D-Link routers are common home networking devices sold at numerous retail outlets. The company says beta firmware patches and hot-patch mitigations available for its DSR-150, DSR.250 and DSR.500 models significantly reduce the ability for an adversary to target a vulnerable router. The attacks are dependent on three chained bugs identified by researchers as an unauthenticated remote LAN/WAN root command injection flaw, authenticated root. vulnerability and an authenticated. crontab injection vulnerability.
Source: https://threatpost.com/d-link-routers-zero-day-flaws/162064/