Cisco blacklists curl instead of fixing vulnerable code

&gt; But even if device owners applied the January patch, all an attacker has to do now is to switch to a non-curl scanner&#x2F;exploit tool.<p>Or the attacker can just keep using curl and use the option to change the User-Agent string.