In versions prior to build 6985—including build 6919—SmarterMail exposed three specific on TCP port 17001: /Servers /Mail /Spool
The vulnerability resided in a specific API endpoint: /Services/ServiceController.svc/ExecuteCommand . The ".svc" extension indicates a Windows Communication Foundation (WCF) service—a framework known for complex serialization handling. smartermail 6919 exploit