Progress Software/Telerik Cease and Desist
sender
Progress Software
[Private] Bedford, MA, 01730, US Sent on COUNTRY: US 🇺🇸recipient
PatchAdvisor, Inc.
[Private] Alexandria, VA, 22312, USRe: Progress Software/Telerik Cease and Desist
Sent via: Email
- Notice Type:
- Other
- Action taken:
- Yes
Explanation of complaint
With regards to a blog post related to the vulnerability CVE-2[REDACTED] that contained: - a guide for discovering and understanding the vulnerability - limited output from a decompiler against the vulnerable product, when the output was related to understanding the vulnerability - guidance on exploiting the vulnerability Progress' council asserted that the blog post contained both an admission of reverse engineering the vulnerable product, and the product's source code. Progress' council then asserted that the content of the blog post and actions described therein constituted a violation of their EULA, copyright infringement, misappropriation of trade secrets, a violation of the Computer Fraud and Abuse Act, a violation of the Defend Trade Secrets Act, and possibly other state and federal statutes. Progress' council demanded the removal of the blog post, and to cease and desist publication or disclosure of Progress' source code in the future.
-
Complaint 1
Kind of Work: UnspecifiedComplaint From: Chuck Pollak [REDACTED] Date: Fri, Jul 7, 2017 at 11:08 AM Subject: Progress Software/Telerik Cease and Desist To: [REDACTED] [REDACTED] Dear [REDACTED]: I am Associate General Counsel with Progress Software Corporation, the parent company of Telerik AD. I write with respect to the Patch Advisor blog entry at http://www.patchadvisor.com/blog/?p=98 (the “Blog”). In the Blog, you admit to reverse engineering Telerik’s UI for ASP.NET for AJAX (the “Product”) and posting its source code. This not only violates the Product’s End User License Agreement (“EULA”), but also constitutes copyright infringement and misappropriation of trade secrets, and violates various state and federal statutes, including the Computer Fraud and Abuse Act and the Defend Trade Secrets Act. The remainder of the Blog (i.e., other than the source code) provides instructions for attacking users of the Product which, similarly, violates the law. Progress demands that you remove the Blog as soon as possible and cease and desist from any publication or disclosure of its source code in the future. Your failure to do so will force Progress to take action against you and Patch Advisor. I expect Patch Advisor to comply with this demand – and certify to me in writing that it has done so – by the close of business on Tuesday, July 11, 2017. Thank you. Regards, Chuck Pollak Chuck Pollak Associate General Counsel Progress Progress Software Corporation 14 Oak Park Drive | Bedford, MA 01730 | USA phone [REDACTED] www.progress.comURLs of original work:- www.telerik.com - 1 URL
Problematic URLs:- www.patchadvisor.com - 1 URL
Click here to request access and see full URLs.