GeneralInformation

Hostnames	sql16162.dreamhostps.com
Domains	dreamhostps.com
Country	United States
City	Reston
Organization	New Dream Network, LLC
ISP	New Dream Network, LLC
ASN	AS26347

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 123 3306

881222287 | 2024-04-20T12:47:36.427747

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.5
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBDna84p1ZuXubnM05wLLa4TO
ReuZzLjMBPDl1ObvgBIy2F5ryMU8Cc1phjyZVGuNoCfc8Re99sgj5Y3eilqxfi4=
Fingerprint: 41:b3:3c:3f:17:ec:60:52:c3:32:4f:7d:95:24:a3:7c

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com
	chacha20-poly1305@openssh.com

MAC Algorithms:
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-04-09T06:24:20.814353

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 09 Apr 2024 06:24:20 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://east1-phpmyadmin.dreamhost.com/signon.php?pma_servername=107.180.236.51

573077208 | 2024-04-21T19:52:49.797327

123 / udp

NTP
protocolversion: 3
stratum: 3
leap: 0
precision: -23
rootdelay: 0.00387573242188
rootdisp: 0.00921630859375
refid: 3497099922
reftime: 3922717872.54
poll: 3

924379546 | 2024-04-22T08:31:20.963848

3306 / tcp

MySQL:
  Error Message: Host '224.56.73.168' is not allowed to connect to this MySQL server
  Error Code: 1130

107.180.236.51

Last Seen: 2024-04-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

881222287 | 2024-04-20T12:47:36.427747
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.5

589765266 | 2024-04-09T06:24:20.814353
80 / tcp

nginx1.18.0

573077208 | 2024-04-21T19:52:49.797327
123 / udp

924379546 | 2024-04-22T08:31:20.963848
3306 / tcp

MySQL

Products

Pricing

Contact Us

107.180.236.51

Last Seen: 2024-04-22

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

881222287 | 2024-04-20T12:47:36.427747 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.5

589765266 | 2024-04-09T06:24:20.814353 80 / tcp

nginx1.18.0

573077208 | 2024-04-21T19:52:49.797327 123 / udp

924379546 | 2024-04-22T08:31:20.963848 3306 / tcp

MySQL

Products

Pricing

Contact Us

881222287 | 2024-04-20T12:47:36.427747
22 / tcp

589765266 | 2024-04-09T06:24:20.814353
80 / tcp

573077208 | 2024-04-21T19:52:49.797327
123 / udp

924379546 | 2024-04-22T08:31:20.963848
3306 / tcp