This is quite similar to two recent bugs that caused similar problems if certain ascii characters immediately followed the URI. Spammers had exploited at least one of those cases. I don't know what the fix was for those bugs, but it may have been similar to the change you propose.
Loren
