Linksys routers found serious vulnerabilities

This is not the first time, and certainly not the last time, that we have released news about security holes found in routers. This time it's up to Linksys and some 26 signature router models, all sharing the same vulnerabilities.

Affects 26 Linksys router models

Routers are the peripherals in charge of the communication of our equipment with the Internet and other computers that are connected to it, the access by unscrupulous looks, such as hackers, leaves us totally unprotected so that they intercept our data from anything we do on the Internet or directly take control of our team.

The vulnerabilities discovered on Linksys routers allow you to do the following:

• Cause of denial of service (DoS) by sending requests to an unapproved API. Administrators are blocked until the attack stops. It allows to reveal all the connected computers and the possibility to download all the Wi-Fi keys, the configuration list and the firmware version. Create a hidden "backdoor" account with root privileges and the ability to execute commands.

As you can see, they are quite important vulnerabilities that are affecting 26 models of the WRT and EAxxxx series, which are the following:

• WRT1200ACWRT1900ACWRT1900ACSWRT3200ACMEA2700EA2750EA3500EA4500 v3EA6100EA6200EA6300EA6350 v2EA6350 v3EA6400EA6500EA6700EA6900EA7300EA7400EA7500EA8300EA9400EA9500

As of this writing, Linksys is working to fix these vulnerabilities to offer a firmware update as soon as possible. In the meantime, they strongly recommend against using these routers or disabling all network options until an update comes out.

Source: nakedsecurity