The (1) function.php or (2) function.view.php scripts in Merak Mail Server 5.2.7 allow remote attackers to read arbitrary PHP files via a direct HTTP request to port 32000.
http://marc.info/?l=bugtraq&m=109279057326044&w=2
http://secunia.com/advisories/12269