D-Link is in the midst of pushing out firmware updates for eight of its home router models, addressing three serious remote code injection vulnerabilities. The vulnerabilities provide an attacker with remote access to the router without the need for authentication. Researchers Peter Adkins and Tiago Caetano Henriques discovered the bugs and reported them to D- Link. The highest priority vulnerability, however, is the issue with the ping tool, they said. D-link is expected to have firmware updates to eight of the models by March 10.
Source: https://threatpost.com/d-link-working-on-firmware-updates-for-three-critical-bugs/111420/