-----BEGIN PGP SIGNED MESSAGE-----
======================================================================
 JPCERT-PR-2006-0002
 JPCERT/CC
JPCERT/CC $B3hF035MW(B [ 2006$BG/(B1$B7n(B1$BF|(B $B!A(B 2006$BG/(B3$B7n(B31$BF|(B ]
$BH/9TF|(B: 2006$BG/(B04$B7n(B21$BF|(B
======================================================================
$B!x(B1. $B%$%s%7%G%s%HJs9p(B
 http://www.jpcert.or.jp/ir/
 $B>pJs%7%9%F%`$K$*$1$k%$%s%7%G%s%H$H$O!"@5Ev$J8"8B$r$b$?$J$$?M$,%3%s(B
$B%T%e!<%?$rit@5$kmxmq$9$k$h$&$j%3%s%t%e!<%?$n%;%-%e%j%f%#$k4x$o$k;v7o!"(b
$B=PMh;v$NA4HL$r;X$7$^$9!#$3$N$h$&$J%$%s%7%G%s%H$,H/@8$7$?>l9g!"$=$NHo32(B
$B$N3HBg$r:G>.8B$K$9$k$?$a$N9TF0$r!"2f!9$O%$%s%7%G%s%HBP1~(B ($B%l%9%]%s%9(B)
$B$H8F$s$G$$$^$9!#(B
 JPCERT/CC $B$G$O!"9-$/3'MM$K%$%s%7%G%s%H$K4X$9$k>pJsDs6!$N$46(NO$r$*4j$$(B
$B$7$F!"%$%s%7%G%s%HBP1~$N%5!<%s%9$r9t$c$f$*$j$^$9!#(b
 JPCERT/CC $B$,(B 2006$BG/(B1$B7n(B1$BF|$+$i(B2006$BG/(B3$B7n(B31$BF|$^$G$N4V$K<unn$7$?%3%s%t%e!<(b
$B%?%;%-%e%j%F%#%$%s%7%G%s%H$K4X$9$kJs9p$N7o?t$O(B 763$B7o$G$7$?!#(B
 $BCm(B: $B$3$3$K$"$2$??t;z$O!"(BJPCERT/CC $B$,<u$1iu$1$?js9p$n7o?t$g$9!#=>$C$F!"(B
 $B<b:]$n%"%?%c%/$nh/@87o?t$d!"ho327o?t$rn`?d$g$-$k$h$&$j?tcm$g$o$"(b
 $B$j$^$;$s!#$^$?N`7?$4$H$N<b:]$nh/@8hfn($r<($9$b$n$g$b$"$j$^$;$s!#(b
 $B0lDj0J>e$N4|4V$KEO$k%"%/%;%9$NMWLs%l%]!<%h$b4^$^$l$k$?$a!"%"%/%;(b
 $B%9$N2s?t$HJs9p7o?t$b0lHL$KBP1~$7$^$;$s!#$^$?!"Js9p85$K$O!"9qFb30(B
 $B$N%5%$%H$,4^$^$l$^$9!#(B
I. $B%$%s%7%G%s%HJs9p$NAw?.85$K$h$kJ,N`(B
 JPCERT/CC $B$,<unn$7$?%$%s%7%g%s%hjs9p$naw?.85$r%h%c%w%l%y%k%i%a%$%s$g(b
$BJ,N`$7$?$b$N$N$&$A!"7o?t$NB?$$$b$N$O0J2<$ndl$j$g$9!#(b
 .jp 292 $B7o(B
 .com 237 $B7o(B
 .br 57 $B7o(B
 .kr 52 $B7o(B
 .fr 48 $B7o(B
 .edu 29 $B7o(B
 .net 27 $B7o(B
II. $B%$%s%7%G%s%HJs9p$h$jGI@8$7$?DLCNO"Mm(B
 JPCERT/CC $B$+$i9qFb30$N4XO"$9$k%5%$%H$KDLCNO"Mm$7$?7o?t$O(B 373$B7o$G$9!#(B
$B$3$NDLCNO"Mm?t$O!"%"%/%;%985$J$I$X$NO"MmCg2p0MMj$r4^$`%$%s%7%G%s%HJs9p(B
$B$K4p$E$$$F9T$o$l$?$b$N$G$9!#(B
III. $B%$%s%7%G%s%HJs9p$N%?%$%WJLJ,N`(B
(1) $B%W%m!<%v!"%9%-%c%s!"$=$nb>IT?3$J%"%/%;%9(B (scan)
 JPCERT/CC $B$G$O!"KI8f$K@.8y$7$?%"%?%C%/$d!"%3%s%T%e!<%?(b/$b%5!<%s%9(b/$b<ee@(b
$B$NC5::$r0U?^$7$?%"%/%;%9!"$=$NB>$NIT?3$J%"%/%;%9Ey!"%7%9%F%`$N%"%/%;%9(B
$B8"$K$*$$$F1F6A$,@8$8$J$$!"$^$?$O!"L5;k$G$-$k%"%/%;%9$K$D$$$F(B 501$B7o$NJs(B
$B9p$r<unn$7$f$$$^$9!#(b
 $B$3$N$h$&$JC5::$O!"<+f02=%d!<%k$rmq$$$f9-ho0o$keo$kg$0u$n%[%9%h$kbp$7(b
$B$F9T$J$o$l$F$$$^$9!#%;%-%e%j%F%#>e$N<ee@$rj|cv$7$f$$$k$h!"<ee@$nb8:_$r(b
$B8!=P$5$l!"%[%9%H$X$N?/F~Ey$5$^$6$^$J%"%?%C%/$r<u$1$k2dg=@-$,$"$j$^$9!#(b
$B;29MJ88%(B [1] [2] [3] [4] [5] [6] $B$r$4;2>H$/$@$5$$!#(B
 22 (ssh) 145$B7o(B (*1)
 1023 41$B7o(B (*1)
 9898 (monkeycom) 40$B7o(B
 5554 (sgi-esphttp) 39$B7o(B (*1)
 80 (http) 16$B7o(B (*1)
 445 (microsoft-ds) 11$B7o(B (*1)
 15118 9$B7o(B
 3410 (networklenss) 7$B7o(B
 1026 (cap) 6$B7o(B
 21 (ftp) 5$B7o(B
 6346 (gnutella-svc)		 4$B7o(B
 443 (https) 4$B7o(B (*1)
 41523 4$B7o(B
 1027 4$B7o(B
 $BAm9gE*$J%W%m!<%v!"%9%-%c%s(b 177$B7o(B (*2)
 (*1) $B%o!<%`$k$h$k46@w$n;n$_$d%o!<%`$j$i$k$h$c$f@_cv$5$l$?%p%c%/%i%"(b
 $B$+$i$N?/F~$N;n$_$H;W$o$l$k%"%/%;%9$,Js9p$5$l$F$$$^$9!#;29MJ88%(B
 [7] [8] [9] [10] [11] [12] [13] [14] [15] [16] [17] [18] [19]
 [20] [21] [22] [23] [24] [25] [26] [27] [28] $B$r$4;2>H$/$@$5$$!#(B
 $B$^$?!"0J2<$n(b URL $B$b$4;2>H$/$@$5$$!#(B
 TCP 1025$BHV%]!<%h$x$n%9%-%c%s$na}2c$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2005/at050012.txt
 Microsoft $B@=IJ$N@H<e@-$r;h$c$feage$9$k%o!<%`$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2005/at050008.txt
 Microsoft $B@=IJ$K4^$^$l$k@H<e@-$k4x$9$kcm0u4-5/(b
	http://www.jpcert.or.jp/at/2005/at050007.txt
 TCP 1433$BHV%]!<%h$x$n%9%-%c%s$na}2c$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2005/at050006.txt
 VERITAS Backup Exec $B$K4^$^$l$k@H<e@-$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2005/at050004.txt
 OpenSSH $B$N@H<e@-$r;h$c$?%7%9%f%`$x$n?/f~$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2005/at050003.txt
 phpBB $B$N@H<e@-$r;h$c$feage$9$k%o!<%`$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2004/at040011.txt
 Windows LSASS $B$N@H<e@-$r;h$c$feage$9$k%o!<%`(b W32/Sasser
 http://www.jpcert.or.jp/at/2004/at040006.txt
 Status Tracking Note TRJVN-2004-02
 W32/Sasser $B%o!<%`(b
 http://jvn.jp/tr/TRJVN-2004-02/
 JP Vendor Status Note JVNCA-2004-02
 $BBgNL$KEE;R%a!<%k$rg[?.$9$k%o!<%`(b
 http://jvn.jp/cert/JVNCA-2004-02/
 Netsky.Q $B$N%5!<%s%91?mqk832967b$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2004/at040002.txt
 Microsoft ASN.1 Library $B$N@H<e@-$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2004/at040001.txt
 TCP 139$BHV%]!<%h$x$n%9%-%c%s$na}2c$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2003/at030007.txt
 Microsoft IIS 5.0 $B$N@H<e@-$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2003/at030003.txt
 TCP 135$BHV%]!<%h$x$n%9%-%c%s$na}2c$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2003/at030005.txt
 Windows RPC $B$N@H<e@-$r;hmq$9$k%o!<%`$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2003/at030006.txt
 OpenSSL $B$N@H<e@-$r;h$c$feage$9$k(b Apache/mod_ssl $B%o!<%`(b
 http://www.jpcert.or.jp/at/2002/at020006.txt
 TCP 1433$BHV%]!<%h$x$n%9%-%c%s$na}2c$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2002/at020002.txt
 Microsoft IIS $B$N@H<e@-$r;h$c$feage$9$k%o!<%`(b
 http://www.jpcert.or.jp/at/2001/at010018.txt
 Microsoft IIS $B$N@H<e@-$r;h$c$feage$9$k%o!<%`(b "Code Red II"
 http://www.jpcert.or.jp/at/2001/at010020.txt
 80$BHV%]!<%h(b (HTTP) $B$X$N%9%-%c%s$NA}2C$K4X$9$kCm0U4-5/(B
 http://www.jpcert.or.jp/at/2001/at010023.txt
 (*2) $BAm9gE*$J%W%m!<%v%9%-%c%s$h$o!"f10lh/?.85$+$i$nj#?t%]!<%h$kbp$9(b
 $B$k%9%-%c%s$J$I!"$$$/$D$+$N%W%m!<%v%9%-%c%s>pJs$r$^$H$a$F$4Js9p(B
 $B$$$?$@$$$?$b$N$G$9!#(B
(2) $BAw?.%X%C%@$r:>>N$7$?EE;R%a!<%k$ng[aw(b (forged)
 JPCERT/CC $B$G$O!":9=P?M%"%I%l%9$J$I$NAw?.%X%C%@$r:>>N$7$?EE;R%a!<%k$n(b
$BG[Aw$K$D$$$F(B 125$B7o$NJs9p$r<unn$7$f$$$^$9!#(b
 $BEE;R%a!<%k$naw?.%x%c%@$r:>>N$7$F!"%a!<%k$ncf7q$k$o4xm?$7$f$$$j$$bh;0(b
$B$N%5%$%H$X$N%a!<%kg[aw$,9t$j$o$l$f$$$^$9!#$3$n7k2l!"b?nl$n%(%i!<%a!<%k(b
$B$,:n@.$5$l!"7W;;5!;q8;$d%M%C%H%o!<%/nn0h$,>CHq$5$l$k2DG=@-$,$"$j$^$9!#(B
 $B$^$?!":9=P?M%"%I%l%9$r:>>N$5$l$?>l9g!"$3$l$i$N%a!<%k$nh/?.85$g$"$k$h(b
$B$$$&5?$$$r$b$?$l$k2DG=@-$,$"$j$^$9!#Aw?.%X%C%@$r:>>N$7$?EE;R%a!<%k$ng[(b
$BAw$K$D$$$F$O;29MJ88%(B [20] [22] [29] $B$r$4;2>H$/$@$5$$!#(B
(3) $B%7%9%F%`$X$N?/F~(B (intrusion)
 JPCERT/CC $B$G$O!"4IM}<t8"8b$nepmq$,g'$a$i$l$k>l9g$r4^$`%7%9%F%`$X$N?/(B
$BF~$K$D$$$F(B 6$B7o$NJs9p$r<unn$7$f$$$^$9!#(b
 $B?/F~J}K!$H$7$F$O!"<!$n$h$&$j;vnc$,js9p$5$l$f$$$^$9!#(b
 - $B@H<e$j%q%9%o!<%i$ramev$j967b$g2rfi$5$l?/f~$5$l$?(b
 $B$J$I(B
 $B?/F~$r<u$1$?>l9g$NBP1~$K$D$$$F$O!"0J2<$n(b URL $B$G8x3+$7$F$$$kJ8=q!V%3(B
$B%s%T%e!<%?%;%-%e%j%f%#%$%s%7%g%s%h$x$nbp1~!w$n(b V. $B$*$h$S(B VI. $B$r;2>H$7(B
$B$F$/$@$5$$!#(B
 $B%3%s%T%e!<%?%;%-%e%j%f%#%$%s%7%g%s%h$x$nbp1~(b
 http://www.jpcert.or.jp/ed/2002/ed020002.txt
 $B:#2s<unn$7$?js9p$k$*$$$f!"?/f~8e$k9t$j$o$l$?a`:n$n$&$a!"<g$j$b$n$r0j(b
$B2<$k>R2p$7$^$9!#(B
 - $BEv3:%5%$%H$r7PM3$7$?B>%5%$%H$X$N%"%/%;%9(B ($B%o!<%`$r4^$`(b)
 - $B%7%9%F%`$N2~$6$s(B ($B%U%!%$%k$NCV$-49$(!"%m%0$N>C5n!"(BWeb $B%Z!<%8$n2~(b
 $B$6$s$J$I(B)
(4) Web $B56Au:>5=(B (phishing)
 JPCERT/CC $B$G$O!"6d9T$J$I$N%5%$%H$G$"$k$H:>>N$7$F!"(BWeb $B$N%U%)!<%`$j$i(b
$B$+$iF~NO$5$l$?8}:BHV9f$d%-%c%C%7%e%+!<%i$n0e>ZHV9f$H$$$C$?8D?M>pJs$rEp(B
$B$_<h$k(b Web $B56Au:>5=$K$D$$$F(B 84$B7o$NJs9p$r<unn$7$f$$$^$9!#(b
 Web $B56Au:>5=$KMQ$$$k(B web $B%5%$%H$N9=C[$rL\E*$H$7$?9T0Y$K$O!"%7%9%F%`(B
$B$X?/F~$9$k!"%I%a%$%s$r>h$C<h$k$j$i$n9t0y$,$"$j$^$9!#(b
 Web $B56Au:>5=(B (phishing) $B$NF'$_Bf%5!<%p$k4x$9$kcm0u4-5/(b
 http://www.jpcert.or.jp/at/2005/at050002.txt
 DNS $B%5!<%p$n@_dj$h%i%a%$%sl>$NEPO?$K4X$9$kCm0U4-5/(B
 http://www.jpcert.or.jp/at/2005/at050005.txt
 $B%7%9%F%`$,(B Web $B56Au:>5=$KMQ$$$i$l$?>l9g$NBP1~$K$D$$$F$O!"0J2<$n(b URL
$B$G8x3+$7$F$$$kJ8=q!V%3%s%T%e!<%?%;%-%e%j%f%#%$%s%7%g%s%h$x$nbp1~!w$n(b
V. $B$*$h$S(B VI.$B$r;2>H$7$F$/$@$5$$!#(B
 $B%3%s%T%e!<%?%;%-%e%j%f%#%$%s%7%g%s%h$x$nbp1~(b
 http://www.jpcert.or.jp/ed/2002/ed020002.txt
 $B$^$?!"(BWeb $B56Au:>5=$KBP$9$k(B Web $B%V%i%&%6$N@_Dj$K4X$7$F$O!";29MJ88%(B 
[30] $B$r$4;2>H$/$@$5$$!#(B
(5) $B$=$NB>(B (other)
 JPCERT/CC $B$G$O!">e5-(B (1) $B$+$i(B (4) $B$K4^$^$l$J$$%$%s%7%G%s%H(B ($B%5!<%s%9(b
$B1?MQK832(B "DoS"$B!"%3%s%T%e!<%?%&%#%k%9$d(b SPAM $B%a!<%k$n<u?.!"2m6u@a5a!"$=(b
$B$NB>$K4X$9$kLd$$9g$o$;$J$I(B) $B$K$D$$$F(B 78$B7o$NJs9p$r<unn$7$f$$$^$9!#(b
 DNS $B$N:F5"E*$JLd9g$;$r;H$C$?(B DDoS $B967b$K4X$9$kCm0U4-5/(B
 http://www.jpcert.or.jp/at/2006/at060004.txt
 $B0J>e(B (1) $B$+$i(B (5) $B$r$^$H$a$?$b$N$,!"0J2<$ni=$g$9!#(b
 scan forged intrusion phishing other Total
 -----------------------------------------------------------------
 1$B7n(B 199 120 4 27 39 389
 2$B7n(B 145 3 1 31 22 202
 3$B7n(B 157 2 1 26 17 203
 -----------------------------------------------------------------
 501 125 6 84 78 794
 scan : $B%W%m!<%v!"%9%-%c%s!"$=$nb>IT?3$J%"%/%;%9(B
 forged : $BAw?.%X%C%@$r:>>N$7$?EE;R%a!<%k$ng[aw(b
 intrusion : $B%7%9%F%`$X$N?/F~(B
 phishing : $BG'>Z>pJsEy$NIT@5<hf@(b
 other : $B$=$NB>(B
$B!x(B2. $B%$%s%?!<%m%c%hdje@4qb,%7%9%f%`(b (ISDAS) $B1?MQ(B
 http://www.jpcert.or.jp/isdas/
 $B%$%s%?!<%m%c%h>e$K@_CV$7$?J#?t$N%;%s%5!<$+$if@$i$l$k>pJs$r2r@O$9$k$H(B
$B$H$b$K!"@$$NCf$KN.I[$9$k%;%-%e%j%F%#@H<e@->pJs$J$I$r$"$o$;$FAm9gE*$KI>(B
$B2A$7$?>e$G!"%;%-%e%j%F%#M=KI4QB,$K4X$9$k>pJs$rDs6!$9$k%5!<%s%9$r9t$j$c(b
$B$F$$$^$9!#(B
I. $B%$%s%?!<%m%c%hdje@4qb,%7%9%f%`$n2~ni(b
 2006$BG/(B3$B7n(B27$BF|$h$j!"DjE@4QB,%7%9%F%`(B (ISDAS) $B$N?7%7%9%F%`$X$N0\9T$r<b(b
$B;\$7$^$7$?!#?7%7%9%F%`$G$O!"2<5-$n5!g=di2c5z$s8x3+fbmf$njq99$r9t$$$^$7(b
$B$?!#(B
 1. $B8x3+%0%i%U$N?.Mj@-8~>e(B
 $B0lIt$N%;%s%5!<$nfc0[$j4qb,7k2l$ra4bn$kh?1g$7$j$$$h$&5!g=2~a1$r9t(b
 $B$$$^$7$?!#(B
 2. $B8x3+%0%i%U$N4|4V5Z$S!"99?7IQEY$NJQ99(B
 $B8x3+%0%i%U$N4|4V$r;0%v7n$*$h$S0lG/$KJQ99$7!"99?74V3V$r0l=54V$KJQ(B
 $B99$7$^$7$?!#(B
 3. $B4XO">pJs$N8x3+(B
 $B%$%s%7%G%s%HH/@8;~$J$I4QB,>u67$KBg$-$JJQ2=$,$"$C$?>l9g!">e5-$N8x(B
 $B3+%0%i%U$H$OJL$K4XO">pJs$r8x3+$7$^$9!#(B
 $B$^$?!"(B2004$BG/(B12$B7n(B1$BF|$h$j8x3+$7$F$^$$$j$^$7$?4QB,%G!<%?$n(b CSV $B%U%!%$%k(B
$B$K$h$k8x3+$O!"%7%9%F%`0\9T$KH<$$(b 2006$BG/(B3$B7n(B31$BF|$r$b$C$F=*N;$5$;$F$$$?$@(B
$B$-$^$7$?!#$4MxMQ$$$?$@$-$^$7$F@?$K$"$j$,$H$&$4$6$$$^$7$?!#(B
II. $B%]!<%h%9%-%c%s3567(b
 $B%$%s%?!<%m%c%hdje@4qb,%7%9%f%`$n4qb,7k2l$o%9%-%c%s?d0\$ri=$9%0%i%u$h(b
$B$7$F(B JPCERT/CC $B$N(B Web $B%Z!<%8$rdl$8$f8x3+$7$f$$$^$9!#(b $B%"%/%;%9@h%]!<%h(b
$BJL%0%i%U$O%9%-%c%s%m%0$r%"%/%;%9@h%]!<%hjl$k=87w$7!"am7w$r%;%s%5!<$nbf(b
$B?t$G3d$C$?J?6QCM$rMQ$$:n@.$7$F$$$^$9!#(B
 JPCERT/CC$B%$%s%?!<%m%c%hdje@4qb,%7%9%f%`$n@bl@(b
 http://www.jpcert.or.jp/isdas/readme.html
 2006$BG/(B1$B7n(B1$BF|$+$i(B2006$BG/(B3$B7n(B31$BF|$^$G$N4V$K(B ISDAS $B$G4QB,$5$l$?%"%/%;%9@h(B
$B%]!<%h$k4x$9$kj?6qcm$n>e0L(B1$B0L!A(B5$B0L!"(B6$B0L!A(B10$B0L$^$G$N?d0\$r0J2<$n%0%i%u(b
$B$K<($7$^$9!#(b
 - $B%"%/%;%9@h%]!<%hjl%0%i%u(b top1-5 (2006$BG/(B1$B7n(B1$BF|(B-3$B7n(B31$BF|(B)
 http://www.jpcert.or.jp/isdas/2006/2006q1top1-5_port.png
 - $B%"%/%;%9@h%]!<%hjl%0%i%u(b top6-10 (2006$BG/(B1$B7n(B1$BF|(B-3$B7n(B31$BF|(B)
 http://www.jpcert.or.jp/isdas/2006/2006q1top6-10_port.png
 $B$^$?!"$h$jD94|4V$N%9%-%c%s?d0\$rI=$9%0%i%U$H$7$F!"(B2005$BG/(B4$B7n(B1$BF|$+$i(B
2006$BG/(B3$B7n(B31$BF|$^$G$N4|4V$K$*$1$k!"%"%/%;%9@h%]!<%h$k4x$9$kj?6qcm$n>e0L(B1 
$B0L!A(B5$B0L!"(B6$B0L!A(B10$B0L$^$G$N?d0\$r0J2<$n%0%i%u$k<($7$^$9!#(b
 - $B%"%/%;%9@h%]!<%hjl%0%i%u(b top1-5 (2005$BG/(B4$B7n(B1$BF|(B-2006$BG/(B3$B7n(B31$BF|(B)
 http://www.jpcert.or.jp/isdas/2006/2006q1top1-5_port_year.png
 - $B%"%/%;%9@h%]!<%hjl%0%i%u(b top6-10 (2005$BG/(B4$B7n(B1$BF|(B-2006$BG/(B3$B7n(B31$BF|(B)
 http://www.jpcert.or.jp/isdas/2006/2006q1top6-10_port_year.png
III. $B$*$b$J%$%s%7%G%s%H$K$*$1$k4QB,>u67(B
 $B9-HO0O$K1F6A$9$k82Cx$J%$%s%7%G%s%H$O$"$j$^$;$s$G$7$?!#$^$?!"%"%/%;%9(B
$B85CO0hJL$N4QB,798~$K$D$$$F$bF1MM$K82Cx$J%$%s%7%G%s%H$O4QB,$5$l$^$;$s$G(B
$B$7$?!#$?$@$7(B ISDAS $B%7%9%F%`$G$O0MA3$H$7$F%o!<%`ey$,860x$h9m$($i$l$kb?(b
$B?t$N%9%-%c%s$r4QB,$7B3$1$F$*$j!"Dj>oE*$JCm0U$HKI1R$,I,MW$G$9!#(B
VI. $B$=$NB>(B
(1) eCSIRT.net IDS $B%M%C%H%o!<%/$x$n6(no(b
 JPCERT/CC $B$G$O!"%h!<%m%c%q$n(b CSIRT $B%3%_%e%K%F%#(B TF-CSIRT $B$G9T$J$o$l(B
$B$F$$$k(B IDS $B%M%C%H%o!<%/$x$n5;=q6(no$r$7$f$$$^$9!#>\:Y$K$D$-$^$7$F$O0J(B
$B2<$n;29mj88%(b [31] [32] $B$r$4;2>H$/$@$5$$!#(B
$B!x(B3. $B@H<e@->pJsN.DL(B
 http://www.jpcert.or.jp/vh/
JPCERT/CC $B$G$O!"@H<e@-4xo">pJs$rE,@Z$JHO0O$K3+<($7!"bp:v$nb%?j$r?^$k$?(b
$B$a$N3hF0$r9T$J$C$F$$$^$9!#9qFb$G$O!"7P:Q;:6H>J9p<(!v%=%u%h%&%'%"ey@h<e(b
$B@-4XO">pJs<h074p=`!w$k$*$$$f!"@=ij3+h/<t$h$n%3!<%g%#%m!<%7%g%s$r9t$j$&(b
$BD4@05!4X$H$7$F;XDj$5$l$F$$$^$9!#$^$?!"JF9q(B CERT/CC $B$d1Q9q(B NISCC $B$H$N6((B
$BNO4X78$r7k$S!"9qFb$N$_$J$i$:@$3&E*$J5,LO$G@H<e@-4xo">pJs$NN.DLBP:v6HL3(B
$B$r?J$a$F$$$^$9!#(B
I. $B%3!<%g%#%m!<%7%g%s$r9t$$8x3+$7$?@h<e@->pJs$*$h$SBP1~>u67(B
 2006$BG/(B1$B7n(B1$BF|$+$i(B2006$BG/(B3$B7n(B31$BF|$^$G$N4V$K!"(BJPCERT/CC $B$,F|K\9qFb$N@=IJ(B
$B3+H/<t(b ($B%Y%s%@(B) $B$J$I$N4XO"AH?%$H$N%3!<%g%#%m!<%7%g%s$r9t$j$$!"8x3+$7$?(b
$B@H<e@->pJs$*$h$SBP1~>u67$O(B 11$B7o$G$9!#(B
 $B$3$N$&$A!"7P:Q;:6H>J9p<(!v%=%u%h%&%'%"ey@h<e@-4xo">pJs<h074p=`!w$k=>$C(B
$B$F!"FHN)9T@/K!?M>pJs=hM}?d?J5!9=(B (IPA) $B$KJs9p$5$l!"8x3+$5$l$?@H<e@->p(B
$BJs$*$h$SBP1~>u67$O(B 8$B7o$G$9!#(B
 JVN#6CA72ADB: $BD9:j8)EE;R8)D#%7%9%F%`$K$*$1$kG'>Z>pJs$K4X$9$k@H<e@-(b
 JVN#836B21C0: $BD9:j8)EE;R8)D#%7%9%F%`$K$*$1$kG'>Z=hM}$K4X$9$k@H<e@-(b
 JVN#73133641: Eudora $BF|K\8lHG$,;HMQ$G$-$J$/$J$k@H<e@-(b
 JVN#89344424: $BJ#?t$N%a!<%k%/%i%$%"%s%h%=%u%h$k$*$1$k!"e:iu%u%!%$%k$k$h$j%a!<%k%/%i%$%"%s%h%=%u%h$,;hmqitg=$k$j$k@h<e@-(b
 JVN#77886599: $B$O$F$J%D!<%k%p!<$k$*$1$k(b URL $B>pJs$N07$$$K4X$9$kLdBj(B
 JVN#41550845: $BD9:j8)EE;R8)D#%7%9%F%`$K$*$1$k(B SQL $B%$%s%8%'%/%7%g%s$N@H<e@-(b
 JVN#65542239: $B%O%$%Q!<f|5-%7%9%f%`$k$*$$$f%a!<%k$nit@5aw?.$,2dg=$j@h<e@-(b
 JVN#27365476: the Minnu's filer2 $B$K$*$$$F!";HMQCf$N%f!<%6$n8"8b$gjl$n%f!<%6$kg$0u$n(b Ruby $B%9%/%j%W%H$r<b9t$5$l$k@h<e@-(b
 $B$^$?!";D$j$N(B 3$B7o$O3$30(B CSIRT $B$H$N%Q!<%h%j!<%7%c%w$k4p$e$-!"(bjpcert/cc 
$B$,F|K\9qFb$N%Y%s%@$N%3!<%g%#%m!<%7%g%s$r9t$$!"@h<e@->pJs$r8x3+$7$^$7$?!#(B
 JVNVU#693909: PAM-MySQL $B$K%5!<%s%91?mqk832(b (DoS) $B967b$r<u$1$k@h<e@-(b
 JVNVU#953860: Microsoft Windows $B$N8"8B>:3J$K4X$9$k@H<e@-(b
 JVNVU#834865: sendmail $B$K$*$1$k%7%0%J%k$N07$$$K4X$9$k@H<e@-(b
II. $B3$30(B CSIRT $B$H$N@H<e@-4xo">pJsN.DL6(NOBN@)$N9=C[!"9q:]E*$J3hF0(B
 JPCERT/CC $B$G$O!"9q:]E*$JOHAH$_$K$*$1$k@H<e@-4xo">pJs$N1_3j$JN.DL$N$?(B
$B$a!"3$30$N(B CSIRT $B$N6(NO4X78$r9=C[!"6/2=$7$F$$$^$9!#6qBNE*$K$O!"Js9p$5(B
$B$l$?@H<e@-4xo">pJs$N6&M-!"%Y%s%@$X$NDLCN$N6&F1%*%Z%l!<%7%g%s!"8x3+f|$n(b
$BD4@0!"3F9q%Y%s%@>pJsEy8x3+>pJs$N6&M-$r9T$C$F$$$^$9!#$^$?!">pJsN.DL$r8z(B
$BN(2=$9$k$?$a$N6&DL%,%$%I%i%$%s$d%7%9%F%`9=C[!"%G!<%?8r49%u%)!<%^%c%h!"(b
$B%"%I%P%$%6%j$NI8=`%U%)!<%^%c%h$n:vdjey$r6&f1$g?j$a$f$$$^$9!#(b
 $B<g$j4x785!4x$ojf9q(b CERT/CC$B!"1Q9q(B NISCC (UNIRAS) $B$G$9!#3F5!4X$N>\:Y$K(B
$B$D$$$F$O;29MJ88%(B [33] [34] $B$r$4;2>H$/$@$5$$!#$^$?0J2<$n(b URL $B$b$4;2>H$/(B
$B$@$5$$!#(B
 $B@H<e@-4xo">pJs%3!<%g%#%m!<%7%g%s35mw(b
 http://www.jpcert.or.jp/vh/
III. $BF|K\9qFb$N@H<e@->pJsN.DLBN@)$N@0Hw(B
 JPCERT/CC $B$G$O!"7P:Q;:6H>J9p<(!v%=%u%h%&%'%"ey@h<e@-4xo">pJs<h074p=`!w(b
($B0J2<!"k\4p=`(b) $B$K=>$C$F!"F|K\9qFb$N@H<e@->pJsN.DLBN@)$r@0Hw$7$F$$$^$9!#(B
$BK\4p=`$K$D$$$F$O;29MJ88%(B [35] $B$r$4;2>H$/$@$5$$!#$^$?0J2<$n(b URL $B$b$4;2(B
$B>H$/$@$5$$!#(B
 $B@H<e@-4xo">pJs%3!<%g%#%m!<%7%g%s35mw(b
 http://www.jpcert.or.jp/vh/
 $B!V>pJs%;%-%e%j%F%#Aa4|7Y2|%Q!<%h%j!<%7%c%w!w$n1?mq$r3+;o(b
 http://www.jpcert.or.jp/press/2004/0708.txt
 $B>pJs%;%-%e%j%F%#Aa4|7Y2|%Q!<%h%j!<%7%c%w%,%$%i%i%$%s(b
 http://www.jpcert.or.jp/vh/partnership_guide.pdf
 $B>pJs%;%-%e%j%F%#Aa4|7Y2|%Q!<%h%j!<%7%c%w%,%$%i%i%$%s(b($b2~d{hg(b)
 http://www.jpcert.or.jp/vh/partnership_guide2005.pdf
 JPCERT/CC $B@H<e@-4xo">pJs<h$j07$$%,%$%i%i%$%s(b
 http://www.jpcert.or.jp/vh/guideline.pdf
$B<g$j3hf0$o0j2<$ndl$j$g$9!#(b
(1) $B<uiu5!4x$g$"$kfhn)9t@/k!?m>pJs=hM}?d?J5!9=(B (IPA) $B$H$NO"7H(B
 $BK\4p=`$G$O!"<uiu5!4x$k(b IPA$B!"D4@05!4X$K(B JPCERT/CC $B$,;XDj$5$l$F$$$^$9!#(B
$B$3$N$3$H$+$i!"(BJPCERT/CC $B$O(B IPA $B$H6[L)$K>pJs8r49$r9T$C$F$$$^$9!#$^$?!"(B
$B@H<e@-8!>Z%D!<%k$k4x$7$f$b(b IPA $B$H$NO"7H$N$b$HJ,@O$r9T$C$F$$$^$9!#(BIPA 
$B$N>\:Y$K$D$$$F$O;29MJ88%(B [36] $B$r$4;2>H$/$@$5$$!#(B
 $BK\4p=`$K$*$1$k(B IPA $B$N3hF0$*$h$S;MH>4|Kh$NFO=P>u67$K$D$$$F$O!";29MJ8(B
$B8%(B [37] $B$r$4;2>H$/$@$5$$!#(B
(2) $BF|K\9qFb%Y%s%@$H$NO"7H(B
 $BK\4p=`$G$O!"(BJPCERT/CC $B$,@H<e@->pJs$rDs6!$9$k@h$H$7$F!"F|K\9qFb$N%Y%s(B
$B%@%j%9%H(B($B@=IJ3+H/<t%j%9%h(b)$b$r:n@.$7!"3f%y%s%@$no"mm@h>pJs$r@0Hw$9$k$3$H(B
$B$,<($5$l$f$$$^$9!#(bjpcert/cc $B$G$O!"O"Mm@h>pJs$N@0Hw$K:]$7!"%Y%s%@$N3'MM(B
$B$K@=IJ3+H/<t$h$7$f$nepo?$r$*4j$$$7$f$$$^$9!#epo?$n>\:Y$K$D$$$F$O!"0J2<(b
$B$N(B URL $B$r$4;2>H$/$@$5$$!#$J$*!"(B2006$BG/(B3$B7n(B31$BF|$N;~E@$G(B 121$B<r$n%y%s%@$n3'(b
$BMM$K!"$4EPO?$r$$$?$@$$$F$$$^$9!#(B
 JPCERT $B%3!<%g%#%m!<%7%g%s%;%s%?!<@=ij3+h/<t%j%9%hepo?5,ls(b
 http://www.jpcert.or.jp/vh/agreeement.pdf
(3) JP Vendor Status Notes (JVN) $B$N1?MQ(B
 JPCERT/CC $B$O(B IPA $B$H6&F1$G!"(BJVN $B$r1?MQ$7$F$$$^$9!#(BJVN $B$O!"(BJPCERT/CC 
$B$,<h$j07$c$?@h<e@->pJs$K4X$7$FF|K\9qFb$N@=IJ3+H/<t$n@h<e@-$x$nbp1~>u67(B
$B$r8x3+$9$k%5%$%H$G$9!#$3$l$i$N@H<e@->pJs$K$O!"K\OHAH$_$K;22C$7$F$$$kF|(B
$BK\9qFb$N@=IJ3+H/<t$nbp1~>u67$b4^$^$l$F$$$^$9!#(BJVN $B$K$D$$$F$O0J2<$n(b URL 
$B$r$4;2>H$/$@$5$$!#(B
 JP Vendor Status Notes (JVN)
 http://jvn.jp/
 JVN $B$G$O>e5-!V(BI. $B%3!<%g%#%m!<%7%g%s$r9t$$8x3+$7$?@h<e@->pJs$*$h$SBP(B
$B:v>u67!W0J30$KEv3:4|4VCf$K(B 16$B7o$N@H<e@->pJs$r8x3+$7$^$7$?!#(B
 JVNVU#181038: Windows $B%a%?%U%!%$%k%O%s%I%i$G8F$S=P$5$l$k(B GDI Escape $B%U%!%s%/%7%g%s$K@H<e@-(b
 JVNTA06-005A: Windows $B%a%?%U%!%$%k$N@H<e@-$r=$@5$9$k%q%c%a$n8x3+(b
 JVNTA06-010A: Microsoft Windows, Outlook, Exchange $B$K4X$9$k@H<e@-(b
 JVNTA06-011A: Apple QuickTime $B$KJ#?t$N@H<e@-(b
 JVNTA06-018A: Oracle $B@=IJ72$KJ#?t$N@H<e@-(b
 JVNVU#998297: Internet Explorer $B$K(B ActiveX Control $B$N(B Kill bit $B3NG'$r2sHr$G$-$k@H<e@-(b
 JVNTA06-032A: Winamp $B$N(B Playlist $B%U%!%$%k=hM}$K%P%C%U%!%*!<%p!<%u%m!<$n@h<e@-(b
 JVNTA06-038A: Mozilla $B@=IJ72$KJ#?t$N@H<e@-(b
 JVNVU#169164: Oracle PL/SQL Gateway $B$N(B HTTP request $B8!>Z5!9=$K@H<e@-(b
 JVNTA06-045A: Microsoft Windows, Windows Media Player, Internet Explorer $B$K@H<e@-(b
 JVNTA06-053A: Mac OS X $B$N(B Web $B%V%i%&%6(B Safari $B$KG$0U$N%3!<%i<b9t$n@h<e@-(b
 JVNTA06-062A: Apple $B<r$n(b Mac $B@=IJ$KJ#?t$N@H<e@-(b
 JVNTA06-073A: Microsoft Excel $B$r4^$`(B Microsoft Office $B@=IJ72$KJ#?t$N@H<e@-(b
 JVNTA06-075A: Adobe Macromedia Flash $B$r4^$`@=IJ$KG$0U$N%3!<%i$r<b9t$5$l$k@h<e@-(b
 JVNTA06-081A: sendmail $B$K$*$1$k%7%0%J%k$N07$$$K4X$9$k@H<e@-(b
 JVNVU#876678: Microsoft Internet Explorer $B$N(B createTextRange() $B$K4X$9$k@H<e@-(b
(4) $B@H<e@-4xo">pJs%O%s%I%j%s%0%o!<%/%7%g%c%w$n3+:e(b
 JPCERT/CC $B@=IJ3+H/<t%j%9%h$kepo?$$$?$@$$$f$$$k9qfb%y%s%@$no"mmc4ev<t(b
$B$K$*=8$^$j$$$?$@$-!"(B2$B7n(B3$BF|$K@H<e@-4xo">pJs%O%s%I%j%s%0%o!<%/%7%g%c%w$r(b
$B3+:E$7$^$7$?!#$3$3$G$O@H<e@-4xo">pJs%O%s%I%j%s%06HL3$d4XO"3hF0$N:G?7>u(B
$B67$r>R2p$9$k$H$H$b$K!"%Y%s%@C4Ev<t$h$n0u8+8r49$r9t$j$$$^$7$?!#(b
(5) JVN $B%*%s%i%$%s%"%s%1!<%h$n<b;\(b
 JVN $B$K7G:\$5$l$k@H<e@-4xo">pJs$NMxMQ>u67$dFbMF$K4X$9$k4|BT!"MWK>$r(B
Web $B$K$h$k%"%s%1!<%h$gd4::$7$^$7$?!#(b
 $BD4::4|4V(B: 2006$BG/(B2$B7n(B8$BF|(B($B?e(B)$B!A(B20$BF|(B($B7n(B)$B!"(B3$B7n(B23$BF|(B($B?e(B)$B!A(B27$BF|(B($B7n(B)
$BK\%"%s%1!<%h$nd4::7k2l$r$b$h$k(b JVN $B$N2~A1$K8~$1$F!"8=:_=`Hw$r?J$a$F$$(B
$B$^$9!#(B
$B!x(B4. $B8x3+J8=q(B
 2006$BG/(B1$B7n(B1$BF|$+$i(B2006$BG/(B3$B7n(B31$BF|$^$G$N4V$K(B JPCERT/CC $B$,8x3+$7$?J8=q$O!"(B
$BCm0U4-5/(B 4$B7o!"5;=Q%a%b(B 1$B7o!"(BJPCERT/CC $B%l%]!<%h(b 12$B7o!"5Z$SBh(B4$B;MH>4|$N3h(B
$BF035MW$G$9!#>\:Y$O0J2<$ndl$j$g$9!#(b
I. $BCm0U4-5/(B 4$B7o(B
 http://www.jpcert.or.jp/at/
 2006$BG/(B01$B7n(B06$BF|(B Microsoft Windows $B%a%?%U%!%$%k=hM}$N@H<e@-$kbp$9$k%;%-%e%j%f%#99?7%w%m%0%i%`$k$d$$$f(b
 2006$BG/(B03$B7n(B17$BF|(B Adobe Flash Player $B$N@H<e@-$k4x$9$kcm0u4-5/(b
 2006$BG/(B03$B7n(B23$BF|(B sendmail $B$N@H<e@-$k4x$9$kcm0u4-5/(b
 2006$BG/(B03$B7n(B29$BF|(B DNS $B$N:F5"E*$JLd9g$;$r;H$C$?(B DDoS $B967b$K4X$9$kCm0U4-5/(B
II. $B5;=Q%a%b(B 1$B7o(B
 http://www.jpcert.or.jp/ed/
 2006$BG/(B03$B7n(B16$BF|(B P2P $B%U%!%$%k6&M-%=%U%H%&%'%"$K$h$k>pJsO3$($$Ey$N6<0r$k$d$$$f(b
III. JPCERT/CC $B%l%]!<%h(b 12$B7o(B
 http://www.jpcert.or.jp/wr/
 JPCERT/CC $B%l%]!<%hfb$g07$c$?%;%-%e%j%f%#4xo">pJs$N9`L\?t$O9g7W$7$F(B 
68$B7o$G$9!#$=$N$&$A(B 12$B7o$O!V:#=5$N0l8}%a%b!W$N%3!<%j!<$g>R2p$7$?>pJs$G(B
$B$9!#(B
IV. $B3hF035MW(B 1$B7o(B
 http://www.jpcert.or.jp/pr/
 2006$BG/(B01$B7n(B16$BF|(B JPCERT/CC $B3hF035MW(B [ 2005$BG/(B10$B7n(B1$BF|(B $B!A(B 2005$BG/(B12$B7n(B31$BF|(B ]
$B!x(B5. $B$=$NB>$N3hF0(B
 2006$BG/(B1$B7n(B1$BF|$+$i(B2006$BG/(B3$B7n(B31$BF|$^$G$N4V$K(B JPCERT/CC $B$,<b;\$7$?!">e5-(B
$B!x(B1.$B!A(B4. $B0J30$N3hF0$O0J2<$ndl$j$g$9!#(b
I. $BBh(B2$B2s%+!<%m%.!<%a%m%sbg3xf|k\9;!&(bjpcert/cc $B%;%-%e%j%F%#%;%_%J!<(b
 1$B7n(B23$BF|$K?@8M%O!<%p!<%i%s%i%;%s%?!<%s%k$g%;%-%e%j%f%#%;%_%j!<$r3+:e(b
$B$7$^$7$?!#JF9q(B CERT/CC $B$N%(%-%9%Q!<%h$r9v;u$k7^$(!"@hc<>pJs%;%-%e%j%F%#(B
$B650i!&71N}%$%K%7%"%A%V$H9q:]E83+$N>R2p!"$*$h$S9qFb$G$N(B JPCERT/CC $B$N3h(B
$BF0$r>R2p$9$k%;%_%J!<$r3+:e$7$^$7$?!#>\:Y$O;29MJ88%(B [38] [39] $B$r$4;2>H(B
$B$/$@$5$$!#(B
II. $B=EMW%$%s%U%i;v6H<t8~$1>pJs%;%-%e%j%F%#%;%_%J!<(b
 3$B7n(B23$BF|$K?7=I$N5~2&%W%i%6%[%F%k$G!"(BJPCERT/CC $B$HFHN)9T@/K!?M>pJs=hM}(B
$B?d?J5!9=(B(IPA)$B$H6&:E$G=EMW%$%s%U%i;v6H<t8~$1$n>pJs%;%-%e%j%F%#%;%_%J!<(b
$B$r3+:E$7$^$7$?!#(B140$BL><e$n>7BT5R$r>7$-!"9qFb30$N>pJs%;%-%e%j%F%#4XO"$N(B
$B%(%-%9%Q!<%h$r9v;u$k7^$(!"=emw%$%s%u%i;v6h<t$k$h$c$f$n;v6h7qb3@-7w2h$d(b
$BK!E*LdBj!"=EMW%$%s%U%i;v6H<t$k$*$1$kbp1~;vncey$n>R2p!"9q:]E*$J>pJs$K78(B
$B$k=EMW%$%s%U%iKI8nEy$NF08~$J$I$r$4>R2p$9$k%;%_%J!<$r3+:e$7$^$7$?!#>\:Y(B
$B$O;29MJ88%(B [40] $B$r$4;2>H$/$@$5$$!#(B
III. APCERT $B;vL36I1?1D(B
 http://www.jpcert.or.jp/english/secretariat.html
 $B%"%8%"B@J?MNCO0h$N(B CSIRT $B$N=8$^$j$G$"$k!"(BAPCERT (Asia Pacific
Computer Emergency Response Team) $B$N;vL36I$rC4Ev$7$F$$$^$9!#>\:Y$O;29M(B
$BJ88%(B [41] $B$r$4;2>H$/$@$5$$!#$^$?;vL36I$H$7$F!"0J2<$n3hf0$r9t$$$^$7$?!#(b
(1) APCERT 2006 $B3+:E(B
 3$B7n(B28$BF|$+$i(B31$BF|$K!"Cf9q(B CNCERT/CC $B$H6&:E$G(B APCERT $B$NG/<!2q9g(b APCERT
2006 $B$rKL5~$G3+:E$7$^$7$?!#>\:Y$O;29MJ88%(B [42] [43] $B$r$4;2>H$/$@$5$$!#(B
(2) APCERT Web $B%j%K%e!<%"%k(b
 APCERT $B$N(B Web $B%5%$%H$N%G%6%$%s$r0l?7$7$^$7$?!#>\:Y$O;29MJ88%(B [41] $B$r(B
$B$4;2>H$/$@$5$$!#(B
IV. FIRST $B%l%W%j%+%5!<%p$n1?mq(b
 FIRST (Forum of Incident Response and Security Teams) $B$N(B Web $B%5!<%p(b
www.first.org $B$N%l%W%j%+%5!<%p(b ($B%_%i!<%5!<%p(b) $B$r1?MQ$7!"(BFIRST $B$N3hF0$K(B
$B9W8%$7$F$$$^$9!#(BFIRST $B$N>\:Y$K$D$$$F$O;29MJ88%(B [44] $B$r$4;2>H$/$@$5$$!#(B
V. FIRST Steering Committee $B$X$N;22h(B
 FIRST Steering Committee $B$N%a%s%P!<$h$7$f!"(bjpcert/cc $B$N?&0w$,A*=P$5(B
$B$l!"(BFIRST $B$N1?1D$K6(NO$7$F$$$^$9!#(BFIRST Steering Committee $B$K$D$$$F$O(B
$B;29MJ88%(B [45] $B$r$4;2>H$/$@$5$$!#(B
VI. $B$=$NB>9V1i$J$I(B
(1) $B>pJs%;%-%e%j%F%#8)L1%;%_%J!<(b (2006$BG/(B2$B7n(B22$BF|(B)
 $B<g:e(b: $BJ<8k8)!":bcdk!?m$r$g$&$4>pJs650i5!9=(B
 $B>\:Y$K$D$$$F$O;29MJ88%(B [46] $B$r$4;2>H$/$@$5$$!#(B
(2) $B<rcdk!?mf|k\%m%c%h%o!<%/%$%s%u%)%a!<%7%g%s%;%s%?!<(b
 $BBh(B28$B2sDL>oAm2qJs9p8e9V1i2q(B (2006$BG/(B3$B7n(B3$BF|(B)
 $B>\:Y$K$D$$$F$O;29MJ88%(B [47] [48] $B$r$4;2>H$/$@$5$$!#(B
__________
Appendix. $B;29MJ88%(B
[1] IN-98.02: New Tools Used For Widespread Scans
 http://www.cert.org/incident_notes/IN-98.02.html
[2] IN-98.04: Advanced Scanning
 http://www.cert.org/incident_notes/IN-98.04.html
[3] IN-98.05: Probes with Spoofed IP Addresses
 http://www.cert.org/incident_notes/IN-98-05.html
[4] IN-98.06: Automated Scanning and Exploitation
 http://www.cert.org/incident_notes/IN-98-06.html
[5] IN-99-01: "sscan" Scanning Tool
 http://www.cert.org/incident_notes/IN-99-01.html
[6] Packet Filtering for Firewall Systems
 http://www.cert.org/tech_tips/packet_filtering.html
[7] CA-2001-19 "Code Red" Worm Exploiting Buffer Overflow in IIS Indexing Service DLL
 http://www.cert.org/advisories/CA-2001-19.html
[8] CA-2001-26 Nimda Worm
 http://www.cert.org/advisories/CA-2001-26.html
[9] IN-2002-04: Exploitation of Vulnerabilities in Microsoft SQL Server
 http://www.cert.org/incident_notes/IN-2002-04.html
[10] CA-2002-27 Apache/mod_ssl Worm
 http://www.cert.org/advisories/CA-2002-27.html
[11] AL-2002.12 W32/BUGBEAR@MM Virus
 http://www.auscert.org.au/render.html?it=2447
[12] AU-2002.008 Updated Information Regarding BugBear Virus
 http://www.auscert.org.au/render.html?it=2452
[13] IN-2002-06: W32/Lioten Malicious Code
 http://www.cert.org/incident_notes/IN-2002-06.html
[14] IN-2003-01: Malicious Code Propagation and Antivirus Software Updates
 http://www.cert.org/incident_notes/IN-2003-01.html
[15] CA-2003-04 MS-SQL Server Worm
 http://www.cert.org/advisories/CA-2003-04.html
[16] CA-2003-08 Increased Activity Targeting Windows Shares
 http://www.cert.org/advisories/CA-2003-08.html
[17] CA-2003-09 Buffer Overflow in Core Microsoft Windows DLL
 http://www.cert.org/advisories/CA-2003-09.html
[18] CA-2003-28 Buffer Overflow in Windows Workstation Service
 http://www.cert.org/advisories/CA-2003-28.html
[19] CERT/CC Current Activity W32/Welchia Worm
 http://www.cert.org/current/archive/2003/08/18/archive.html#welchia
[20] IN-2004-01: W32/Novarg.A Virus
 http://www.cert.org/incident_notes/IN-2004-01.html
[21] TA04-041A: Multiple Vulnerabilities in Microsoft ASN.1 Library
 http://www.us-cert.gov/cas/techalerts/TA04-041A.html
[22] TA04-028A: W32/MyDoom.B Virus
 http://www.us-cert.gov/cas/techalerts/TA04-028A.html
[23] Sasser $B%o!<%`$k$d$$$f$n$*cn$i$;(b
 http://www.microsoft.com/japan/security/incident/sasser.mspx
[24] Microsoft Windows $B$N%;%-%e%j%F%#=$@5%W%m%0%i%`(B (835732) (MS04-011)
 http://www.microsoft.com/japan/technet/security/bulletin/MS04-011.mspx
[25] US-CERT Current Activity: W32/Sasser
 http://www.us-cert.gov/current/archive/2004/06/24/archive.html#sasser
[26] US-CERT Vulnerability Note VU#909678
 http://www.kb.cert.org/vuls/id/909678
[27] US-CERT Current Activity: Santy Worm
 http://www.us-cert.gov/current/archive/2004/12/21/archive.html#Santy
[28] US-CERT Vulnerability Note VU#497400
 http://www.kb.cert.org/vuls/id/497400
[29] Email Bombing and Spamming
 http://www.cert.org/tech_tips/email_bombing_spamming.html
[30] Frequently Asked Questions About Malicious Web Scripts Redirected by Web Sites
 http://www.cert.org/tech_tips/malicious_code_FAQ.html
[31] TERENA - TF-CSIRT - Collaboration of Security Incident Response Teams
 http://www.terena.nl/tech/task-forces/tf-csirt/
[32] The European CSIRT Network
 http://www.ecsirt.net/
[33] CERT Coordination Center (CERT/CC)
 http://www.cert.org/
[34] National Infrastructure Security Co-ordination Centre (NISCC)
 http://www.niscc.gov.uk/
[35] $B@H<e@-4xo">pJs<h07bn@)$k$d$$$f(b
 http://www.meti.go.jp/policy/netsecurity/vulhandlingG.html
[36] $BFHN)9T@/K!?M>pJs=hM}?d?J5!9=(B
 http://www.ipa.go.jp/
[37] $B>pJs=hM}?d?J5!9=%;%-%e%j%F%#%;%s%?!<(b $B@H<e@-4xo">pJs$N<h07$$(b
 http://www.ipa.go.jp/security/vuln/
[38] $B%+!<%m%.!<%a%m%sbg3xf|k\9;(b
 http://www.cmuj.jp/
[39] $BBh(B2$B2s%+!<%m%.!<%a%m%sbg3xf|k\9;!&(bjpcert/cc $B%;%-%e%j%F%#%;%_%J!<(b
 http://www.cmuj.jp/05jpcert_seminar2.html
[40] $B=EMW%$%s%U%i;v6H<t8~$1>pJs%;%-%e%j%F%#%;%_%J!<(b
 http://www.ipa.go.jp/security/event/2005/infra-sem/
[41] Asia Pacific Computer Emergency Response Team (APCERT)
 http://www.apcert.org/
[42] APCERT & CNCERT 2006 CONFERENCE
 http://www.apcert.org/events/calendar/2006/0328-31.html
[43] National Computer network Emergency Response technical Team/Coordination Center of China (CNCERT/CC)
 http://www.cert.org.cn/
[44] Forum of Incident Response and Security Teams (FIRST)
 https://www.first.org/
[45] FIRST Steering Committee
 https://www.first.org/about/organization/sc.html
[46] $B>pJs%;%-%e%j%F%#8)L1%;%_%J!<(b
 http://www.cmuj.jp/05pref/index2.html
[47] $B<rcdk!?mf|k\%m%c%h%o!<%/%$%s%u%)%a!<%7%g%s%;%s%?!<(b (JPNIC)
 http://www.nic.ad.jp/
[48] $B<rcdk!?mf|k\%m%c%h%o!<%/%$%s%u%)%a!<%7%g%s%;%s%?!<(b
 $BBh(B28$B2sAm2q(B($BDL>oAm2q(B)$B5D;vO?(B
 http://www.nic.ad.jp/ja/materials/general-meeting/20060303/minutes.html
__________
&lt;JPCERT/CC $B$+$i$N$*CN$i$;$H$*4j$$(B&gt;
 $BK\J8=q$G2r@b$7$?%3%s%T%e!<%?%;%-%e%j%f%#%$%s%7%g%s%h$b4^$a!"%$%s%?!<(b
$B%M%C%H>e$G0z$-5/$3$5$l$k$5$^$6$^$J%3%s%T%e!<%?%;%-%e%j%f%#%$%s%7%g%s%h(b
$B$K4X$9$k>pJs$,$"$j$^$7$?$i!"(Binfo@jpcert.or.jp $B$^$G$4Ds6!$/$@$5$$$^$9$h(B
$B$&$*4j$$$7$^$9!#Js9pMM<0$k4x$7$f$o0j2<$n(b URL $B$r$4Mw$/$@$5$$(B
 http://www.jpcert.or.jp/form/
$BJs9pMM<0$k$45-:\$n$&$(!"(b
 info@jpcert.or.jp
$B$^$G$*Aw$j$/$@$5$$!#(B
 JPCERT/CC $B$KD:$$$?Js9p$O!"Js9p<t$nn;2r$j$7$k!"$=$n$^$^b>AH?%Ey$K3+<((b
$B$9$k$3$H$O$"$j$^$;$s!#(BJPCERT/CC $B$NAH?%35MW$K$D$-$^$7$F$O!"(B
 http://www.jpcert.or.jp/
$B$r$4;2>H$/$@$5$$!#(B
 JPCERT/CC $B$G$O!"%3%s%T%e!<%?%;%-%e%j%f%#%$%s%7%g%s%h$k4x$9$k>pJs$r?W(B
$BB.$K$4Ds6!$9$k$?$a$K!"%a!<%j%s%0%j%9%h$r3+@_$7$f$$$^$9!#epo?$nj}k!ey!"(b
$B>\$7$/$O!"(B
 http://www.jpcert.or.jp/announce.html
$B$r$4;2>H$/$@$5$$!#(B
__________
$BCm(B: JPCERT/CC $B$N3hF0$O!"FCDj$N8D?M$dAH?%$NMx1W$rJ]>c$9$k$3$H$rL\E*$H$7(B
$B$?$b$N$G$O$"$j$^$;$s!#8DJL$NLdBj$K4X$9$k$*Ld$$9g$o$;Ey$KBP$7$FI,$:$*Ez(B
$B$($G$-$k$H$O8B$i$J$$$3$H$r$"$i$+$8$a$4N;>5$/$@$5$$!#$^$?!"K\7o$K4X$9$k(B
$B$b$N$b4^$a!"(BJPCERT/CC $B$X$N$*Ld$$9g$o$;Ey$,A}2C$9$k$3$H$,M=A[$5$l$k$?$a!"(B
$B$*Ez$($G$-$k>l9g$G$b$42sEz$,CY$l$k2DG=@-$,$"$k$3$H$r2?B4$4>5CN$*$-$/$@(B
$B$5$$!#(B
$BCm(B: $B$3$NJ8=q$O!"%3%s%T%e!<%?%;%-%e%j%f%#%$%s%7%g%s%h$k4x$9$k0lhle*$j>p(B
$BJsDs6!$rL\E*$H$9$k$b$N$G$"$j!"FCDj$N8D?M$dAH?%$KBP$9$k!"8DJL$N%3%s%5%k(B
$B%F%#%s%0$rL\E*$H$7$?$b$N$G$O$"$j$^$;$s!#$^$?(B JPCERT/CC $B$O!"$3$NJ8=q$K(B
$B5-:\$5$l$?>pJs$NFbMF$,@53N$G$"$k$3$H$KEX$a$F$*$j$^$9$,!"@53N@-$r4^$a0l(B
$B@Z$NIJ<a$k$d$$$f$3$l$rj]>Z$9$k$b$N$G$O$"$j$^$;$s!#$3$NJ8=q$K5-:\$5$l$?(B
$B>pJs$K4p$E$$$F!"5.J}$"$k$$$O5.AH?%$,$H$i$l$k9TF0(B / $B$"$k$$$O$H$i$l$J$+$C(B
$B$?9TF0$K$h$C$F0z$-5/$3$5$l$k7k2L$KBP$7$F!"(BJPCERT/CC $B$O2?$iJ]>c$rM?$($k(B
$B$b$N$G$O$"$j$^$;$s!#(B
__________
2006 (C) JPCERT/CC
 $B$3$NJ8=q$rE>:\$9$k:]$K$O!"A4J8$rE>:\$7$F$/$@$5$$!#$^$?!":G?7>pJs$K$D(B
$B$$$F$O(B JPCERT/CC $B$N(B Web $B%5%$%H(B
 http://www.jpcert.or.jp/
$B$r;2>H$7$F$/$@$5$$!#(B
 JPCERT/CC $B$N(B PGP $B8x3+80$O0J2<$n(b URL $B$+$iF~<j$g$-$^$9!#(b
 http://www.jpcert.or.jp/jpcert.asc
__________
$B2~D{MzNr(B
2006$BG/(B04$B7n(B21$BF|(B $B=iHG(B (JPCERT-PR-2006-0002)
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
iQCVAwUBREgW/ox1ay4slNTtAQGSZgP/aym7jaoH56/VD93vOxlz3AjknAl9Z6Yv
+9/UQgfRjrKB2zazymRCmGZXeldcMTYusseeExm+y86zGdamVoMd5heWbTBCKbrb
DYBBkjcGnYqRPBXbJ5cPnGG45nlx5NYkMtq/veIUGP5Wp01apUWUBQqKw5B1C3QK
20bFcF+yDyk=
=j5JT
-----END PGP SIGNATURE-----
</div><div class="naked_ctrl">
<form action="/index.cgi/contrast" method="get" name="gate">
<p><a href="http://altstyle.alfasado.net">AltStyle</a> $B$K$h$C$FJQ49$5$l$?%Z!<%8(b <a href="https://www.jpcert.or.jp/pr/2006/pr060002.txt">(-&gt;$B%*%j%8%J%k(B)</a>
/ <label>$B%"%I%l%9(B: <input type="text" name="naked_post_url" value="https://www.jpcert.or.jp/pr/2006/pr060002.txt" size="22" /></label> <label>$B%b!<%i(b: <select name="naked_post_mode">
<option value="default">$B%G%U%)%k%H(B</option>
<option value="speech">$B2;@<%v%i%&%6(b</option>
<option value="ruby">$B%k%SIU$-(B</option>
<option value="contrast" selected="selected">$BG[?'H?E>(B</option>
<option value="larger-text">$BJ8;z3HBg(B</option>
<option value="mobile">$B%b%P%$%k(B</option>
</select>
<input type="submit" value="$BI=<((b" />
</p>
</form>
</div>