[原文]The library feature for Adobe Content Server 3.0 allows a remote attacker to check out an eBook even when the maximum number of loans is exceeded by accessing the "Add to bookbag" feature when the server reports that no more copies are available.
Adobe Content Server Add to Bookbag eBook Max Loan Bypass
Remote / Network Access
Loss of Integrity
Content Server contains a flaw that may allow a malicious user to bypass restrictions on content. The issue is triggered when a user has reached the limit of books allowed to be checked out, but the "Add to Bookbag" button continues to work. It is possible that the flaw may allow unlimited access to materials resulting in a loss of integrity.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.