SourceSec warns that many, if not all, routers marketed by D-Link since 2006 have a flawed implementation of the Home Network Administration Protocol (HNAP).

"Local and external attackers can reportedly exploit the flaw to gain access to the router's network settings," according to The H Security.

"According to SourceSec, the D-Link routers include both a regular administrative interface and a HNAP connection that can't be disabled," the article states. "SourceSec say they have verified that this administrative access via HTTP is vulnerable in the DI-524, DIR-628 and DIR-655 routers, allowing attackers to edit the router's administrative settings and take full control of all network traffic."

Click here to read the article at The H Security.