ZDI-07-056: IBM DB2 DB2JDS Multiple Vulnerabilities
From: [email protected]
To: [email protected], [email protected]
Subject: ZDI-07-056: IBM DB2 DB2JDS Multiple Vulnerabilities
MIME-Version: 1.0
X-Mailer: Lotus Notes Release 7.0.1 January 17, 2006
Sender: [email protected]
Message-ID: <OFCC41912A.347B2C55-ON88257370.0076B15D-88257370.00781982@3com.com.>
Date: Wed, 10 Oct 2007 14:51:46 -0700
X-MIMETrack: Serialize by Router on USUT001/US/3Com(Release 6.5.5FP2|October 23, 2006) at
10/10/2007 02:51:52 PM,
Serialize complete at 10/10/2007 02:51:52 PM
Content-Type: text/plain;
charset="US-ASCII"
Content-Transfer-Encoding: base64
X-Virus-Scanned: antivirus-gw at tyumen.ru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