GeneralInformation

Hostnames	104-185-134-132.lightspeed.gdrpmi.sbcglobal.net
Domains	sbcglobal.net
Country	United States
City	Grand Rapids
Organization	AT&T Corp.
ISP	AT&T Services, Inc.
ASN	AS7018

WebTechnologies

JavaScript frameworks

JavaScript libraries

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.

OpenPorts

23 80 161 443 554 3260 4911 8080 47808

1245800606 | 2024-04-20T00:55:50.042195

23 / tcp

\r\nonly one telnet session supported\r\ncurrent connection to 190.211.255.106\r\nbye\r\n\r\n

-1535089807 | 2024-04-28T23:03:37.520555

80 / tcp

HTTP/1.0 401 Unauthorized
WWW-Authenticate: Digest realm="Use 'live' as User Name in order to log in to the respective level",nonce="120555536ce5572c093e18ef76a72586",opaque="",stale=FALSE,algorithm=MD5,qop="auth"

211343835 | 2024-04-18T02:51:36.813530

161 / udp

SNMP:
  Description: FLEXIDOME IP outdoor 4000 HD
  Versions:
    1

23450831 | 2024-04-22T00:31:27.932087

443 / tcp

HTTP/1.1 200 OK
Server: 
Date: Mon, 22 Apr 2024 00:31:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: private
X-XSS-Protection: 1; mode=block

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            c3:4a:9d:9c:e1:0d:d6:3a
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, ST=New York, L=Rochester, O=Lenel
        Validity
            Not Before: Oct 15 15:51:11 2010 GMT
            Not After : Aug 23 15:51:11 2020 GMT
        Subject: C=US, ST=New York, L=Rochester, O=Lenel
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:bd:9b:a6:03:d0:0d:d0:74:52:d1:01:dc:3b:93:
                    8d:56:22:36:c4:00:4f:dd:5f:14:36:cf:6c:bc:fd:
                    c0:b9:93:79:3e:43:b5:c4:8f:66:66:78:0a:6d:a5:
                    e7:91:50:7b:86:ca:0b:1d:4b:a8:9a:e0:76:55:f8:
                    d7:a0:04:15:a3:31:4c:c6:0d:6a:5e:40:83:f4:0b:
                    ff:0e:ce:4c:0b:32:ad:92:b6:ed:47:db:64:00:1f:
                    c4:74:e7:0d:a4:7f:80:8f:4f:92:b9:19:cf:b0:81:
                    aa:b0:6b:39:a1:4b:c0:1a:32:9a:67:99:47:c6:be:
                    da:a1:06:bb:04:65:a1:eb:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                A3:14:19:11:96:40:B8:90:86:C5:08:3C:D4:9A:72:4F:E1:0C:42:92
            X509v3 Authority Key Identifier: 
                keyid:A3:14:19:11:96:40:B8:90:86:C5:08:3C:D4:9A:72:4F:E1:0C:42:92
                DirName:/C=US/ST=New York/L=Rochester/O=Lenel
                serial:C3:4A:9D:9C:E1:0D:D6:3A
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        82:5d:fe:61:c1:dd:ab:57:10:a6:97:a3:31:8b:50:c8:0f:91:
        b0:f1:63:02:59:50:b7:0b:4f:05:65:fd:bb:e4:f9:a8:29:35:
        29:e0:48:7f:78:50:f2:c6:2d:4a:55:db:f9:56:48:a0:b3:57:
        10:16:00:3e:d4:9f:20:64:ed:a3:be:66:65:90:95:51:ed:d6:
        e5:1a:5c:17:25:d9:8c:4c:d5:06:9c:78:59:4e:2a:91:f3:2f:
        aa:72:9d:2e:98:0e:90:28:88:48:21:a1:08:81:98:8f:40:a2:
        d8:e8:99:2a:02:ba:34:63:8a:5b:9d:92:32:18:ab:7b:74:9f:
        65:ae

-1835375487 | 2024-04-10T14:19:22.986422

554 / tcp

RTSP/1.0 401 Unauthorized
CSeq: 1
WWW-Authenticate: Digest realm="Use 'live' as User Name",nonce="460647c1226c467344f909bc2f3c1c87",opaque="",stale=FALSE,algorithm=MD5

1087263640 | 2024-04-23T03:36:45.849098

3260 / tcp

iSCSI discovery targets
	Name: iqn.2005-12.com.bosch:unit00075f94f5c7.trg-000-sdcard
	Addresses: 104.185.134.132:3260,1

1898452418 | 2024-04-27T10:17:14.172658

4911 / tcp

fox a 0 -1 fox hello\n{\nfatal=s:Niagara4 Station Connections Unsupported\nfox.version=s:Niagara 4\n};;\n

1636792042 | 2024-04-23T03:16:01.506869

8080 / tcp

HTTP/1.1 200 OK
Date: Mon, 22 Apr 2024 05:44:02 GMT
Server: Jetty/5.1.x (Linux/2.6.10_mvl401-monahans_P arm java/J2ME Foundation Specification v1.1
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=j6owwfuliio1;Path=/
Content-Length: 524

-1464542277 | 2024-04-29T09:33:57.079018

47808 / udp

Instance ID: 101
Object Name: Kingsley_Lofts_HVAC_101
Location: unknown
Vendor Name: Tridium
Application Software: Tridium 4.4.73.24
Firmware: 4.4.73.24
Model Name: Niagara4 Station
Description: Local BACnet Device object

104.185.134.132

Last Seen: 2024-04-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1245800606 | 2024-04-20T00:55:50.042195
23 / tcp

-1535089807 | 2024-04-28T23:03:37.520555
80 / tcp

211343835 | 2024-04-18T02:51:36.813530
161 / udp

23450831 | 2024-04-22T00:31:27.932087
443 / tcp

-1835375487 | 2024-04-10T14:19:22.986422
554 / tcp

1087263640 | 2024-04-23T03:36:45.849098
3260 / tcp

1898452418 | 2024-04-27T10:17:14.172658
4911 / tcp

1636792042 | 2024-04-23T03:16:01.506869
8080 / tcp

Jetty5.1.x

-1464542277 | 2024-04-29T09:33:57.079018
47808 / udp

Niagara4 Station4.4.73.24

Products

Pricing

Contact Us

104.185.134.132

Last Seen: 2024-04-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1245800606 | 2024-04-20T00:55:50.042195 23 / tcp

-1535089807 | 2024-04-28T23:03:37.520555 80 / tcp

211343835 | 2024-04-18T02:51:36.813530 161 / udp

23450831 | 2024-04-22T00:31:27.932087 443 / tcp

-1835375487 | 2024-04-10T14:19:22.986422 554 / tcp

1087263640 | 2024-04-23T03:36:45.849098 3260 / tcp

1898452418 | 2024-04-27T10:17:14.172658 4911 / tcp

1636792042 | 2024-04-23T03:16:01.506869 8080 / tcp

Jetty5.1.x

-1464542277 | 2024-04-29T09:33:57.079018 47808 / udp

Niagara4 Station4.4.73.24

Products

Pricing

Contact Us

1245800606 | 2024-04-20T00:55:50.042195
23 / tcp

-1535089807 | 2024-04-28T23:03:37.520555
80 / tcp

211343835 | 2024-04-18T02:51:36.813530
161 / udp

23450831 | 2024-04-22T00:31:27.932087
443 / tcp

-1835375487 | 2024-04-10T14:19:22.986422
554 / tcp

1087263640 | 2024-04-23T03:36:45.849098
3260 / tcp

1898452418 | 2024-04-27T10:17:14.172658
4911 / tcp

1636792042 | 2024-04-23T03:16:01.506869
8080 / tcp

-1464542277 | 2024-04-29T09:33:57.079018
47808 / udp