CVE-2014-2347

Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request.

Date published : 2014-05-06

http://ics-cert.us-cert.gov/advisories/ICSA-14-121-01

https://service.amtelco.com/INFINITY/MSM/MSM6.2SecurityBriefing.pdf