Just read
this on CNET. I thought the guy made a gutsy call on resigning from ISS and going through teh presentation themselves, but CISCO basically stopping the guy from releasing the code? I mean really how is that going to help?
People going to the Blackhat conference are not dummies who will wait for the guy to release source code. Thye know how the attack can be performed and will simply start writing their own exploit code. CISCO probably gets like 3 days in the process - nothing that will change the situation any. Besides, what's the big deal - the problem is not even one that can be exploited remotely.
ME thinks, that the whole issue is being blown out of proportion. This sort of stuff would not have got coverage a few years back. Let's see how this drama plays out because it may have serious implications on what you can and cannot do with binaries. Hold on to those disassemblers folks, in a few years they may be illegal.