[ Thanks to Zack Aston for this link.
]
“A type of security flaw in Perl applications that experts
thought could lead only to a denial-of-service attack is now
believed to be much more serious.“Dyad Security on Tuesday warned of a so-called ‘format string
vulnerability’ in Webmin, a Web-based administration utility
written in Perl. An attacker could gain complete control over a
server running the vulnerable software by exploiting this ‘new
class’ of flaw, the security research company said in an
advisory…”