Sophos: >> Email Appliance Security Vulnerabilities
A reflected XSS vulnerability allows an open redirect when the victim clicks a malicious link to an error page on
Sophos Email Appliance
older than version 4.5.3.4.
CVSS Score
4.7
EPSS Score
0.001
Published
2023-11-30
Sophos virus detection engine 2.75 on Linux and Unix, as used in Sophos Email Appliance, Pure Message for Unix, and Sophos Anti-Virus Interface (SAVI), allows remote attackers to cause a denial of service (engine crash) via zero-length MIME attachments.
CVSS Score
5.0
EPSS Score
0.06
Published
2008-07-15