Vulnerabilities > CVE-2002-1084 - Remote Security vulnerability in ezContents
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
The VerifyLogin function in ezContents 1.41 and earlier does not properly halt program execution if a user fails to log in properly, which allows remote attackers to modify and view restricted information via HTTP POST requests.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |