GeneralInformation

Hostnames	bdp.faperika.unri.ac.id
Domains	unri.ac.id
Country	Indonesia
City	Pekanbaru
Organization	UNIVERSITAS RIAU
ISP	UNIVERSITAS RIAU
ASN	AS56254

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 121 443 2000

501510358 | 2024-04-28T08:04:10.415824

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 28 Apr 2024 08:04:10 GMT
Content-Type: text/html
Content-Length: 4833
Last-Modified: Fri, 16 May 2014 15:12:48 GMT
ETag: "53762af0-12e1"
X-Varnish: 2
Age: 0
Via: 1.1 varnish (Varnish/5.2)
Accept-Ranges: bytes
Connection: keep-alive

-2060351928 | 2024-04-17T18:43:25.297279

121 / tcp

220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 01:43. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n

-898290444 | 2024-04-30T22:08:27.731223

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Tue, 30 Apr 2024 22:08:27 GMT
Content-Type: text/html
Content-Length: 1249
Connection: keep-alive
cache-control: private, no-cache, max-age=0
pragma: no-cache

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:fa:21:5f:76:a2:22:e9:32:53:50:c0:3a:14:9b:8a:cd:d2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  5 18:50:50 2024 GMT
            Not After : Jul  4 18:50:49 2024 GMT
        Subject: CN=bdp.faperika.unri.ac.id
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b5:b1:bf:e4:bd:28:e0:f4:f1:1b:96:98:57:c1:
                    63:ab:54:79:ee:e8:fd:3b:9e:2b:26:8e:33:34:3f:
                    52:78:c8:68:db:c8:a0:35:ad:2f:ed:39:e8:67:81:
                    f0:e8:53:9c:11:38:db:1d:01:2a:8c:8c:32:10:66:
                    06:97:bc:03:ac:63:c0:55:c0:8a:d9:e9:90:5c:92:
                    60:39:e1:20:83:5e:85:b6:1a:16:7f:bf:53:09:e8:
                    a0:77:12:96:17:0a:4d:4f:de:23:02:2c:96:2a:be:
                    1a:ac:4e:1d:94:3d:fe:9c:38:a1:2e:b5:64:89:72:
                    0c:c1:e9:85:18:00:be:40:af:ca:ea:29:f7:0f:3b:
                    09:af:7a:93:7f:99:e5:d1:b7:31:88:89:93:d4:e9:
                    2f:a4:5d:c5:75:33:07:f9:dd:ae:c8:00:27:e9:96:
                    22:42:9e:9d:56:84:1b:e4:7c:ee:83:3d:24:20:45:
                    9e:35:ef:d6:70:1b:30:78:54:ee:fb:ac:7f:38:00:
                    14:0c:bb:58:30:65:a3:35:bf:5b:14:24:8e:e0:de:
                    bc:77:8b:5d:f7:fe:57:97:65:f8:08:dc:de:55:a4:
                    a9:df:e2:98:a7:a6:9e:8b:2c:87:fb:e7:8c:a1:7e:
                    ca:d9:45:64:af:1c:b0:98:fd:ea:b2:ca:af:df:5b:
                    5d:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                6F:F1:D1:EC:03:52:DC:0B:87:13:B5:58:34:6B:EF:EE:B0:21:BF:4D
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:bdp.faperika.unri.ac.id
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Apr  5 19:50:50.510 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:EE:91:0A:06:4D:FC:F9:25:2D:8D:CE:
                                6D:17:EB:0E:3A:6C:33:35:D3:9A:F5:54:3D:6E:B5:4D:
                                2D:17:7B:63:EB:02:20:77:27:95:55:89:8E:33:86:A2:
                                0C:C2:7F:38:55:16:15:2A:33:03:67:3C:79:78:F9:60:
                                EE:A9:AF:C9:A0:8C:77
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  5 19:50:50.517 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:99:CE:1A:7A:BE:B3:F3:6C:50:EE:39:
                                7E:43:A2:D2:06:47:EA:13:AF:FF:E0:4F:04:03:10:70:
                                04:1C:9E:6E:07:02:20:7D:ED:59:E3:EC:A0:EF:52:AD:
                                38:FB:A3:E7:81:61:02:AD:01:00:6D:63:67:61:6C:8E:
                                10:94:EA:BB:74:50:41
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        65:a4:59:0b:10:dc:6e:93:39:23:59:3b:5c:35:4d:d7:15:59:
        19:1b:83:a8:ce:69:46:ff:af:28:b2:4c:13:b8:2e:37:f0:80:
        47:06:66:3b:c3:f0:3e:0a:bc:42:7c:e8:56:54:c5:6e:15:6e:
        1c:e4:90:2c:a7:0f:aa:02:66:33:2d:33:c3:db:1a:42:b9:1b:
        aa:ba:75:04:ee:6d:4b:72:c2:78:96:7d:7b:13:0b:4d:cc:48:
        75:58:4e:70:7f:70:7f:df:0f:ac:bf:9d:bc:e4:6a:b0:72:4f:
        09:62:bd:3a:9c:91:6e:b2:97:ac:bb:b9:d9:6b:1f:7a:59:0a:
        93:58:d8:d2:2a:28:7d:10:9e:d9:f2:08:ed:ef:6f:47:75:09:
        24:86:de:14:a6:3e:bf:90:0a:a6:23:c4:e4:62:e0:f0:12:8e:
        c7:39:c2:16:43:13:de:01:4d:56:3d:b2:45:1a:30:25:47:df:
        ab:10:af:e7:9b:61:8b:56:5e:b0:ec:31:bd:70:b2:8b:87:10:
        d6:c8:3d:3f:9e:25:eb:0f:c1:ac:65:60:6f:c7:1c:ac:63:fe:
        6a:82:e5:3d:e9:b7:c9:fb:b9:44:74:00:7a:14:40:21:25:5f:
        87:80:7e:78:93:d4:10:28:24:67:84:a0:6b:04:f7:15:e3:6e:
        8b:db:ca:8f

103.10.169.110

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

501510358 | 2024-04-28T08:04:10.415824
80 / tcp

nginx1.20.1

-2060351928 | 2024-04-17T18:43:25.297279
121 / tcp

Pure-FTPd

-898290444 | 2024-04-30T22:08:27.731223
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

103.10.169.110

Last Seen: 2024-05-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

501510358 | 2024-04-28T08:04:10.415824 80 / tcp

nginx1.20.1

-2060351928 | 2024-04-17T18:43:25.297279 121 / tcp

Pure-FTPd

-898290444 | 2024-04-30T22:08:27.731223 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

501510358 | 2024-04-28T08:04:10.415824
80 / tcp

-2060351928 | 2024-04-17T18:43:25.297279
121 / tcp

-898290444 | 2024-04-30T22:08:27.731223
443 / tcp