2007-04-25 15:00:00
mitre
PUBLISHED
The CHECK command in Cosign 2.0.1 and earlier allows remote attackers to bypass authentication requirements via CR (r) sequences in the cosign cookie parameter.