TODO:
- check this:
  http://securitytracker.com/alerts/2008/Nov/1021235.html (CVE-2008-5161)