CVE-2008-7105
Sophos PureMessage for Microsoft Exchange 3.0 - Denial of Service via TNEF-Encoded Message
Title source: llmDescription
Sophos PureMessage for Microsoft Exchange 3.0 before 3.0.2 allows remote attackers to cause a denial of service (EdgeTransport.exe termination) via a TNEF-encoded message with a crafted rich text body that is not properly handled during conversion to plain text. NOTE: this might be related to CVE-2008-7104.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/30881
Patch, Vendor Advisory x_refsource_confirm
http://www.sophos.com/support/knowledgebase/article/44385.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/52925
Scores
EPSS
0.0253
EPSS Percentile
85.6%
Details
Status
published
Products (1)
sophos/puremessage_for_microsoft_exchange
3.0
Published
Aug 27, 2009
Tracked Since
Feb 18, 2026