Vulnerabilities (CVE)

Filtered by vendor Sophos Subscribe
Filtered by product Puremessage For Microsoft Exchange
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-7106 1 Sophos 1 Puremessage For Microsoft Exchange 2024-11-21 5.0 MEDIUM N/A
The installation of Sophos PureMessage for Microsoft Exchange 3.0 before 3.0.2, when both anti-virus and anti-spam are supported, does not create or launch the associated scan engines when the system is under heavy load, which has unspecified impact, probably remote bypass of scanner protection or a denial of service (message loss or delay).
CVE-2008-7105 1 Sophos 1 Puremessage For Microsoft Exchange 2024-11-21 5.0 MEDIUM N/A
Sophos PureMessage for Microsoft Exchange 3.0 before 3.0.2 allows remote attackers to cause a denial of service (EdgeTransport.exe termination) via a TNEF-encoded message with a crafted rich text body that is not properly handled during conversion to plain text. NOTE: this might be related to CVE-2008-7104.
CVE-2008-7104 1 Sophos 1 Puremessage For Microsoft Exchange 2024-11-21 5.0 MEDIUM N/A
Sophos PureMessage Scanner service (PMScanner.exe) in PureMessage for Microsoft Exchange 3.0 before 3.0.2 allows remote attackers to cause a denial of service (message queue delay and incomplete spam rule update) via a crafted (1) RTF or (2) PDF file.