I forgot to mention it in my advisory, but I'd like to thank the vuln-dev mailing list subscribers for their help in researching this vulnerability. The problem was initially discovered and investigated through a thread on that mailing list. -- Matthew Sachs, the original nonstandard deviant matthewg@zevils.com http://www.zevils.com/ GPG key: 0x600A0342 PGP key: 0x93EA1151
