CVE-2008-7105

medium

Description

Sophos PureMessage for Microsoft Exchange 3.0 before 3.0.2 allows remote attackers to cause a denial of service (EdgeTransport.exe termination) via a TNEF-encoded message with a crafted rich text body that is not properly handled during conversion to plain text. NOTE: this might be related to CVE-2008-7104.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/52925

http://www.sophos.com/support/knowledgebase/article/44385.html

http://www.securityfocus.com/bid/30881

Details

Source: Mitre, NVD

Published: 2009-08-27

Updated: 2017-08-17

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Severity: Medium