I just wanted to update everyone on what's been going on. We've officially notified BT of the vulnerability, and I've been working with their security people on the issue. I have to say, BT has been super cool to work with. They're a very professional group. My understanding is that an updated firmware that addresses the issue will be forthcoming, but I'm not clear on when. For now, it is our intention to release a proof-of-concept exploit in 30 days. I'll try to post an update if that timeline changes.
Clearly, I can't share any technical details on the vulnerability, but I think it's okay to summarize the risk to users for those who are worried.
Based on my analysis, this vulnerability doesn't appear to pose a risk to users from the Internet--it is only exposed on the LAN side. As such, ensure that your wireless is secured with WPA2 so that only authorized users can connect. Also ensure no unauthorized users have access to your wired ethernet. Of course this is generally good advice that should be practiced even in the absence of known vulnerabilities.
Zach