Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request.
References
Link | Resource |
---|---|
http://ics-cert.us-cert.gov/advisories/ICSA-14-121-01 | US Government Resource |
https://service.amtelco.com/INFINITY/MSM/MSM6.2SecurityBriefing.pdf |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2014-05-06T10:00:00
Updated: 2014-05-06T00:57:00
Reserved: 2014-03-13T00:00:00
Link: CVE-2014-2347
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-05-06T10:44:06.050
Modified: 2014-05-06T13:16:24.290
Link: CVE-2014-2347
JSON object: View
Redhat Information
No data.
CWE