GeneralInformation

Country	Bangladesh
City	Dhaka
Organization	Next Online Limited
ISP	Next Online Limited.
ASN	AS9441

WebTechnologies

Miscellaneous

Gravatar

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2022-37454	The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.
CVE-2022-31630	In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information.
CVE-2022-31629	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.
CVE-2022-31628	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.
CVE-2022-31626	6.0In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when pdo_mysql extension with mysqlnd driver, if the third party is allowed to supply host to connect to and the password for the connection, password of excessive length can trigger a buffer overflow in PHP, which can lead to a remote code execution vulnerability.
CVE-2022-31625	6.8In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when using Postgres database extension, supplying invalid parameters to the parametrized query may lead to PHP attempting to free memory using uninitialized data as pointers. This could lead to RCE vulnerability or denial of service.
CVE-2021-21708	6.8In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter functions with FILTER_VALIDATE_FLOAT filter and min/max limits, if the filter fails, there is a possibility to trigger use of allocated memory after free, which can result it crashes, and potentially in overwrite of other memory chunks and RCE. This issue affects: code that uses FILTER_VALIDATE_FLOAT with min/max limits.
CVE-2021-21707	5.0In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.
CVE-2021-21703	6.9In PHP versions 7.3.x up to and including 7.3.31, 7.4.x below 7.4.25 and 8.0.x below 8.0.12, when running PHP FPM SAPI with main FPM daemon process running as root and child worker processes running as lower-privileged users, it is possible for the child processes to access memory shared with the main process and write to it, modifying it in a way that would cause the root process to conduct invalid memory reads and writes, which can be used to escalate privileges from local unprivileged user to the root user.
CVE-2017-9118	5.0PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

21 80 111 443 3306 5353 8001 8005 8008 8010 8011 8015 8082 8083 9090 9092

-475985707 | 2024-05-02T07:48:11.180099

21 / tcp

220 (vsFTPd 3.0.2)
230 Login successful.
214-The following commands are recognized.
 ABOR ACCT ALLO APPE CDUP CWD  DELE EPRT EPSV FEAT HELP LIST MDTM MKD
 MODE NLST NOOP OPTS PASS PASV PORT PWD  QUIT REIN REST RETR RMD  RNFR
 RNTO SITE SIZE SMNT STAT STOR STOU STRU SYST TYPE USER XCUP XCWD XMKD
 XPWD XRMD
214 Help OK.
211-Features:
 EPRT
 EPSV
 MDTM
 PASV
 REST STREAM
 SIZE
 TVFS
 UTF8
211 End

-194069548 | 2024-05-03T16:46:21.383483

80 / tcp

HTTP/1.1 200 OK
Date: Fri, 03 May 2024 16:02:55 GMT
Server: Apache
X-Powered-By: PHP/7.4.24
Access-Control-Allow-Origin: *
Content-Length: 26
Content-Type: text/html; charset=UTF-8

-1345205424 | 2024-04-25T12:51:08.070746

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-04-12T10:35:09.712704

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-194069548 | 2024-05-02T21:12:16.043916

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 02 May 2024 20:28:56 GMT
Server: Apache
X-Powered-By: PHP/7.4.24
Access-Control-Allow-Origin: *
Content-Length: 26
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 17923 (0x4603)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=localhost.localdomain/emailAddress=root@localhost.localdomain
        Validity
            Not Before: Oct 10 07:04:50 2021 GMT
            Not After : Oct 10 07:04:50 2022 GMT
        Subject: C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=localhost.localdomain/emailAddress=root@localhost.localdomain
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c9:e5:45:64:f4:45:90:4c:40:a9:d4:1b:66:b2:
                    29:ad:ec:a6:a1:5b:13:4c:02:be:30:8c:38:40:23:
                    f3:08:95:a3:c6:e6:40:80:83:0f:d3:7e:97:a0:2f:
                    09:7c:66:26:a5:db:8a:4e:9c:5a:4f:f9:6c:c8:bf:
                    23:e6:6f:d0:48:55:6c:65:4b:c1:1b:82:2d:1b:25:
                    33:40:3b:a6:34:d1:ef:8a:8a:e2:c5:95:ba:5c:db:
                    3a:fa:c3:1f:08:89:0a:97:51:7b:97:63:ec:f8:9f:
                    21:63:e1:1d:c9:5f:44:62:f6:cf:d5:77:2c:89:7d:
                    be:df:1b:29:2f:30:a8:f2:69:d3:ef:25:af:5b:21:
                    c9:f4:f1:e0:a3:5f:af:72:0c:47:86:8c:2f:3a:7f:
                    9d:90:01:1f:78:29:57:12:be:33:77:87:4a:ea:0e:
                    b3:71:12:0e:61:4d:77:93:94:ce:84:e0:83:14:1a:
                    24:b4:37:49:c3:c0:de:39:e8:6f:f1:83:94:80:a7:
                    d6:d1:9a:cf:88:83:c7:33:e7:f4:56:6a:27:4c:c0:
                    ce:69:fc:8f:13:3a:fc:a9:e9:ab:54:f0:14:cf:8a:
                    0b:7c:64:14:10:17:fd:05:f7:e3:af:e1:95:1e:bc:
                    53:ae:ff:df:98:c7:9b:71:1a:84:78:26:bc:23:ed:
                    5f:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Key Usage: 
                Digital Signature, Non Repudiation, Key Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        51:d0:31:43:f6:1e:6d:01:e8:4c:50:3d:4a:52:7e:63:48:8d:
        61:21:cd:00:99:02:e7:8f:b9:b0:9b:f5:aa:b2:b5:14:85:37:
        24:06:38:19:06:bb:c2:33:c8:90:b8:e0:8e:20:05:53:00:d6:
        b1:4d:19:03:f0:4b:7b:95:2a:ae:68:2c:a2:c8:9f:0d:7f:a7:
        55:be:a4:c0:cd:bb:72:67:a6:4d:2b:15:5a:55:3f:e0:dd:f6:
        e5:6c:ea:69:f3:06:58:77:5f:79:a4:1c:36:a5:29:37:a2:f0:
        39:c2:a4:76:42:2d:80:23:4a:89:84:32:5b:fc:b6:91:48:7a:
        38:62:6c:5c:bb:92:d2:97:93:2c:87:63:8c:84:5f:a7:df:c2:
        b1:66:95:2d:e3:87:0a:fc:48:c5:c2:0d:15:59:d2:65:d5:f1:
        98:8a:71:31:51:7f:a9:69:d5:a9:c9:2a:a7:ca:cd:e3:6b:ee:
        49:f0:2e:de:b5:eb:cc:21:c2:60:0f:bf:5e:59:0a:68:47:28:
        09:47:55:64:bf:7e:f4:1b:59:0c:3c:e6:8f:36:24:2f:f5:35:
        c8:78:39:74:07:43:21:9e:27:d6:41:47:1c:f3:72:4c:26:8d:
        8f:99:0d:8d:ed:f6:2b:e4:28:8d:83:6e:74:a2:d3:c9:84:ca:
        68:fa:b2:9e

-84169638 | 2024-04-21T19:35:50.897520

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 5.7.24
  Capabilities: 65535
  Server Language: 33
  Server Status: 2
  Extended Server Capabilities: 49663
  Authentication Plugin: mysql_native_password

1327367852 | 2024-04-26T12:01:38.920277

5353 / udp

mDNS:
  services:
    9/tcp workstation:
      Name=linux-2 [00:0c:29:60:41:3f]
      Address=103.4.145.253 fe80::a9f8:3834:c097:4f32
  answers:
    PTR:
      _workstation._tcp.local

-1325037479 | 2024-04-17T14:24:10.291285

8001 / tcp

HTTP/1.0 500 Internal Server Error
Date: Wed, 17 Apr 2024 13:42:36 GMT
Server: Apache
X-Powered-By: PHP/7.4.24
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Connection: close
Content-Type: text/html; charset=UTF-8

-593626054 | 2024-04-29T13:07:56.374067

8005 / tcp

HTTP/1.1 200 OK
Date: Mon, 29 Apr 2024 12:25:00 GMT
Server: Apache
Last-Modified: Wed, 23 Mar 2022 12:54:29 GMT
ETag: "2091-5dae23af0a912"
Accept-Ranges: bytes
Content-Length: 8337
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=UTF-8

-362826861 | 2024-05-03T16:18:47.542830

8008 / tcp

HTTP/1.0 500 Internal Server Error
Date: Fri, 03 May 2024 15:35:20 GMT
Server: Apache
X-Powered-By: PHP/7.4.24
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Content-Length: 3246
Connection: close
Content-Type: application/json

119979285 | 2024-04-10T18:09:44.767103

8010 / tcp

HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 17:28:59 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 09:04:40 GMT
ETag: "22c9-5e70d166f0c14"
Accept-Ranges: bytes
Content-Length: 8905
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=UTF-8

1795158355 | 2024-04-28T13:57:59.170889

8011 / tcp

HTTP/1.0 500 Internal Server Error
Date: Sun, 28 Apr 2024 13:15:06 GMT
Server: Apache
X-Powered-By: PHP/7.4.24
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Content-Length: 6950
Connection: close
Content-Type: application/json

1524203820 | 2024-04-23T00:24:22.979394

8015 / tcp

HTTP/1.1 200 OK
Date: Mon, 22 Apr 2024 23:42:14 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 11:17:43 GMT
ETag: "21f0-5e70ef23b6808"
Accept-Ranges: bytes
Content-Length: 8688
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=UTF-8

1410193794 | 2024-05-02T20:55:09.345665

8082 / tcp

HTTP/1.1 404 
Content-Type: text/html;charset=utf-8
Content-Language: en
Content-Length: 431
Date: Thu, 02 May 2024 20:11:49 GMT

39446703 | 2024-05-02T02:31:54.697026

8083 / tcp

HTTP/1.1 404 
Content-Type: text/html;charset=utf-8
Content-Language: en
Content-Length: 431
Date: Thu, 02 May 2024 01:48:40 GMT

<!doctype html><html lang="en"><head><title>HTTP Status 404 – Not Found</title><style type="text/css">body {font-family:Tahoma,Arial,sans-serif;} h1, h2, h3, b {color:white;background-color:#525D76;} h1 {font-size:22px;} h2 {font-size:16px;} h3 {font-size:14px;} p {font-size:12px;} a {color:black;} .line {height:1px;background-color:#525D76;border:none;}</style></head><body><h1>HTTP Status 404 – Not Found</h1></body></html>

858158057 | 2024-05-02T20:38:56.181846

9090 / tcp

HTTP/1.1 200 
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Date: Thu, 02 May 2024 19:55:36 GMT

1410193794 | 2024-04-25T14:45:01.923233

9092 / tcp

HTTP/1.1 404 
Content-Type: text/html;charset=utf-8
Content-Language: en
Content-Length: 431
Date: Thu, 25 Apr 2024 14:02:34 GMT

103.4.145.253

Last Seen: 2024-05-03

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-475985707 | 2024-05-02T07:48:11.180099
21 / tcp

-194069548 | 2024-05-03T16:46:21.383483
80 / tcp

Apache httpd

-1345205424 | 2024-04-25T12:51:08.070746
111 / tcp

-1345205424 | 2024-04-12T10:35:09.712704
111 / udp

-194069548 | 2024-05-02T21:12:16.043916
443 / tcp

Apache httpd

-84169638 | 2024-04-21T19:35:50.897520
3306 / tcp

MySQL5.7.24

1327367852 | 2024-04-26T12:01:38.920277
5353 / udp

mDNS

-1325037479 | 2024-04-17T14:24:10.291285
8001 / tcp

Apache httpd

-593626054 | 2024-04-29T13:07:56.374067
8005 / tcp

Apache httpd

-362826861 | 2024-05-03T16:18:47.542830
8008 / tcp

Apache httpd

119979285 | 2024-04-10T18:09:44.767103
8010 / tcp

Apache httpd

1795158355 | 2024-04-28T13:57:59.170889
8011 / tcp

1524203820 | 2024-04-23T00:24:22.979394
8015 / tcp

1410193794 | 2024-05-02T20:55:09.345665
8082 / tcp

39446703 | 2024-05-02T02:31:54.697026
8083 / tcp

858158057 | 2024-05-02T20:38:56.181846
9090 / tcp

Apache Tomcat

1410193794 | 2024-04-25T14:45:01.923233
9092 / tcp

Products

Pricing

Contact Us

103.4.145.253

Last Seen: 2024-05-03

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-475985707 | 2024-05-02T07:48:11.180099 21 / tcp

-194069548 | 2024-05-03T16:46:21.383483 80 / tcp

-1345205424 | 2024-04-25T12:51:08.070746 111 / tcp

-1345205424 | 2024-04-12T10:35:09.712704 111 / udp

-194069548 | 2024-05-02T21:12:16.043916 443 / tcp

-84169638 | 2024-04-21T19:35:50.897520 3306 / tcp

1327367852 | 2024-04-26T12:01:38.920277 5353 / udp

-1325037479 | 2024-04-17T14:24:10.291285 8001 / tcp

-593626054 | 2024-04-29T13:07:56.374067 8005 / tcp

-362826861 | 2024-05-03T16:18:47.542830 8008 / tcp

119979285 | 2024-04-10T18:09:44.767103 8010 / tcp

1795158355 | 2024-04-28T13:57:59.170889 8011 / tcp

1524203820 | 2024-04-23T00:24:22.979394 8015 / tcp

1410193794 | 2024-05-02T20:55:09.345665 8082 / tcp

39446703 | 2024-05-02T02:31:54.697026 8083 / tcp

858158057 | 2024-05-02T20:38:56.181846 9090 / tcp

1410193794 | 2024-04-25T14:45:01.923233 9092 / tcp

Products

Pricing

Contact Us

-475985707 | 2024-05-02T07:48:11.180099
21 / tcp

-194069548 | 2024-05-03T16:46:21.383483
80 / tcp

-1345205424 | 2024-04-25T12:51:08.070746
111 / tcp

-1345205424 | 2024-04-12T10:35:09.712704
111 / udp

-194069548 | 2024-05-02T21:12:16.043916
443 / tcp

-84169638 | 2024-04-21T19:35:50.897520
3306 / tcp

1327367852 | 2024-04-26T12:01:38.920277
5353 / udp

-1325037479 | 2024-04-17T14:24:10.291285
8001 / tcp

-593626054 | 2024-04-29T13:07:56.374067
8005 / tcp

-362826861 | 2024-05-03T16:18:47.542830
8008 / tcp

119979285 | 2024-04-10T18:09:44.767103
8010 / tcp

1795158355 | 2024-04-28T13:57:59.170889
8011 / tcp

1524203820 | 2024-04-23T00:24:22.979394
8015 / tcp

1410193794 | 2024-05-02T20:55:09.345665
8082 / tcp

39446703 | 2024-05-02T02:31:54.697026
8083 / tcp

858158057 | 2024-05-02T20:38:56.181846
9090 / tcp

1410193794 | 2024-04-25T14:45:01.923233
9092 / tcp