The exploit has been extensively documented and tested by security research firms: Confirmed Targets: Tested and verified as working on Build 6919 and Build 6970. Exploit Modules: A dedicated module is available via the Metasploit Framework exploit/windows/http/smartermail_rce Public Proofs of Concept:
The root cause was improper sanitization of user-supplied input. The server trusted a parameter in the request, allowing an attacker to "break out" of intended directories and write or execute a file anywhere on the system that the SmarterMail service had permissions to access. smartermail 6919 exploit
, a critical flaw in how SmarterMail handles serialized data. National Institute of Standards and Technology (.gov) The Mechanism : The application exposes .NET remoting endpoints (typically on port ) that perform deserialization of untrusted data. The Impact The exploit has been extensively documented and tested