The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr parameter to ping.ccp.
packetstormsecurity.com/files/130607/D-Link-DIR636L-Remote-Command-Injection.html
packetstormsecurity.com/files/131465/D-Link-TRENDnet-NCC-Service-Command-Injection.html
seclists.org/fulldisclosure/2015/Mar/15
securityadvisories.dlink.com/security/publication.aspx?name=SAP10052
www.securityfocus.com/bid/72848
github.com/darkarnium/secpub/tree/master/Multivendor/ncc2