After scanning my university subnet (halls) for open netbios connections i have found that there seems to be 3 computers totally open to this vulnerability. I'm worried that someone else with malicious intent may conduct the same scans as me but instead of doing it for educational purposes they may upload a virus, trojan etc or just delete all the shared files.

I think this is wrong and therefore would like to warm these people, but without giving away who i am. I think the best way would be to contact the computer admin department with the details of these machines and their vulnerabilies. Can anyone recommend a way in which i could contact the admin department 100% anonymously and pass on these details ?

Any advice/help would be great. Thanks