http://www.c-enter.hu/center/0230779.html I do have some good news.. Seems some AV companies already have some sigs to spot the .jpg vuln. Symantec picks it up as bloodhound so email propagation may become less viable. It does this with the local and remote shellcodes. JP