D-Link DIR-818LW Improper Neutralization of Special Elements used in a Command (‘Command Injection’) Vulnerabilities
An issue was discovered on D-Link DIR-818LW devices with firmware 2.06betab01. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the MTU field to SetWanSettings.
The information has been provided by TeamSeri0us
D-Link DIR-818LW is prone to multiple command-injection vulnerabilities.Exploiting these issues could allow an attacker to execute arbitrary commands in the context of the affected device. Failed exploit attempts will likely result in denial-of-service conditions
D-Link DIR-818LW 2.06betab01