Saying "all security with cisco is shot in the foot" is not a very intelligent thing to say. Name me one product that is 100% free from vulnerability or exploitation.

While it is true that diversified security has value...the same can be said about a comprehensive, complementing product line designed to work together and be tightly-linked/fully inter-operable. Configuration, logging, notices, alerts, etc etc are easier to manage and audit, and there are many other beneficial factors as well.

All this article "proves" is that admins need to be diligent with their patching (as is true with all devices, applications, and operating systems) and adhere to decent password policies that address password strength, storage, sharing, and changing. It's really not that difficult to install a rootkit once access is obtained...