CVE-2017-6506

Name of the Vulnerable Software and Affected Versions Azure Data Expert Ultimate version 2.2.16

Description The issue is related to a buffer overflow in the SMTP verification function, which can lead to remote code execution. This occurs when a crafted SMTP daemon sends a long "Service ready" string, specifically the 220 response code.

Recommendations For Azure Data Expert Ultimate version 2.2.16, consider disabling the SMTP verification function until a patch is available to prevent potential remote code execution. Restrict access to the SMTP daemon to minimize the risk of exploitation. Avoid using the SMTP verification function with untrusted or unknown SMTP daemons until the issue is resolved.