Carnegie-Mellon CERT warns of a flawed implementation of HNAP in D-Link routers (CVE-2016-6563) that could be exploited for remote execute code. The vulnerability affects the Home Network Automation Protocol (HNAP) of D-link routers. The only workaround is to disable remote administration, the only way to fix the problem is disableing remote administration. A Metasploit proof-of-concept exploit code has been published by a security expert.”]
Source: https://securityaffairs.co/wordpress/53231/hacking/cve-2016-6563-dlink.html