Java 対応携帯電話機のJava ウイルスの危険性に関する調査・検討報告書

Similar documents
<4D F736F F D20566F F6E658C6791D FE382C582CC4A D834F E F8F4390B394C52E646F63>

untitled

GPS携帯端末を用いた近隣バス停位置と

, : GUI Web Java 2.1 GUI GUI GUI 2 y = x y = x y = x

(822000) (842000)

untitled

WinDriver PCI Quick Start Guide

2 1 Web Java Android Java 1.2 6) Java Java 7) 6) Java Java (Swing, JavaFX) (JDBC) 7) OS 1.3 Java Java

A book


オンラインによる 「電子申告・納税等開始(変更等)届出書」 提出方法

背景

J2EEとMicrosoft.NETの比較


untitled

Oracle Policy Automation 10.0システム要件

モバイルプリペイド決済の実現モデルの調査研究

署名ツール検証報告書

橡011207_IW2001_携帯電話基礎

Windows CE 3.0 端末のスクリプトウイルスの危険性に関する調査・検討報告書

平成15年9月3日発行

ORCA (Online Research Control system Architecture)

普通教科「情報」の指導に関する調査研究

新・明解Java入門

FileMaker Server Getting Started Guide

installtk.ps

FileMaker Server Getting Started Guide

Web Tomcat MapDataManager i

HTML Java Tips dp8t-asm/java/tips/ Apache Tomcat Java if else f


CSV ToDo ToDo

Web 1 p.2 1 Servlet Servlet Web Web Web Apache Web Servlet JSP Web Apache Tomcat Jetty Apache Tomcat, Jetty Java JDK, Eclipse

PDFstaff PDF PDFstaff Adobe PDF PDFstaff Adobe Server 2

1 1 KDDI 2 3 KDDI

USB FDD ユーザーズマニュアル


FileMaker Server 9 Getting Started Guide


H H H H H H H H Windows IC USB WindowsXP+FZ1360 WindowsXP+FZ1350 J2SE Runtime Environment 5.0 Window

USB FDユニット ユーザーズマニュアル

HTML Java Tips dp8t-asm/java/tips/ Apache Tomcat Java if else f

untitled


講座計画書サンプル

BIG‑IP Access Policy Manager | F5 Datasheet

FUJITSU Security Solution 手のひら静脈認証PCログオンソフトウェア

FileMaker Server 16 インストールおよび構成ガイド

Web Microsoft 2008 R2 Database Database!! Database 04 08

Part 1 IT CPU IT IT 1998 Windows NT Server 4.0, Terminal Server Edition 1 Windows Based Terminal WBT Windows CE 1 100Mbps 1Gbps LAN OS 1 PC 1 OS 2

Northern Lights Server

FileMaker Server 15 入門ガイド

NGGAUM_特別対談_再.indd

SHOBI_Portal_Manual


WE7281_help





A B C E ( ) F

Micro-D 小型高密度角型コネクタ

白山の自然誌21 白山の禅定道

II 1 p.1 1 Servlet 1.1 Web Web WWW HTML CGI Common Gateway Interface Web HTML Web Web CGI CGI CGI Perl, PHP C JavaScript Web CGI HTML 1.2 Servlet Java


橡Webcamユーザーガイド03.PDF

NTT 2 2 NTT NTT 1 3 NTT NTT 2 15 CSR T: KDDI Tel: Tel: Tel: BB Tel: Tel:03-6


Transcription:

Java Java

1...1 2...2 3 Java...3 3.1 ezplus...4 3.1.1...4 3.1.2...4 3.1.3...4 3.1.4 JAD...4 3.1.5 KJX...4 3.1.6 HDML...5 3.1.7...5 3.2...8 3.2.1 Homer...8 3.2.2 Hijacker...10 3.2.3 Attacker...11 3.2.4 StrangeBrew...12 3.2.5 Bean Hive...13 3.3...14 3.3.1 ezplus...14 3.3.2 J2ME CLDC / KVM...15 3.3.3 MIDP...16 3.3.4 KDDI-P...16 3.3.5...16 3.3.6...16 3.3.7...17 3.3.8...17 3.3.9 J-PHONE Java...17 3.4...18 4...19 i

1 Java Java ( Java ) Java Java 5 Homer Hijacker Attacker StrangeBrew Bean Hive Java 2 J-PHONE Java au J-PHONE au : cdmaone C451H RAM 400KB 1 J-PHONE : SHARP J-SH07 RAM 650KB 1 1 Java 50KB 1

2 Java Java Java Java Microsoft Windows 98 / Me UNIX Java Java Java Java Java 2

3 Java Java cdmaone C451H ezplus(ezweb Java ) Java2 Micro Edition(J2ME) CLDC(Connected Limited Device Configuration) / MIDP(Mobile Information Device Profile) KDDI-P(KDDI Profile) 2 ezplus Java Homer Hijacker Attacker StrangeBrew Bean Hive 5 Homer.java Hijacker.java Attacker.java Bean Hive 4 PC JDK 1.3 J2ME CLDC / MIDP KDDI-P StrangeBrew class ezplus Java ( ezplus ) Web ezplus ezplus 2 KDDI ezplus Java 3

3.1 ezplus 3.1.1 Java Java2 Platform Standard Edition (J2SE) Java "javac.exe" midpapi.zip kddip.jar midpapi.zip Java2 Micro Edition Wireless Toolkit kddip.jar KDDI-P KDDI KJX 3.1.2 class Java2 Micro Edition Wireless Toolkit "preverify.exe" class 3.1.3 class ezplus "jar.exe" 1 JAR 3.1.4 JAD JAD ( *.jad) JAD Java Application Descriptor Java JAD MIDlet-Name: MIDlet-Vendor: MIDlet-Version: MIDlet-Jar-Size: JAR ( ) MIDlet-Jar-URL: JAR MicroEdition-Profile: MIDP-1.0 MicroEdition-Configuration: CLDC-1.0 MIDlet-1:,, 3.1.5 KJX JAD KDDI KJX "KJXArchive.jar" JAR KJX KJX 2 CRC KJX Web ezplus 4

3.1.6 HDML ezplus HDML HDML Handheld Device Markup Language HDML <action> ezplus URL CGI URL KJX HDML <hdml version="3.0" markable="true"> <choice key="url" title="ezplus"> <action type="accept" task="gosub" dest="device:data/dnld?url=$url" label="ok"> <ce value=" CGI URL&name=KJX &size=kjx &disposition=devkdjx&title= ">ezplus </choice> </hdml> ezplus 1 CGI <ce> CGI EZweb KDDI Web Perl CGI EZweb Web ".htaccess" Web ezplus (*.kjx) HDML (*.hdml) Web 3.1.7 1. Java ezplus Web 2. ezplus ( 1) ezplus ( 2) 3. ezplus ezplus ( 3) 1: 5

2 3 ezplus ezplus ( ) ( 4) 2: ezplus 3: ezplus 6

4: ezplus 7

3.2 Java Java (ezplus ) 3.2.1 Homer Homer ".homer.sh" "/bin/sh" Homer.java ezplus class ( 5) ezplus CLDC / MIDP ezplus KDDI-P 1.0 5: Homer FileOutputStream 2 String getbytes 1 Process 2 Runtime exec 2 7 getbytes MIDP Homer 4 getbytes Java 2 Platform Standard Edition (J2SE) class 8

ezplus javax.microedition.midlet.midlet MIDlet startapp J2SE Java Homer Java ( 6) 3 6: Homer ezplus MIDlet startapp Homer Homer ezplus J2SE KJX CLDC / MIDP KDDI-P 1.0 API FileOutputStream Process Runtime String exec 4 getbytes ezplus Homer MIDlet Homer Homer UNIX ezplus Homer 3 ezplus 9

3.2.2 Hijacker Hijacker Java "$J_Home/classes/sun/tools/javac/Main. class" Hijacker.java Homer class File 4 FileOutputStream 1 5 J2SE FileOutputStream Homer Error preverifying class Hijacker VERIFIER ERROR Hijacker.main([Ljava/lang/String;]V: Cannot find class java/io/fileoutputstream J2SE Homer ezplus MIDlet "Hijacker1.kjx" ezplus ( 7) Hijacker ezplus KJX J2SE KJX CLDC / MIDP KDDI-P 1.0 API File FileOutputStream ezplus Hijacker ezplus Hijacker 7: Hijacker 10

3.2.3 Attacker Attacker "Beginner.class" Java ezplus "Beginner.kjx" Attacker.java Homer class File 2 RandomAccessFile 2 4 J2SE RandomAccessFile Error preverifying class Attacker VERIFIER ERROR Attacker.main([Ljava/lang/String;]V: Cannot find class java/io/randomaccessfile J2SE Homer ezplus ( 8) MIDlet 8: Attacker Attacker ezplus KJX J2SE KJX CLDC / MIDP KDDI-P 1.0 API File RandomAccessFile ezplus Attacker ezplus Attacker Beginner FileInputStream ezplus 11

3.2.4 StrangeBrew StrangeBrew class Java ( "Virus.class") KJX ezplus ( 9) StrangeBrew File RandomAccessFile MIDP KDDI-P 1.0 Attacker StrangeBrew 9: StrangeBrew 12

3.2.5 Bean Hive Bean Hive Java StrangeBrew Bean Hive Homer class File 5 RandomAccessFile 8 13 J2SE ezplus ( 10) MIDlet Bean Hive ezplus KJX J2SE KJX CLDC / MIDP KDDI-P 1.0 API File RandomAccessFile ezplus Bean Hive MIDlet Attacker Bean Hive 10: Bean Hive 13

3.3 ezplus Java 3.3.1 ezplus ezplus au / KDDI Java 50 ezplus ezplus 11 11: ezplus (KDDI ) KVM (K Virtual Machine) Java CPU CLDC (Connected Limited Device Configuration) Java MIDP (Mobile Information Device Profile) CLDC KDDI Profile (KDDI-P) KDDI Java ezplus (KJX ) Java 14

3.3.2 J2ME CLDC / KVM ezplus J2ME CLDC Palm OS NTT i Java J2ME CLDC Java KVM Java Java Native Interface (JNI) OS ( ) ezplus OS Bean Hive ezplus CLDC java.io java.io.inputstream java.io.outputstream java.io.bytearrayinputstream java.io.bytearrayoutputstream java.io.datainputstream java.io.dataoutputstream java.io.reader java.io.writer java.io.inputstreamreader java.io.outputstreamwriter java.io.printstream File, FileOutputStream, RandomAccessFile javax.microedition.io javax.microedition.io.connector java.lang.runtime exec 15

3.3.3 MIDP MIDP CLDC java.io java.lang MIDP 3 1) javax.microedtion.lcdui 2) javax.microediton.midlet MIDP (MIDlet) 3) javax.microedition.rms MIDlet ( MIDlet ) MIDlet MIDlet ezplus MIDP 3.3.4 KDDI-P KDDI-P ezplus Java CLDC com.kddi.io DataFolderConnection KDDI-P 3.3.5 Homer Hijacker FileOutputStream ezplus Java ezplus ezplus 3.3.6 Homer Java Runtime exec ezplus J2ME CLDC / KVM exec 16

3.3.7 Attacker File 3.3.8 StrangeBrew RandomAccessFile Java J2ME CLDC / KVM Java Java ezplus Java 3.3.9 J-PHONE Java J-PHONE Java ezplus J2ME CLDC ezplus 17

3.4 ezplus J2ME CLDC / KVM Java ezplus ezplus J2ME CLDC / KVM Java Java ezplus 18

4 Java UNIX Windows 98 / Me Java Java ezplus Java (Homer Hijacker Attacker StrangeBrew Bean Hive) Java ezplus J2SE ezplus Web ezplus Java MIDlet ezplus 1) ezplus 2) MIDlet ezplus ezplus J2ME CLDC ezplus ezplus J-PHONE Java J2ME CLDC ezplus J-PHONE Java Java KDDI KDDI-P 19

2026 © docsplayer.net プライバシー | 利用規約 | フィードバック