admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2008/3xxx/CVE-2008-3728.json

88 lines
2.6 KiB
JSON
Raw Blame History

{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2008-3728",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Web Based Administration in MicroWorld Technologies MailScan 5.6.a espatch 1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to determine the installation path, IP addresses, and error messages via direct requests to files under LOG/."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "20080815 Re: MicroWorld MailScan - Multiple Vulnerabilities within Admin-Webinterface",
"refsource" : "BUGTRAQ",
"url" : "http://marc.info/?l=bugtraq&m=121881329424635&w=2"
},
{
"name" : "http://www.oliverkarow.de/research/mailscan.txt",
"refsource" : "MISC",
"url" : "http://www.oliverkarow.de/research/mailscan.txt"
},
{
"name" : "30700",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/30700"
},
{
"name" : "31534",
"refsource" : "SECUNIA",
"url" : "http://secunia.com/advisories/31534"
},
{
"name" : "4172",
"refsource" : "SREASON",
"url" : "http://securityreason.com/securityalert/4172"
},
{
"name" : "mailscan-admininterface-security-bypass(44518)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/44518"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink