TRENDnet TEW-432BRP Command Injection Vulnerability Allowing Remote Command Execution

A command injection vulnerability has been identified in the TRENDnet TEW-432BRP router, specifically in version 3.10B20. The issue arises in the 'formSetRoute' function of the '/goform/formSetRoute' file, where user-supplied 'ip', 'mask', and 'gateway' arguments are not properly validated, allowing remote attackers to execute arbitrary commands on the operating system. This vulnerability affects a product that has been end-of-life since 2009 and is no longer supported by the vendor.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the router's operating system. For example, sending a command to reboot the router is possible.

Reproduction

To reproduce this vulnerability, send a POST request to '/goform/formSetRoute' with the 'ip' parameter set to a command, such as 'reboot'. Include the necessary headers and authorization. The router will execute the command, such as rebooting the device.