-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256


                                                         JPCERT-WR-2016-2201
                                                                   JPCERT/CC
                                                                  2016-06-08

            <<< JPCERT/CC WEEKLY REPORT 2016-06-08 >>>

$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B
$B"#(B05/29($BF|(B)$B!A(B06/04($BEZ(B) $B$N%;%-%e%j%F%#4XO">pJs(B
$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B

== $BL\(B  $B<!(B ==================================================================

$B!Z(B1$B![(BNTP.org $B$N(B ntpd $B$KJ#?t$N@H<e@-(B
$B!Z(B2$B![%5%$%\%&%:(B $B%,%k!<%s$KJ#?t$N@H<e@-(B
$B!Z(B3$B![(BCisco Prime Network Analysis Module (NAM) $B$KJ#?t$N@H<e@-(B
$B!Z(B4$B![(BLenovo Accelerator Application $B$N%"%C%W%G!<%H5!G=$K@H<e@-(B
$B!Z(B5$B![(BWordPress $BMQ%W%i%0%$%s!V(BWP Mobile Detector$B!W$KG$0U$N%U%!%$%k$r%"%C%W%m!<%I2DG=$J@H<e@-(B
$B!Z(B6$B![(BDMM.com$B>Z7t@=$NJ#?t$N(B Android $B%"%W%j$K(B SSL $B%5!<%P>ZL@=q$N8!>ZITHw$N@H<e@-(B
$B!Z(B7$B![(BFonality ($B5l>N(B trixbox Pro) $B$KJ#?t$N@H<e@-(B
$B!Z(B8$B![!VJ?@.(B27$BG/(B1$B7n0JA0$N5lCOM}1!CO?^$N%=!<%9!W$K%G%#%l%/%H%j%H%i%P!<%5%k$N@H<e@-(B
$B!Z:#=5$N$R$H$/$A%a%b![(BIPA $B$,2~D{HG!VA}2C$9$k%$%s%?!<%M%C%H@\B35!4o$NITE,@Z$J>pJs8x3+$H$=$NBP:v!W8x3+(B

  $B"(>R2p$9$k%;%-%e%j%F%#4XO">pJs$NA*Dj4p=`$O0J2<$N%Z!<%8$r$4Mw$/$@$5$$!#(B
        https://www.jpcert.or.jp/wr/

  $B"((BHTML $BHG$*$h$S(B XML $BHG$O0J2<$N%Z!<%8$r$4Mw$/$@$5$$!#(B
        https://www.jpcert.or.jp/wr/2016/wr162201.html
        https://www.jpcert.or.jp/wr/2016/wr162201.xml
============================================================================


$B!Z(B1$B![(BNTP.org $B$N(B ntpd $B$KJ#?t$N@H<e@-(B

    $B>pJs8;(B
      US-CERT Current Activity
      Vulnerabilities Identified in Network Time Protocol Daemon (ntpd)
      https://www.us-cert.gov/ncas/current-activity/2016/06/03/Vulnerabilities-Identified-Network-Time-Protocol-Daemon-ntpd

    $B35MW(B
      NTP.org $B$N(B ntpd $B$K$O!"J#?t$N@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"1s3V$NBh;0<T(B
      $B$,!"%5!<%S%91?MQK832(B (DoS) $B967b$r9T$&$J$I$N2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - ntp-4.2.8p8 $B$h$jA0$N(B ntp-4 $B7O$N%P!<%8%g%s(B
      - ntp-4.3.93 $B$h$jA0$N(B ntp-4.3 $B7O$N%P!<%8%g%s(B

      $B$3$NLdBj$O!"3+H/<T$dG[I[85$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B ntp $B$r99?7(B
      $B$9$k$3$H$G2r7h$7$^$9!#>\:Y$O!"3+H/<T$dG[I[85$,Ds6!$9$k>pJs$r;2>H$7$F$/(B
      $B$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      Japan Vulnerability Notes JVNVU#94410990
      NTP.org $B$N(B ntpd $B$K%5!<%S%91?MQK832(B (DoS) $B$J$IJ#?t$N@H<e@-(B
      https://jvn.jp/vu/JVNVU94410990/

    $B4XO"J8=q(B ($B1Q8l(B)
      Network Time Protocol Project
      June 2016 ntp-4.2.8p8 NTP Security Vulnerability Announcement (HIGH)
      http://support.ntp.org/bin/view/Main/SecurityNotice#June_2016_ntp_4_2_8p8_NTP_Securi

$B!Z(B2$B![%5%$%\%&%:(B $B%,%k!<%s$KJ#?t$N@H<e@-(B

    $B>pJs8;(B
      Japan Vulnerability Notes JVN#26298347
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$k%5!<%S%91?MQK832(B (DoS) $B$N@H<e@-(B
      https://jvn.jp/jp/JVN26298347/

      Japan Vulnerability Notes JVN#25765762
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$k>pJsO3$($$$N@H<e@-(B
      https://jvn.jp/jp/JVN25765762/

      Japan Vulnerability Notes JVN#14749391
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$kJ#?t$N%G%#%l%/%H%j%H%i%P!<%5%k$N@H<e@-(B
      https://jvn.jp/jp/JVN14749391/

      Japan Vulnerability Notes JVN#18975349
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$kJ#?t$N%"%/%;%9@)8BITHw$N@H<e@-(B
      https://jvn.jp/jp/JVN18975349/

      Japan Vulnerability Notes JVN#32218514
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$k%*!<%W%s%j%@%$%l%/%H$N@H<e@-(B
      https://jvn.jp/jp/JVN32218514/

      Japan Vulnerability Notes JVN#33879831
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$k%"%/%;%9@)8BITHw$N@H<e@-(B
      https://jvn.jp/jp/JVN33879831/

      Japan Vulnerability Notes JVN#37121456
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$k%/%m%9%5%$%H%9%/%j%W%F%#%s%0$N@H<e@-(B
      https://jvn.jp/jp/JVN37121456/

      Japan Vulnerability Notes JVN#49285177
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$k%/%m%9%5%$%H%9%/%j%W%F%#%s%0$N@H<e@-(B
      https://jvn.jp/jp/JVN49285177/

      Japan Vulnerability Notes JVN#53542912
      $B%5%$%\%&%:(B $B%,%k!<%s$K$*$1$k%"%/%;%9@)8BITHw$N@H<e@-(B
      https://jvn.jp/jp/JVN53542912/

    $B35MW(B
      $B%5%$%\%&%:(B $B%,%k!<%s$K$O!"J#?t$N@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"1s3V$NBh(B
      $B;0<T$,!"%5!<%S%91?MQK832(B (DoS) $B967b$r9T$C$?$j!"%f!<%6$N%V%i%&%6>e$GG$(B
      $B0U$N%9%/%j%W%H$r<B9T$7$?$j$9$k$J$I$N2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - $B%5%$%\%&%:(B $B%,%k!<%s(B 3.0 $B$+$i(B 4.2 $B$^$G(B

      $B$3$NLdBj$O!"%5%$%\%&%:3t<02q<R$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K%5%$%\%&(B
      $B%:(B $B%,%k!<%s$r99?7$9$k$3$H$G2r7h$7$^$9!#>\:Y$O!"%5%$%\%&%:3t<02q<R$,Ds(B
      $B6!$9$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-977]$B%9%1%8%e!<%k$K4X$9$k%5!<%S%91?MQK832(B (DoS) $B$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8983

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-946][Internet Explorer 9$B$N8=>](B]$B%a!<%k$K4X$9$k1\Mw@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8919

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-973]PHP$B%W%m%0%i%`$K4X$9$k%Q%9!&%H%i%P!<%5%k$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/9306

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-974]$B%m%0$K4X$9$k%Q%9!&%H%i%P!<%5%k$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/9305

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-928]$B%a!<%k$K4X$9$kA`:n@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8845

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-932]$B%]!<%H%l%C%H$K4X$9$kA`:n@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/9020

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-934]$B%^%k%A%l%]!<%H$K4X$9$k1\Mw@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8877

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-988]$B%M%C%HO"7H$K4X$9$k(BOpen Redirect$B$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8987

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-989]API$B$K4X$9$k1\Mw@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8970

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-1000]$B%9%1%8%e!<%k$K4X$9$k%/%m%9%5%$%H%9%/%j%W%F%#%s%0$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/9303

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-953]$B%a!<%k$K4X$9$k%/%m%9%5%$%H%9%/%j%W%F%#%s%0$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8893

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-800]$B%a!<%k$K4X$9$k1\Mw@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8757

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-986][Mozilla Firefox$B$H(BGoogle Chrome$B$N8=>](B]$B%a!<%k$K4X$9$k1\Mw@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8982

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-948][CyVDB-963]$B%a!<%k$K4X$9$k1\Mw@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8897

      $B%5%$%\%&%:3t<02q<R(B
      [CyVDB-1032]$B%a!<%k$K4X$9$k1\Mw@)8B2sHr$N@H<e@-(B
      https://support.cybozu.com/ja-jp/article/8951

$B!Z(B3$B![(BCisco Prime Network Analysis Module (NAM) $B$KJ#?t$N@H<e@-(B

    $B>pJs8;(B
      US-CERT Current Activity
      Cisco Releases Security Updates
      https://www.us-cert.gov/ncas/current-activity/2016/06/01/Cisco-Releases-Security-Updates

    $B35MW(B
      Cisco Prime Network Analysis Module (NAM) $B$K$O!"J#?t$N@H<e@-$,$"$j$^$9!#(B
      $B7k2L$H$7$F!"1s3V$NBh;0<T$,!"G$0U$N%3!<%I$r<B9T$7$?$j!"%5!<%S%91?MQK832(B
      (DoS) $B967b$r9T$C$?$j$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - Cisco Prime Network Analysis Module (NAM) 6.1(1) $B$*$h$S$=$l0JA0$K$*$$$F(B nam-security-patch.6.1-2-final $B$rL$E,MQ$N$b$N(B
      - Cisco Prime Network Analysis Module (NAM) 6.2(1b) $B$*$h$S$=$l0JA0(B
      - Cisco Prime Virtual Network Analysis Module (vNAM) 6.1(1) $B$*$h$S$=$l0JA0$K$*$$$F(B nam-security-patch.6.1-2-final $B$rL$E,MQ$N$b$N(B
      - Cisco Prime Virtual Network Analysis Module (vNAM) 6.2(1b) $B$*$h$S$=$l0JA0(B

      $B$3$NLdBj$O!"(BCisco $B$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B Cisco Prime Network
      Analysis Module (NAM) $B$r99?7$9$k$+!"%Q%C%A$rE,MQ$9$k$3$H$G2r7h$7$^$9!#(B
      $B>\:Y$O!"(BCisco $B$,Ds6!$9$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($B1Q8l(B)
      Cisco Security Advisory
      Cisco Prime Network Analysis Module Unauthenticated Remote Code Execution Vulnerability
      https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160601-prime

      Cisco Security Advisory
      Cisco Prime Network Analysis Module Authenticated Remote Code Execution Vulnerability
      https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160601-prime2

      Cisco Security Advisory
      Cisco Prime Network Analysis Module Local Command Injection Vulnerability
      https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160601-prime1

      Cisco Security Advisory
      Cisco Prime Network Analysis Module IPv6 Denial of Service Vulnerability
      https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160601-prime3

$B!Z(B4$B![(BLenovo Accelerator Application $B$N%"%C%W%G!<%H5!G=$K@H<e@-(B

    $B>pJs8;(B
      US-CERT Current Activity
      Lenovo Accelerator Application Vulnerability
      https://www.us-cert.gov/ncas/current-activity/2016/06/02/Lenovo-Accelerator-Application-Vulnerability

    $B35MW(B
      Lenovo Accelerator Application $B$N%"%C%W%G!<%H5!G=$K$O!"@H<e@-$,$"$j$^(B
      $B$9!#7k2L$H$7$F!"1s3V$NBh;0<T$,!"Cf4V<T967b$r9T$&$3$H$K$h$C$F!"G$0U$N%3!<(B
      $B%I$r<B9T$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - Windows 10 $BEk:\$N(B Lenovo $B%N!<%H%V%C%/$K=i4|%$%s%9%H!<%k$5$l$F$$$k(B Lenovo Accelerator Application

      2016$BG/(B6$B7n(B8$BF|8=:_!"BP:v:Q$_$N%P!<%8%g%s$O8x3+$5$l$F$$$^$;$s!#(BLenovo
      Accelerator Application $B$r%"%s%$%s%9%H!<%k$9$k$3$H$r?d>)$7$^$9!#>\:Y$O!"(B
      $B%l%N%\$,Ds6!$9$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      $B%l%N%\(B $B%;%-%e%j%F%#(B $B%"%I%P%$%6%j(B
      Lenovo Accelerator Application $B$N%"%C%W%G!<%H$K$*$1$k@H<e@-(B
      https://support.lenovo.com/jp/ja/product_security/len_6718

$B!Z(B5$B![(BWordPress $BMQ%W%i%0%$%s!V(BWP Mobile Detector$B!W$KG$0U$N%U%!%$%k$r%"%C%W%m!<%I2DG=$J@H<e@-(B

    $B>pJs8;(B
      US-CERT Current Activity
      WP Mobile Detector Vulnerability
      https://www.us-cert.gov/ncas/current-activity/2016/06/03/WP-Mobile-Detector-Vulnerability

    $B35MW(B
      WP Mobile Detector $B$N(B resize.php $B$K$O!"@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"(B
      $B1s3V$NBh;0<T$,!"G$0U$N%U%!%$%k$r%"%C%W%m!<%I$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - WP Mobile Detector 3.6 $B$h$jA0$N%P!<%8%g%s(B

      $B$3$NLdBj$O!"3+H/<T$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B WP Mobile Detector
      $B$r99?7$9$k$3$H$G2r7h$7$^$9!#>\:Y$O!"3+H/<T$,Ds6!$9$k>pJs$r;2>H$7$F$/$@(B
      $B$5$$!#(B

    $B4XO"J8=q(B ($B1Q8l(B)
      WP Mobile Detector
      Changelog
      https://wordpress.org/plugins/wp-mobile-detector/changelog/

$B!Z(B6$B![(BDMM.com$B>Z7t@=$NJ#?t$N(B Android $B%"%W%j$K(B SSL $B%5!<%P>ZL@=q$N8!>ZITHw$N@H<e@-(B

    $B>pJs8;(B
      Japan Vulnerability Notes JVN#40898764
      DMM.com$B>Z7t@=$NJ#?t$N(B Android $B%"%W%j$K$*$1$k(B SSL $B%5!<%P>ZL@=q$N8!>ZITHw$N@H<e@-(B
      https://jvn.jp/jp/JVN40898764/

    $B35MW(B
      DMM.com$B>Z7t@=$NJ#?t$N(B Android $B%"%W%j$K$O!"(BSSL $B%5!<%P>ZL@=q$N8!>ZITHw$N(B
      $B@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"1s3V$NBh;0<T$,!"Cf4V<T967b$r9T$&$3$H$G!"(B
      $B0E9fDL?.$rEpD0$9$k$J$I$N2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k@=IJ$*$h$S%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - Android $B%"%W%j!V(BDMMFX Trade$B!W(B Ver.1.5.0 $B$*$h$S$=$l0JA0(B
      - Android $B%"%W%j!V(BDMMFX DEMO Trade$B!W(B Ver.1.5.0 $B$*$h$S$=$l0JA0(B
      - Android $B%"%W%j!V300Y%8%c%Q%s(B FX Trade$B!W(B Ver.1.4.0 $B$*$h$S$=$l0JA0(B

      $B$3$NLdBj$O!"3t<02q<R(BDMM.com$B>Z7t$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K3:Ev$9(B
      $B$k@=IJ$r99?7$9$k$3$H$G2r7h$7$^$9!#>\:Y$O!"3t<02q<R(BDMM.com$B>Z7t$,Ds6!$9(B
      $B$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      $B3t<02q<R(BDMM.com
      [16/05/30] Android$B%"%W%j%"%C%W%G!<%H$N$*CN$i$;(B
      http://fx.dmm.com/information/press/2016/2016053001/

      $B3t<02q<R(BDMM.com$B>Z7t(B
      Android$B%"%W%j%"%C%W%G!<%H$N$*CN$i$;(B
      https://www.gaitamejapan.com/support/news/2016/2016053001/

$B!Z(B7$B![(BFonality ($B5l>N(B trixbox Pro) $B$KJ#?t$N@H<e@-(B

    $B>pJs8;(B
      CERT/CC Vulnerability Note VU#754056
      Fonality contains a hard-coded password and embedded SSL private key
      https://www.kb.cert.org/vuls/id/754056

    $B35MW(B
      Fonality ($B5l>N(B trixbox Pro) $B$K$O!"J#?t$N@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"(B
      $B1s3V$NBh;0<T$,!"(Broot $B8"8B$GG$0U$N%3!<%I$r<B9T$7$?$j!"Cf4V<T967b$r<B9T(B
      $B$7$?$j$9$k$J$I$N2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - Fonality version 12.6 $B$*$h$S$=$l0J9_$N%P!<%8%g%s$G!"=$@5%Q%C%A$rE,MQ$7$F$$$J$$$b$N(B

      $B$3$NLdBj$O!"3+H/<T$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K(B Fonality $B$*$h$S(B
      Fonality $B$N%W%i%0%$%s$r99?7$9$k$3$H$G2r7h$7$^$9!#>\:Y$O!"3+H/<T$,Ds6!(B
      $B$9$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      Japan Vulnerability Notes JVNVU#99203738
      Fonality ($B5l>N(B trixbox Pro) $B$KJ#?t$N@H<e@-(B
      https://jvn.jp/vu/JVNVU99203738/

$B!Z(B8$B![!VJ?@.(B27$BG/(B1$B7n0JA0$N5lCOM}1!CO?^$N%=!<%9!W$K%G%#%l%/%H%j%H%i%P!<%5%k$N@H<e@-(B

    $B>pJs8;(B
      Japan Vulnerability Notes JVN#13794955
      $B!VJ?@.(B27$BG/(B1$B7n0JA0$N5lCOM}1!CO?^$N%=!<%9!W$K$*$1$k%G%#%l%/%H%j%H%i%P!<%5%k$N@H<e@-(B
      https://jvn.jp/jp/JVN13794955/

    $B35MW(B
      $B!VJ?@.(B27$BG/(B1$B7n0JA0$N5lCOM}1!CO?^$N%=!<%9!W$K$O!"%G%#%l%/%H%j%H%i%P!<%5(B
      $B%k$N@H<e@-$,$"$j$^$9!#7k2L$H$7$F!"$3$N@=IJ$r(B Windows $B>e$G1?MQ$7$F$$$k(B
      $B>l9g!"1s3V$NBh;0<T$,G$0U$N%U%!%$%k$r<hF@$9$k2DG=@-$,$"$j$^$9!#(B

      $BBP>]$H$J$k%P!<%8%g%s$O0J2<$NDL$j$G$9!#(B

      - 2016$BG/(B5$B7n(B25$BF|$h$jA0$K(B GitHub $B$G8x3+$5$l$F$$$?!VJ?@.(B27$BG/(B1$B7n0JA0$N5lCOM}1!CO?^$N%=!<%9!W(B

      $B$3$NLdBj$O!"9qEZCOM}1!$,Ds6!$9$k=$@5:Q$_$N%P!<%8%g%s$K!VJ?@.(B27$BG/(B1$B7n0J(B
      $BA0$N5lCOM}1!CO?^$N%=!<%9!W$r99?7$9$k$3$H$G2r7h$7$^$9!#>\:Y$O!"9qEZCOM}(B
      $B1!$,Ds6!$9$k>pJs$r;2>H$7$F$/$@$5$$!#(B

    $B4XO"J8=q(B ($BF|K\8l(B)
      $B9qEZCOM}1!(B
      $BJ?@.(B27$BG/(B1$B7n0JA0$N5lCOM}1!CO?^$N%=!<%9$N@H<e@-$KBP$9$k%"%C%W%G!<%H(B
      http://www.gsi.go.jp/johofukyu/johofukyu40062.html


$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B
$B"#:#=5$N$R$H$/$A%a%b(B
$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B

$B!{(BIPA $B$,2~D{HG!VA}2C$9$k%$%s%?!<%M%C%H@\B35!4o$NITE,@Z$J>pJs8x3+$H$=$NBP:v!W8x3+(B

      2016$BG/(B5$B7n(B31$BF|!">pJs=hM}?d?J5!9=(B (IPA) $B$O!"2~D{HG!VA}2C$9$k%$%s%?!<%M%C(B
      $B%H@\B35!4o$NITE,@Z$J>pJs8x3+$H$=$NBP:v!W$r8x3+$7$^$7$?!#(B2014$BG/$K8x3+$5(B
      $B$l$?=iHG$G$O!"%$%s%?!<%M%C%H@\B35!4o$rBP>]$H$7$?8!:w%(%s%8%s!V(BSHODAN$B!W(B
      $B$r>R2p$7!"%5!<%P5!G=$r;}$D%*%U%#%95!4o$r%M%C%H%o!<%/$K@\B3$7$?:]$N%;%-%e(B
      $B%j%F%#>e$N6<0R$K$D$$$F2r@b$7$F$$$^$7$?!#:#2s$N2~D{HG$G$O!"$h$j9-$/(B IoT
      $B5!4o$rBP>]$H$7$?5-=R$H$J$j!"?7$?$J8!:w%(%s%8%s!V(BCensys$B!W$K$D$$$F$N2r@b(B
      $B$bDI2C$5$l$^$7$?!#(B
      $B%l%]!<%H$N:G8e$K$O!"$3$l$i$N5!4o$r1?MQ$9$k>e$G<B;\$9$Y$-BP:v$H$7$F!"(B
      $B!V5!4o4IM}$NL@3N2=!W!V%M%C%H%o!<%/$K$h$kJ]8n!W!V5!4o$NE,@Z$J@_Dj!W$H$$(B
      $B$&(B 3$B9`L\$r$"$2$F$$$^$9!#(B

    $B;29MJ88%(B ($BF|K\8l(B)
      $B>pJs=hM}?d?J5!9=(B (IPA)
      IPA$B%F%/%K%+%k%&%)%C%A!VA}2C$9$k%$%s%?!<%M%C%H@\B35!4o$NITE,@Z$J>pJs8x3+$H$=$NBP:v!W(B
      https://www.ipa.go.jp/security/technicalwatch/20160531.html


$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B
$B"#(BJPCERT/CC $B$+$i$N$*4j$$(B
$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=(B

$B!~K\%l%]!<%H$K4X$9$k$*Ld$$9g$o$;$O(B editor@jpcert.or.jp $B08$K$*4j$$CW$7$^(B
  $B$9!#$?$@$7!"(BJPCERT/CC $B$G$O!"Ds6!$9$k>pJs$K$D$$$F6qBNE*$JFbMF$=$N$b$N$K(B
  $B$D$$$F$N$4<ALd$K$O$*Ez$($G$-$J$$>l9g$b$"$j$^$9!#$^$?%P%C%/%J%s%P!<$O!"(B
  $B0J2<$N(B URL $B$+$i$4MxMQ$$$?$@$1$^$9!#(B

        https://www.jpcert.or.jp/wr/

$B!~K\%a!<%j%s%0%j%9%H$N9XFI?=9~$d9XFIDd;_!"$^$?EPO?$7$?EE;R%a!<%k%"%I%l%9(B
  $B$NJQ99$J$I$K$D$-$^$7$F$O!"0J2<$N(B URL $B$r;2>H$7$F$/$@$5$$!#(B

        https://www.jpcert.or.jp/announce.html

$B!~(BJPCERT/CC $B$X$N%;%-%e%j%F%#%$%s%7%G%s%H$NJs9pJ}K!$K$D$$$F$O0J2<$N(B URL
  $B$r;2>H$7$F$/$@$5$$!#(B

        https://www.jpcert.or.jp/form/

$B0J>e!#(B
__________

2016 (C) JPCERT/CC
-----BEGIN PGP SIGNATURE-----

iQEcBAEBCAAGBQJXV2SrAAoJEDF9l6Rp7OBIjJMIAJQJNaXXdUF5KLtNqbpy9LMX
Mnp//vYVAdy43Xo+YcxczhTcgDIlXbKIsa75/qe5YH7R8fL1RzViWxX6oQVizWxq
U/doqOi9Avk5qWaDRa3qWqf2W52YEogbC+UoCc9q3IE8X+mvMeR391I+vslfEYu8
pGsvOwIrmVETCbqY9v3bDHcWilEcWp0DRCdefsBRYSHGl4wGLLrKCc9JaoxtHv/s
3rxmGepGuIrb+s1VM+31lIW6ji1OYw2MkXaU/w/wOVA9w0EQ5HpoB/qGnT3k0Ziy
yLj8O8mZxZpuVrqYUOMPX6PDXYB47E4bd5IvMAbN/yIfLzpwCogFKTLi3j2UlxA=
=8jmq
-----END PGP SIGNATURE-----