Hi Marek, You've given them many warnings.. the bad guys more likely than not already know, why wouldn't you release the information?
Kind regards, Mike On Thu, 14 Mar 2019, 11:40 Marek Isalski, <[email protected]> wrote: > Dear UKNOF, > > Last ditch attempt: has anyone got any useful CERT-type contacts before I > present a 0-day remote router crash vulnerability during my talk at UKNOF > 43 in Manchester? > > $vendor has been feeding me statements worthy of DExEU for the last 11 > months - "our update is to say that we'll tell you when there is an update" > type stuff, and they have repeatedly confirmed to me that they have no > timescale for fixing the issue. > > (no, not Juniper or Cisco or Huawei... but there's still a few hundred > thousand of these things in the wild) > > Marek Isalski > Technical Director, Faelix Limited, https://faelix.net/ > > >
