CVE-2002-1084

Name of the Vulnerable Software and Affected Versions: ezContents versions 1.41 and earlier

Description: The issue concerns the VerifyLogin function, which does not properly halt program execution if a user fails to log in properly. This allows remote attackers to modify and view restricted information via HTTP POST requests.

Recommendations: For ezContents versions 1.41 and earlier, as a temporary workaround, consider disabling the VerifyLogin function until a patch is available. Restrict access to restricted information to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.