CVE-2008-7106

EUVD-2008-7065
The installation of Sophos PureMessage for Microsoft Exchange 3.0 before 3.0.2, when both anti-virus and anti-spam are supported, does not create or launch the associated scan engines when the system is under heavy load, which has unspecified impact, probably remote bypass of scanner protection or a denial of service (message loss or delay).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
Affected Products (NVD)
VendorProductVersion
sophospuremessage_for_microsoft_exchange
3.0
𝑥
= Vulnerable software versions
References
http://www.sophos.com/support/knowledgebase/article/44385.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/52926
http://www.sophos.com/support/knowledgebase/article/44385.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/52926