ROPæ¤œçŸ¥æ‰‹æ³•RAPã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ã‚‹

Defense

å…ˆæ—¥ã€PaX TeamãŒå…¬è¡¨ã—ãŸROPï¼ˆReturn-oriented Programmingï¼‰æ¤œçŸ¥æ‰‹æ³•RAPã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ã‚‹ã€‚ RAP: RIP ROP (H2HC 2015) ç”¨èªžã«é‡è¤‡ãŒã‚ã‚Šã¾ãŽã‚‰ã‚ã—ã„ãŒã€è«–æ–‡ã§ã¯Return Address ProtectionãŠã‚ˆã³Indirect Control Transfer Protectionã®äºŒã¤ã®æ‰‹æ³•ã‚’â€¦

2015-10-12

é›»å“ã‚’èµ·å‹•ã™ã‚‹Wordæ–‡æ›¸ã‚’ä½œã£ã¦ã¿ã‚‹

Word 2013ã‚’ä½¿ã„ã€VBAãƒžã‚¯ãƒã§é›»å“ã‚’èµ·å‹•ã™ã‚‹Wordæ–‡æ›¸ã‚’ä½œæˆã™ã‚‹æ–¹æ³•ã®ãƒ¡ãƒ¢ã€‚ ã¾ãšã€ã‚ªãƒ—ã‚·ãƒ§ãƒ³ã®ã€Œãƒªãƒœãƒ³ã®ãƒ¦ãƒ¼ã‚¶ãƒ¼è¨å®šã€ã§ã€Œé–‹ç™ºã€ã‚¿ãƒ–ã‚’è¡¨ç¤ºã™ã‚‹ã‚ˆã†ã«ã—ã¦ãŠãã€‚ æ¬¡ã«ã€é©å½“ãªWordæ–‡æ›¸ã‚’ä½œæˆã—ã€ã€Œé–‹ç™ºã€â†’ã€ŒVisual Basicã€ã‚’é¸æŠžã™ã‚‹ã€‚ ãã—ã¦ã€ã€ŒProjeâ€¦

2015-10-01

Cookie Injectionã«ã‚ˆã‚‹HTTPSãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ã«ã¤ã„ã¦èª¿ã¹ã¦ã¿ã‚‹

Web

ä¸é–“è€…æ”»æ’ƒã®ã‚‚ã¨ã§ã®Cookie Injectionã«ã‚ˆã‚‹HTTPSã®ç›—è´ãƒ»ãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ã«ã¤ã„ã¦ã€æ¬¡ã®ã‚ˆã†ãªã‚¢ãƒŠã‚¦ãƒ³ã‚¹ãŒå‡ºã¦ã„ã‚‹ã€‚ Vulnerability Note VU#804060 - Cookies set via HTTP requests may be used to bypass HTTPS and reveal private information JVNVU#929â€¦

ã‚‚ã‚‚ã„ã‚ãƒ†ã‚¯ãƒŽãƒã‚¸ãƒ¼

2015-10-01ã‹ã‚‰1ãƒ¶æœˆé–“ã®è¨˜äº‹ä¸€è¦§

ROPæ¤œçŸ¥æ‰‹æ³•RAPã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ã‚‹

é›»å“ã‚’èµ·å‹•ã™ã‚‹Wordæ–‡æ›¸ã‚’ä½œã£ã¦ã¿ã‚‹

Cookie Injectionã«ã‚ˆã‚‹HTTPSãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ã«ã¤ã„ã¦èª¿ã¹ã¦ã¿ã‚‹

2015-10-01ã‹ã‚‰1ãƒ¶æœˆé–“ã®è¨˜äº‹ä¸€è¦§

ROPæ¤œçŸ¥æ‰‹æ³•RAPã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ã‚‹

é›»å“ã‚’èµ·å‹•ã™ã‚‹Wordæ–‡æ›¸ã‚’ä½œã£ã¦ã¿ã‚‹

Cookie Injectionã«ã‚ˆã‚‹HTTPSãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ã«ã¤ã„ã¦èª¿ã¹ã¦ã¿ã‚‹

2015-10-01ã‹ã‚‰1ãƒ¶æœˆé–“ã®è¨˜äº‹ä¸€è¦§

ROPæ¤œçŸ¥æ‰‹æ³•RAPã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ã‚‹

é›»å“ã‚’èµ·å‹•ã™ã‚‹Wordæ–‡æ›¸ã‚’ä½œã£ã¦ã¿ã‚‹

Cookie Injectionã«ã‚ˆã‚‹HTTPSãƒã‚¤ã‚¸ãƒ£ãƒƒã‚¯ã«ã¤ã„ã¦èª¿ã¹ã¦ã¿ã‚‹