More than half of security experts think that the good outweighs the bad when it comes to proof-of-concept exploits, according to a recent Threatpost poll. The poll comes on the heels of the release of PoC code for an unpatched vulnerability in the Citrix Application Delivery Controller (ADC) and Citrix Gateway products. The PoC exploits were published to showcase how the vulnerability in a system can be exploited. Some argue that the code can be used to test networks and pinpoint vulnerable aspects of a system, as well as motivate companies to patch, but others argue that it gives attackers a blueprint to launch attacks.
Source: https://threatpost.com/poc-exploits-do-more-good-than-harm-threatpost-poll/152053/