Hirschmann BAT-C2 is a wireless access point from Hirschmann (Germany). belden Hirschmann BAT-C2 versions prior to 09.13.01.00R04 have a command injection vulnerability, which stems from the failure to adequately handle the dir parameter of the FsCreateDir Ajax function in the web server, which could be exploited by an attacker to launch a command injection attack.