2005-07-10 04:00:00
mitre
PUBLISHED
eRoom does not set an expiration for Cookies, which allows remote attackers to capture cookies and conduct replay attacks.