Here Comes Another Popular, Supremely Hackable Router – Linksys Cisco EA2700

Another Major Router Proven Vulnerable to Hackers

Another Major Router Proven Vulnerable to Hackers

Before you ask, yes, we did just get finished telling you about a recent report that exposed vulnerabilities in up to thirteen popular routers. Wouldn’t you know it? Right after publishing that post, we found another story about a popular router with gaping vulnerabilities.

In this case, Ars Technica is reporting about a major bug in the “classic firmware” for the Linksys EA2700 Network Manager. According to the article, the browser-based administration panel features a cross-site forgery weakness which, as we covered in our last post, sends unauthorized commands from an otherwise trusted website. Combine that with the fact these routers such as the EA2700 don’t require the current passcode to be entered when the password is changed, and voila! All a hacker need do is lure you to a malicious website and your router is primed for exploitation.

Sadly, the EA2700 does not have the capability of being upgraded to open source firmware like DD-WRT, Tomato, or OpenWRT due to the Marvell chipset. These sorts of firmware issues don’t arise when you’re dealing with a router flashed with advanced open-source firmware like DD-WRT or Tomato. Aside from making your wireless network infinitely more functional and fast, the security provided by a Tomato or DD-WRT router is all you need to ensure that your online presence is fully protected. Protect your neck (or network. Sorry…listening to Wu-Tang)!

Want more security flaw information and privacy news? Follow us on Twitter (@flashrouters) or like us on Facebook.

Updated: 5/17/2013

4 thoughts on “Here Comes Another Popular, Supremely Hackable Router – Linksys Cisco EA2700

  1. Pingback: How To Fix D-Link & Other Router Firmware Flaws/Exploits?

  2. Ken

    I’m pretty sure they have dd-wrt running on the 2700 now. I was just doing some research and came across this post: and then while continuing my research I landed on your site.

    It looks like the 5ghz band isn’t working on the 2700 but I’d take dd-wrt over the linksys/cisco firmware any day, especially in light of all these NSA leaks! I just wish Tomato was available for it.

    1. admin

      Yes it does now appear semi-supported. Thanks for the note.

      We don’t think anyone should leave their firmware in the hands of the router maker!


Leave a Reply

Your email address will not be published. Required fields are marked *