This is kind of funny but as I was going through my CVE mails to figure out what needs to be patched, I came across CVE-2006-3244, with this reference: Actually, Secunia has some nice statiscs (I should look at some other programs because these charts are kinda neat): Considering the last release of Anthill was Feb 13, 2004 I find it rather amusing that someone is poking sticks at it. I know there are some sites out there that still use Anthill, so hopefully they take care to fix it but since it's been over two years since I've touched Anthill code, don't expect a "vendor-supplied" fix anytime soon (Anthill is completely unsupported).

Gave me a bit of a chuckle, however.