Re: Vendor statement re: CVE-2007-0080