A vulnerability in the firmware running on many D-Link products allows attackers to take over cameras and other 120 products. The same issue exists in more than 120 other products, including cameras, access points, modems, routers, and storage devices. The flaw resides in a firmware service called dcp that processes remote commands by listening on port 5978. The vulnerability allows code injection which lets the attackers set a custom password for the Web-based management interface and allows the remote access to the camera feed by sending specifically crafted commands.”]
Source: https://securityaffairs.co/wordpress/49143/breaking-news/d-link.html