I don't think this is remotely triggerable either. On Mon, Jan 13, 2014 at 9:36 AM, Mark Doliner <mark at kingant.net> wrote: > I agree, I don't think this is remotely-exploitable so I'm not > planning on requesting a CVE number for it.