The 2011 Pwnie Nominee For Lamest Vendor Response

Remotely exploitable stack overflow in OpenSSH on Novell NetWare

Vendor: Novell

The ZDI advisory clearly stated that this is a remotely-exploitable stack overflow, but Novel claimed that it was only a denial of service attack and refused to patch it until ZDI dropped the details on their blog. You can’t argue with 0x41414141.