Don't post exploits in the bug tracker. It's a public resource, and as soon as you report a command that can crash servers, it's possible that someone like Jordan will use it to crash all public servers.
Is this the first time he said anything? He claims he told me about it awhile ago, but I never heard of it. I don't trust such a person to be telling the truth.
It's the first I've heard anything about it. He came into IRC the day before he actually started using it and told me and KT about it.