GeneralInformation

Country	Thailand
City	Bangkok
Organization	Office of the Permanent Secretary
ISP	Ministry of Interior
ASN	AS132117

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51766

5.3Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.

OpenPorts

25 53 110 465 587 993

783283025 | 2024-04-14T05:21:14.219759

25 / tcp

220 province4.moi.go.th ESMTP Exim 4.96 Sun, 14 Apr 2024 12:20:28 +0700
250-province4.moi.go.th Hello 224.60.50.93 [224.60.50.93]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-STARTTLS
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number:
            a5:98:89:ce:97:13:9a:0a
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Validity
            Not Before: Jul 19 08:56:59 2011 GMT
            Not After : Dec  3 08:56:59 2038 GMT
        Subject: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:d4:dd:2c:8b:b3:42:7e:63:71:7e:dc:9e:00:89:
                    6d:6b:dc:af:ba:4d:bd:fc:b3:c1:31:ad:7b:31:d6:
                    f5:2a:75:59:f6:af:f7:d9:45:09:f8:c1:25:61:ff:
                    00:6a:31:25:a9:a1:80:4d:a2:97:08:e8:c2:a2:27:
                    0b:05:8c:f6:ae:d7:c4:fe:0f:9c:81:db:57:ba:e4:
                    b6:7e:ce:df:20:67:da:b0:59:76:b8:a5:70:de:48:
                    4e:8d:03:f2:1f:cc:5c:46:39:bf:d3:1d:cb:06:cc:
                    0f:d0:59:b8:ef:a0:86:18:0c:9e:53:18:db:c8:c4:
                    87:15:bf:79:c8:7f:87:34:e5
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        2c:8d:4c:58:ec:b7:2f:4b:1c:10:cc:d0:6c:25:ff:e1:2e:94:
        7c:fc:2f:a7:0e:e1:a9:fd:21:32:37:fc:83:9f:47:67:10:4d:
        55:ca:08:df:dc:fe:08:09:6e:5d:9b:13:bd:48:0b:0a:ab:2c:
        24:13:23:fa:b3:82:fc:82:31:0b:bc:48:61:16:39:4e:03:6b:
        ed:4e:6f:93:d9:d1:ad:d4:ec:ed:1e:7f:74:71:4b:4a:e0:58:
        b4:ee:3b:c4:8e:16:8d:15:fb:a6:86:b1:fd:fe:75:82:c9:fc:
        b5:6c:e7:6c:35:da:af:11:4b:3c:66:d0:a9:43:76:80:bb:99:
        96:a6

1985604651 | 2024-05-05T02:18:43.703938

53 / tcp

9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.4
Resolver name: province4.moi.go.th

-1463518829 | 2024-04-17T21:39:09.627582

110 / tcp

+OK Dovecot DA ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
STLS
USER
SASL PLAIN
.

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number:
            a5:98:89:ce:97:13:9a:0a
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Validity
            Not Before: Jul 19 08:56:59 2011 GMT
            Not After : Dec  3 08:56:59 2038 GMT
        Subject: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:d4:dd:2c:8b:b3:42:7e:63:71:7e:dc:9e:00:89:
                    6d:6b:dc:af:ba:4d:bd:fc:b3:c1:31:ad:7b:31:d6:
                    f5:2a:75:59:f6:af:f7:d9:45:09:f8:c1:25:61:ff:
                    00:6a:31:25:a9:a1:80:4d:a2:97:08:e8:c2:a2:27:
                    0b:05:8c:f6:ae:d7:c4:fe:0f:9c:81:db:57:ba:e4:
                    b6:7e:ce:df:20:67:da:b0:59:76:b8:a5:70:de:48:
                    4e:8d:03:f2:1f:cc:5c:46:39:bf:d3:1d:cb:06:cc:
                    0f:d0:59:b8:ef:a0:86:18:0c:9e:53:18:db:c8:c4:
                    87:15:bf:79:c8:7f:87:34:e5
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        2c:8d:4c:58:ec:b7:2f:4b:1c:10:cc:d0:6c:25:ff:e1:2e:94:
        7c:fc:2f:a7:0e:e1:a9:fd:21:32:37:fc:83:9f:47:67:10:4d:
        55:ca:08:df:dc:fe:08:09:6e:5d:9b:13:bd:48:0b:0a:ab:2c:
        24:13:23:fa:b3:82:fc:82:31:0b:bc:48:61:16:39:4e:03:6b:
        ed:4e:6f:93:d9:d1:ad:d4:ec:ed:1e:7f:74:71:4b:4a:e0:58:
        b4:ee:3b:c4:8e:16:8d:15:fb:a6:86:b1:fd:fe:75:82:c9:fc:
        b5:6c:e7:6c:35:da:af:11:4b:3c:66:d0:a9:43:76:80:bb:99:
        96:a6

-800904924 | 2024-04-28T23:46:35.315773

465 / tcp

220 province4.moi.go.th ESMTP Exim 4.96 Mon, 29 Apr 2024 06:46:16 +0700
250-province4.moi.go.th Hello mmhlu2fs74mj7q.org [224.102.45.231]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number:
            a5:98:89:ce:97:13:9a:0a
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Validity
            Not Before: Jul 19 08:56:59 2011 GMT
            Not After : Dec  3 08:56:59 2038 GMT
        Subject: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:d4:dd:2c:8b:b3:42:7e:63:71:7e:dc:9e:00:89:
                    6d:6b:dc:af:ba:4d:bd:fc:b3:c1:31:ad:7b:31:d6:
                    f5:2a:75:59:f6:af:f7:d9:45:09:f8:c1:25:61:ff:
                    00:6a:31:25:a9:a1:80:4d:a2:97:08:e8:c2:a2:27:
                    0b:05:8c:f6:ae:d7:c4:fe:0f:9c:81:db:57:ba:e4:
                    b6:7e:ce:df:20:67:da:b0:59:76:b8:a5:70:de:48:
                    4e:8d:03:f2:1f:cc:5c:46:39:bf:d3:1d:cb:06:cc:
                    0f:d0:59:b8:ef:a0:86:18:0c:9e:53:18:db:c8:c4:
                    87:15:bf:79:c8:7f:87:34:e5
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        2c:8d:4c:58:ec:b7:2f:4b:1c:10:cc:d0:6c:25:ff:e1:2e:94:
        7c:fc:2f:a7:0e:e1:a9:fd:21:32:37:fc:83:9f:47:67:10:4d:
        55:ca:08:df:dc:fe:08:09:6e:5d:9b:13:bd:48:0b:0a:ab:2c:
        24:13:23:fa:b3:82:fc:82:31:0b:bc:48:61:16:39:4e:03:6b:
        ed:4e:6f:93:d9:d1:ad:d4:ec:ed:1e:7f:74:71:4b:4a:e0:58:
        b4:ee:3b:c4:8e:16:8d:15:fb:a6:86:b1:fd:fe:75:82:c9:fc:
        b5:6c:e7:6c:35:da:af:11:4b:3c:66:d0:a9:43:76:80:bb:99:
        96:a6

818194935 | 2024-04-11T02:48:50.520883

587 / tcp

220 province4.moi.go.th ESMTP Exim 4.96 Thu, 11 Apr 2024 09:47:56 +0700
250-province4.moi.go.th Hello 224.23.180.31 [224.23.180.31]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-STARTTLS
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number:
            a5:98:89:ce:97:13:9a:0a
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Validity
            Not Before: Jul 19 08:56:59 2011 GMT
            Not After : Dec  3 08:56:59 2038 GMT
        Subject: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:d4:dd:2c:8b:b3:42:7e:63:71:7e:dc:9e:00:89:
                    6d:6b:dc:af:ba:4d:bd:fc:b3:c1:31:ad:7b:31:d6:
                    f5:2a:75:59:f6:af:f7:d9:45:09:f8:c1:25:61:ff:
                    00:6a:31:25:a9:a1:80:4d:a2:97:08:e8:c2:a2:27:
                    0b:05:8c:f6:ae:d7:c4:fe:0f:9c:81:db:57:ba:e4:
                    b6:7e:ce:df:20:67:da:b0:59:76:b8:a5:70:de:48:
                    4e:8d:03:f2:1f:cc:5c:46:39:bf:d3:1d:cb:06:cc:
                    0f:d0:59:b8:ef:a0:86:18:0c:9e:53:18:db:c8:c4:
                    87:15:bf:79:c8:7f:87:34:e5
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        2c:8d:4c:58:ec:b7:2f:4b:1c:10:cc:d0:6c:25:ff:e1:2e:94:
        7c:fc:2f:a7:0e:e1:a9:fd:21:32:37:fc:83:9f:47:67:10:4d:
        55:ca:08:df:dc:fe:08:09:6e:5d:9b:13:bd:48:0b:0a:ab:2c:
        24:13:23:fa:b3:82:fc:82:31:0b:bc:48:61:16:39:4e:03:6b:
        ed:4e:6f:93:d9:d1:ad:d4:ec:ed:1e:7f:74:71:4b:4a:e0:58:
        b4:ee:3b:c4:8e:16:8d:15:fb:a6:86:b1:fd:fe:75:82:c9:fc:
        b5:6c:e7:6c:35:da:af:11:4b:3c:66:d0:a9:43:76:80:bb:99:
        96:a6

587770568 | 2024-04-15T13:25:25.171452

993 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN] Dovecot DA ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 1 (0x0)
        Serial Number:
            a5:98:89:ce:97:13:9a:0a
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Validity
            Not Before: Jul 19 08:56:59 2011 GMT
            Not After : Dec  3 08:56:59 2038 GMT
        Subject: C=GB, ST=Someprovince, L=Sometown, O=none, OU=none, CN=localhost/emailAddress=webaster@localhost
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:d4:dd:2c:8b:b3:42:7e:63:71:7e:dc:9e:00:89:
                    6d:6b:dc:af:ba:4d:bd:fc:b3:c1:31:ad:7b:31:d6:
                    f5:2a:75:59:f6:af:f7:d9:45:09:f8:c1:25:61:ff:
                    00:6a:31:25:a9:a1:80:4d:a2:97:08:e8:c2:a2:27:
                    0b:05:8c:f6:ae:d7:c4:fe:0f:9c:81:db:57:ba:e4:
                    b6:7e:ce:df:20:67:da:b0:59:76:b8:a5:70:de:48:
                    4e:8d:03:f2:1f:cc:5c:46:39:bf:d3:1d:cb:06:cc:
                    0f:d0:59:b8:ef:a0:86:18:0c:9e:53:18:db:c8:c4:
                    87:15:bf:79:c8:7f:87:34:e5
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        2c:8d:4c:58:ec:b7:2f:4b:1c:10:cc:d0:6c:25:ff:e1:2e:94:
        7c:fc:2f:a7:0e:e1:a9:fd:21:32:37:fc:83:9f:47:67:10:4d:
        55:ca:08:df:dc:fe:08:09:6e:5d:9b:13:bd:48:0b:0a:ab:2c:
        24:13:23:fa:b3:82:fc:82:31:0b:bc:48:61:16:39:4e:03:6b:
        ed:4e:6f:93:d9:d1:ad:d4:ec:ed:1e:7f:74:71:4b:4a:e0:58:
        b4:ee:3b:c4:8e:16:8d:15:fb:a6:86:b1:fd:fe:75:82:c9:fc:
        b5:6c:e7:6c:35:da:af:11:4b:3c:66:d0:a9:43:76:80:bb:99:
        96:a6

103.28.100.163

Last Seen: 2024-05-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

783283025 | 2024-04-14T05:21:14.219759
25 / tcp

Exim smtpd4.96

1985604651 | 2024-05-05T02:18:43.703938
53 / tcp

-1463518829 | 2024-04-17T21:39:09.627582
110 / tcp

-800904924 | 2024-04-28T23:46:35.315773
465 / tcp

Exim smtpd4.96

818194935 | 2024-04-11T02:48:50.520883
587 / tcp

Exim smtpd4.96

587770568 | 2024-04-15T13:25:25.171452
993 / tcp

Products

Pricing

Contact Us

103.28.100.163

Last Seen: 2024-05-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

783283025 | 2024-04-14T05:21:14.219759 25 / tcp

Exim smtpd4.96

1985604651 | 2024-05-05T02:18:43.703938 53 / tcp

-1463518829 | 2024-04-17T21:39:09.627582 110 / tcp

-800904924 | 2024-04-28T23:46:35.315773 465 / tcp

Exim smtpd4.96

818194935 | 2024-04-11T02:48:50.520883 587 / tcp

Exim smtpd4.96

587770568 | 2024-04-15T13:25:25.171452 993 / tcp

Products

Pricing

Contact Us

783283025 | 2024-04-14T05:21:14.219759
25 / tcp

1985604651 | 2024-05-05T02:18:43.703938
53 / tcp

-1463518829 | 2024-04-17T21:39:09.627582
110 / tcp

-800904924 | 2024-04-28T23:46:35.315773
465 / tcp

818194935 | 2024-04-11T02:48:50.520883
587 / tcp

587770568 | 2024-04-15T13:25:25.171452
993 / tcp