the “date spoofing” vulnerability