Just a quick note to say there's an easier way to exploit this remotely, I've made details available to CERT. 8.6.10 looks to be a good fix, but take the advice about wrappers and which are secure from remote attacks with a pinch of salt. Cheers, Neil -- Let the Mystery Be, So Watcha Want, Longing In Their Hearts, Hate My Way, M-Bike, Safari, Uncle June and Aunt Kiyoti, Daisy Dead Petals, Tuff Gnarl. ...like a badger with an afro throwing sparklers at the Pope...