The vulnerability of the setSystemWizard() and setSystemControl() functions in D-Link DCS-932L IP camera software allows a perpetrator to execute arbitrary commands.

The vulnerability of the setSystemWizard and setSystemControl functions in D-Link DCS-932L IP cameras exists due to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary...