CVE-2014-2347 Information

Description

Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions which allows remote authenticated users to obtain sensitive information via a modified message request.

Reference

http://ics-cert.us-cert.gov/advisories/ICSA-14-121-01 https://service.amtelco.com/INFINITY/MSM/MSM6.2SecurityBriefing.pdf