Vulnerabilities > Sophos > Puremessage FOR Microsoft Exchange

DATE CVE VULNERABILITY TITLE RISK
2009-08-27 CVE-2008-7106 Unspecified vulnerability in Sophos Puremessage for Microsoft Exchange 3.0
The installation of Sophos PureMessage for Microsoft Exchange 3.0 before 3.0.2, when both anti-virus and anti-spam are supported, does not create or launch the associated scan engines when the system is under heavy load, which has unspecified impact, probably remote bypass of scanner protection or a denial of service (message loss or delay).
network
low complexity
sophos
5.0
2009-08-27 CVE-2008-7105 Denial Of Service vulnerability in Sophos Puremessage for Microsoft Exchange 3.0
Sophos PureMessage for Microsoft Exchange 3.0 before 3.0.2 allows remote attackers to cause a denial of service (EdgeTransport.exe termination) via a TNEF-encoded message with a crafted rich text body that is not properly handled during conversion to plain text.
network
low complexity
sophos
5.0
2009-08-27 CVE-2008-7104 Denial Of Service vulnerability in Sophos Puremessage for Microsoft Exchange 3.0
Sophos PureMessage Scanner service (PMScanner.exe) in PureMessage for Microsoft Exchange 3.0 before 3.0.2 allows remote attackers to cause a denial of service (message queue delay and incomplete spam rule update) via a crafted (1) RTF or (2) PDF file.
network
low complexity
sophos
5.0