Notified: September 24, 2002 Updated: September 26, 2002
Affected
Yes, I can confirm that this vulnerability did exist. It was fixed in version 1.6 which was released in April, 2001. You can get the current version (1.8) at http://www.gadnet.com/a1stats
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.