Title: Tenda W302R wireless router w302r_mfg remote code execution

Description:  By sending a UDP packet with a certain string in the content, the user is able to make the router execute commands remotely.

This backdoor only works on the local lan. This backdoor was likely first implemented in Tendas W302R router, although it also exists in the Tenda W330R, as well as re-branded models, such as the Medialink MWN-WAPR150N.

Reference:

http://www.devttys0.com/2013/10/from-china-with-love/

Snort SID:  28289-28290

ClamAV:N/A

Title: WHMCS 5.2.8 Vulnerability

Description: Through the manipulation of variables, files are able to be written to a remote install of WHMCS.

Reference:

http://thehackernews.com/2013/10/web-hosting-software-whmcs-vulnerable.html

Snort SID: 28299

ClamAV: N/A

Title: Kore, Nuclear, and Magnitude Exploit Kits are on the rise

Description: Various Exploit Kits are scrambling to take the “King of the Hill” title after the arrest of ‘pauch’ the author of the Blackhole and Cool Exploit Kits.

Reference:

http://vrt-blog.snort.org/2013/10/sweet-orange-exploit-kit-was-new-king.html

Snort SID: Multiple

ClamAV: Multiple

Title:  Apple Releases OSX Mavericks, iOS 7.0.3

Description:  Apple has released the newest version of their OS for both the iOS platform and the Desktop.  Many security vulnerabilities are fixed in these releases, and both releases are free.

Reference:

http://www.apple.com

Snort SID: N/A

ClamAV: N/A