CERT has issued a Security Advisory concerning PHP remote vulnerabilities. See: http://security.e-matters.de/advisories/012002.html My purpose in posting this is two-fold. First, to inform others on this email list. Second to ask if horde will be issuing a patched version of php-4.1.0-0horde2? Thanks Rick Konlon