Key Information Vulnerability Overview Vendor: Linksys Product: E1700 Version: E1700(1.0.0.4.003) Type: Remote Command Execution Author: Jian Peng Organization: Institute of Information Engineering, Chinese Academy of Sciences (IIE, CAS) Vulnerability Description A command injection vulnerability was discovered in the latest firmware of Linksys routers, allowing attackers to execute arbitrary OS commands via carefully crafted requests. Remote Command Execution In the binary, the function directly passes the parameter provided by the attacker, which is then used in the function, enabling attackers to control and execute commands against the operating system. Additional Notes To prevent such issues, it is recommended to validate and sanitize string content in input extraction sections of the program. PoC (Proof of Concept) Set the command to . The router will execute this command as shown below: Result Successfully obtained a shell.