@bbaggins - I am not sure that you really answered the question posed. I love your response as it is a very similar response I get from my kids. "he did this and you did not say anything" or "what about the time that you overlooked this issue". Instead of pointing out what others are doing you would be better served in explaining what is or what is not being done in regards to the question being asked.
Since you felt the need to highlight vulnerabilities from Cisco let me provide some insight for the folks reading this thread. Vulnerabilities from time to time may be discovered and therefore Cisco has a mature process in disclosing and remediating these vulnerabilities as they are discovered. (beyond a signature).
PSIRT - Addressing security issues in Cisco products is the responsibility of the Cisco Product Security Incident Response Team (PSIRT). The Cisco PSIRT is a dedicated, global team that manages the receipt, investigation, and public reporting of security vulnerability information that is related to Cisco products and networks.
http://www.cisco.com/en/US/products/products_security_advisories_listing.html
Cisco also has developed transparency and trustworthy computing and more can be found here - http://www.cisco.com/c/en/us/about/trust-transparency-center/built-in-security/building-trustworthy-systems.html
Proper knowledge is power
Biting the hand that feeds IT
