Unrated severityNVD Advisory· Published Aug 20, 2008· Updated Jun 16, 2026
CVE-2008-3728
CVE-2008-3728
Description
Web Based Administration in MicroWorld Technologies MailScan 5.6.a espatch 1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to determine the installation path, IP addresses, and error messages via direct requests to files under LOG/.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:microworld_technologies:mailscan:5.6.a:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microworld_technologies:mailscan:5.6.a:*:*:*:*:*:*:*
- (no CPE)range: 5.6.a espatch 1
Patches
Vulnerability mechanics
References
6- marc.infonvdExploit
- www.oliverkarow.de/research/mailscan.txtnvdExploit
- www.securityfocus.com/bid/30700nvdExploit
- secunia.com/advisories/31534nvdVendor Advisory
- securityreason.com/securityalert/4172nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/44518nvd
News mentions
0No linked articles in our index yet.