D-link routers with captcha added for an extra layer of authentication have been proven insecure.

The captcha part of the authentication system has not been broken... but the underlying system has been.

More info here-
http://www.sourcesec.com/2009/05/12/...tially-broken/