This was on /. a few days ago. I found the discussion of the nature of the exploit (using "return-oriented programming") absolutely fascinating, and if any of the hacker-types here missed the original article, it's definitely worth a read: http://www.usenix.org/events/evtwote09/tech/full_papers/checkoway.pdf -- JK