iDefense has updated advisory: 02/01/2007 Initial vendor notification 02/01/2007 Initial vendor response 11/02/2007 Third-party public exploit release 11/07/2007 Public disclosure They claims, that exploit is available.