Description
eRoom does not set an expiration for Cookies, which allows remote attackers to capture cookies and conduct replay attacks.
References (1)
Core 1
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=112069267700034&w=2
Scores
EPSS
0.0064
EPSS Percentile
70.7%
Details
Status
published
Products (8)
emc/eroom
6.0
emc/eroom
6.0.1
emc/eroom
6.0.2
emc/eroom
6.0.3
emc/eroom
6.0.4
emc/eroom
6.0.5
emc/eroom
6.0.6
emc/eroom
6.0.7
Published
Jul 11, 2005
Tracked Since
Feb 18, 2026