D-Link DIR-615 OS Command Injection Vulnerability in MAC Filter Configuration

A command injection vulnerability has been identified in the D-Link DIR-615 router running firmware version 4.10. The issue arises in the MAC Filter Configuration component, specifically within the file '/adv_mac_filter.php'. The vulnerability allows authenticated attackers to inject shell metacharacters into the MAC address field, which the backend PHP script improperly sanitizes. This exploitation enables the execution of arbitrary system commands with root privileges. The vulnerability can be exploited remotely, but only on devices that are no longer supported by the manufacturer.

Impact

Exploitation of this vulnerability allows for unauthorized execution of operating system commands with root privileges on the affected device.

Reproduction

To reproduce this vulnerability, log into the D-Link DIR-615 router with an account that has the necessary privileges to access the MAC Filter Configuration page. Once logged in, navigate to the MAC Filter settings and enter a crafted MAC address that includes shell metacharacters. When the input is submitted, the backend script will execute the injected commands with root privileges, exploiting the command injection vulnerability.