FYI: http://www.securiteam.com/exploits/5WP021PGUW.html Sending this along in case you all havn't heard of it yet, I searched the archives and couldn't find it.