Unrated severityNVD Advisory· Published Aug 20, 2008· Updated Apr 23, 2026

CVE-2008-3728

Description

Web Based Administration in MicroWorld Technologies MailScan 5.6.a espatch 1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to determine the installation path, IP addresses, and error messages via direct requests to files under LOG/.

Affected products

Microworld Technologies/Mailscan
cpe:2.3:a:microworld_technologies:mailscan:5.6.a:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvdExploit
www.oliverkarow.de/research/mailscan.txtnvdExploit
www.securityfocus.com/bid/30700nvdExploit
secunia.com/advisories/31534nvdVendor Advisory
securityreason.com/securityalert/4172nvd
exchange.xforce.ibmcloud.com/vulnerabilities/44518nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000