VYPR
Unrated severityNVD Advisory· Published Aug 17, 2004· Updated Jun 16, 2026

CVE-2004-1720

CVE-2004-1720

Description

The (1) address.html and possibly (2) calendar.html pages in Merak Mail Server 5.2.7 allow remote attackers to gain sensitive information via an invalid HTTP request, which reveals the installation path. NOTE: it is unclear whether the calendar.html is an exposure, since the path is leaked in web logs that may only be available to the administrators, who would have access to the path through legitimate means.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Merak/Mail Server2 versions
    cpe:2.3:a:merak:mail_server:7.4.5:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:merak:mail_server:7.4.5:*:*:*:*:*:*:*
    • (no CPE)range: =5.2.7

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.