecoding-TKO-application.html


$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B
$B"#:#=5$N$R$H$/$A%a%b(B
$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B

$B!{>pJs%;%-%e%j%F%#7n4V(B

      2$B7n$O!V>pJs%;%-%e%j%F%#7n4V!W$G$9!#>pJs%;%-%e%j%F%#$NIa5Z7<H/6/(B
      $B2=$N$?$a$NMM!9$J3hF0$,4k2h$5$l$F$$$^$9!#(BJPCERT/CC $B$b!V@)8f7O%7%9(B
      $B%F%`%;%-%e%j%F%#%+%s%U%!%l%s%9(B2011$B!W$r$O$8$a$H$7$F!"$$$/$D$+$N%$(B
      $B%Y%s%H$K6(NO$7$F$$$^$9!#(B

      $B>pJs%;%-%e%j%F%#$NIa5Z7<H/$N0l=u$H$7$F!"$3$N5!2q$r$43hMQ$/$@$5$$!#(B

    $B;29MJ88%(B ($BF|K\8l(B)
      $BFb3U41K<>pJs%;%-%e%j%F%#%;%s%?!<(B
      $B>pJs%;%-%e%j%F%#7n4V(B[$B9qL1$r<i$k>pJs%;%-%e%j%F%#%5%$%H(B]
      http://www.nisc.go.jp/security-site/month/index.html

      $BFb3U41K<>pJs%;%-%e%j%F%#%;%s%?!<(B
      $B>pJs%;%-%e%j%F%#7n4V(B
      http://www.nisc.go.jp/active/kihon/ism_index.html

      JPCERT/CC WEEKLY REPORT 2010-02-03
      $B!Z:#=5$N$R$H$/$A%a%b![>pJs%;%-%e%j%F%#7n4V(B
      https://www.jpcert.or.jp/wr/2010/wr100401.html#Memo


$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B
$B"#(BJPCERT/CC $B$+$i$N$*4j$$(B
$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B

$B!~K\%l%]!<%H$K4X$9$k$*Ld$$9g$o$;$O(B editor@jpcert.or.jp $B08$K$*4j$$CW$7$^(B
  $B$9!#$?$@$7!"(BJPCERT/CC $B$G$O!"Ds6!$9$k>pJs$K$D$$$F6qBNE*$JFbMF$=$N$b$N$K(B
  $B$D$$$F$N$4<ALd$K$O$*Ez$($G$-$J$$>l9g$b$"$j$^$9!#$^$?%P%C%/%J%s%P!<$O!"(B
  $B0J2<$N(B URL $B$+$i$4MxMQ$$$?$@$1$^$9!#(B

        https://www.jpcert.or.jp/wr/

$B!~K\%a!<%j%s%0%j%9%H$N9XFI?=9~$d9XFIDd;_!"$^$?EPO?$7$?EE;R%a!<%k%"%I%l%9(B
  $B$NJQ99$J$I$K$D$-$^$7$F$O!"0J2<$N(B URL $B$r;2>H$7$F$/$@$5$$!#(B

        https://www.jpcert.or.jp/announce.html

$B!~(BJPCERT/CC $B$X$N%;%-%e%j%F%#%$%s%7%G%s%H$NJs9pJ}K!$K$D$$$F$O0J2<$N(B URL
  $B$r;2>H$7$F$/$@$5$$!#(B

        https://www.jpcert.or.jp/form/

$B0J>e!#(B
__________

2011 (C) JPCERT/CC
-----BEGIN PGP SIGNATURE-----

iQEcBAEBCAAGBQJNSKltAAoJEDF9l6Rp7OBISf0H/0Lay/d4Xaw1hXZB1UGetrov
Z1m8TODtQPZGERGSB7pyakhKWvCylb5XVsEw+yf4z5QkjcNVH3HKh86p4giWZXbu
mnry0vh8NhOcLuECHgynWlVDIiliNTONl5dT5v1jm8fDoe5RjJ323J1obRR3Qxgg
kmlTOJE+fGVvN68Y8VMXgqh6yuNJKQ0gx9AMDJ/7/7haP8QOscx4ENi6gxyDKZlz
N9iXVd1bwip4409M/1ULNhzYJGorWsG+TAWGsnhESgIfjTF/4BdYFKjK9iGP4tXE
bc8Hx6XsLDMassCIBSgPiTuLBbeVs2ohZCM2r7pCXOHoMtj01irJczAJ+3/BIe4=
=lftd
-----END PGP SIGNATURE-----