One positive from a high profile vulnerability that is not disclosed is it stimulates a scurry of activity and information-sharing about what it might possibly be. The result is a quick hashing out of quite a few little nuances and even issues in the subject. Robert Graham has posted excellent information about leaving TCP/IP connections open by either slowing them down or keeping them in a non-closed state from the point-of-view of the kernel. I might not know what Robert and Jack found yet, but at least I can read all sorts of excellent material on the subject.