GeneralInformation

Hostnames	asianxxxpics.net www.asianxxxpics.net 142.179.serverel.net
Domains	asianxxxpics.net serverel.net
Country	Netherlands
City	Amsterdam
Organization	Serverel Inc.
ISP	Serverel Inc.
ASN	AS50245

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

25 53 80 443

-530409624 | 2024-05-18T22:51:43.757788

25 / tcp

220 s45121.serverel.net ESMTP Postfix
250-s45121.serverel.net
250-PIPELINING
250-SIZE 10240000
250-ETRN
250-AUTH PLAIN LOGIN DIGEST-MD5 CRAM-MD5
250-AUTH=PLAIN LOGIN DIGEST-MD5 CRAM-MD5
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN

-578989462 | 2024-05-27T21:54:26.797693

53 / tcp

9.9.4-RedHat-9.9.4-61.el7
Resolver name: s45121.serverel.net

-578989462 | 2024-05-28T08:58:38.787170

53 / udp

9.9.4-RedHat-9.9.4-61.el7
Resolver name: s45121.serverel.net

-1812490505 | 2024-05-11T17:55:31.292085

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.16.1
Date: Sat, 11 May 2024 17:55:32 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive
Keep-Alive: timeout=30

-1812490505 | 2024-05-27T22:29:35.728382

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.16.1
Date: Mon, 27 May 2024 22:29:39 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive
Keep-Alive: timeout=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:c8:2c:7e:07:e7:1a:47:b5:f6:8e:d3:80:09:ca:6e:b4:43
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May 16 11:02:55 2024 GMT
            Not After : Aug 14 11:02:54 2024 GMT
        Subject: CN=asianxxxpics.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:b5:f7:fb:7f:f5:a4:bd:70:e2:16:22:0b:6a:
                    ab:83:b1:f4:5b:68:d8:79:c7:05:84:56:79:5f:b8:
                    a4:94:b1:78:0b:73:e6:e7:f2:06:2c:3c:7e:ec:90:
                    52:d3:8b:f7:3b:01:a4:d1:5d:d1:3e:23:e6:4a:30:
                    fe:ed:04:65:9c:ea:44:6a:fd:5b:49:91:27:de:3f:
                    de:2c:eb:ee:a2:09:e9:73:e9:85:88:f8:dd:8c:76:
                    97:50:22:5d:e2:3c:ed:6f:43:c8:b7:79:49:e9:3f:
                    6d:28:ca:3e:a6:ef:9c:ff:c9:ac:f7:e2:6d:c9:68:
                    55:57:3c:3c:84:b2:36:f4:0e:f3:6e:98:45:a7:d3:
                    be:34:4a:ad:ee:c3:d0:ba:a9:1f:fc:38:22:19:5a:
                    7e:1e:81:e4:e1:c0:a9:1d:e5:83:5e:f1:3e:03:75:
                    de:68:17:65:c4:77:20:07:45:e3:aa:86:2d:ee:77:
                    2b:02:4f:33:71:ed:45:f5:55:9c:2c:dc:16:42:85:
                    a8:f6:bf:d9:95:3b:41:51:cc:48:ee:ec:32:9e:59:
                    ca:65:7c:43:46:42:41:1f:3e:32:02:4d:20:79:54:
                    18:7a:26:3e:6d:8c:b9:73:ee:9b:5d:77:34:2a:73:
                    46:8d:55:3c:13:81:f8:bd:91:06:20:f9:85:6e:2b:
                    b3:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A2:37:94:E6:FA:4B:28:DD:9B:CE:D5:F0:E8:63:20:48:D7:CE:A1:7F
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:asianxxxpics.net, DNS:www.asianxxxpics.net
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May 16 12:02:55.711 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:16:38:09:FF:57:6A:CF:3A:A0:01:22:D9:
                                77:70:EB:35:25:CB:16:16:95:7A:1D:C4:9F:20:4B:7A:
                                CB:B0:29:12:02:20:0F:4E:68:D9:04:A4:39:78:C1:3B:
                                5B:6A:EB:8F:ED:2C:52:57:2D:BD:6A:6B:01:08:3F:2E:
                                BB:E4:3C:97:13:B2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : May 16 12:02:55.716 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:12:67:40:BF:B2:78:DA:BD:8A:A5:F1:CD:
                                3D:A4:D4:49:51:12:DF:66:45:7B:DD:3A:BE:D6:DE:59:
                                A8:DC:56:9F:02:21:00:FA:FB:8B:DF:02:71:C9:32:E4:
                                E4:B5:AB:16:E4:B9:29:25:17:80:6E:DF:12:51:8D:C4:
                                D6:BF:47:74:C9:3E:B0
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        99:54:4a:84:f8:ec:6f:a9:8f:66:12:8b:9f:71:81:3b:4f:97:
        25:49:79:12:3f:b1:21:a1:d9:49:ac:34:73:4c:f2:de:9c:4f:
        e1:93:33:1c:6d:ca:ed:35:8c:22:ef:b4:2d:b5:ba:44:70:f5:
        54:06:09:9b:a0:fe:70:9b:d1:ae:d4:4d:96:64:be:58:4b:cd:
        74:a8:90:e0:70:35:60:9e:79:45:bc:52:f4:2d:b7:02:a6:a4:
        c4:90:39:2b:ef:72:79:dc:45:96:1f:4f:18:69:5f:29:42:b1:
        a2:b3:0a:0d:aa:3a:64:2e:57:ef:f7:3c:93:2b:d4:f0:eb:33:
        a1:bc:d3:28:dd:cd:b9:9c:83:fe:42:82:88:b1:90:33:36:8c:
        e3:73:14:24:e5:e4:1c:6e:18:f2:83:e1:4e:07:0c:bc:c6:8c:
        b8:a1:4f:91:25:4e:11:ef:00:65:60:6b:a4:23:36:10:9b:69:
        d2:02:0d:a9:2b:98:f6:d5:4b:4a:13:d6:8f:a3:6e:5d:57:91:
        96:12:31:d3:35:fa:f2:4b:92:d5:44:23:7e:4a:4c:23:7b:82:
        18:e3:f8:f2:d4:33:9f:98:e6:4a:09:41:b8:5f:ac:ea:cc:95:
        92:05:3f:b5:d6:85:2d:f1:53:42:b2:e0:35:8b:56:45:8a:05:
        83:2f:76:53

109.206.179.142

Last Seen: 2024-05-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-530409624 | 2024-05-18T22:51:43.757788
25 / tcp

Postfix smtpd

-578989462 | 2024-05-27T21:54:26.797693
53 / tcp

-578989462 | 2024-05-28T08:58:38.787170
53 / udp

-1812490505 | 2024-05-11T17:55:31.292085
80 / tcp

nginx1.16.1

-1812490505 | 2024-05-27T22:29:35.728382
443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

109.206.179.142

Last Seen: 2024-05-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-530409624 | 2024-05-18T22:51:43.757788 25 / tcp

Postfix smtpd

-578989462 | 2024-05-27T21:54:26.797693 53 / tcp

-578989462 | 2024-05-28T08:58:38.787170 53 / udp

-1812490505 | 2024-05-11T17:55:31.292085 80 / tcp

nginx1.16.1

-1812490505 | 2024-05-27T22:29:35.728382 443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

-530409624 | 2024-05-18T22:51:43.757788
25 / tcp

-578989462 | 2024-05-27T21:54:26.797693
53 / tcp

-578989462 | 2024-05-28T08:58:38.787170
53 / udp

-1812490505 | 2024-05-11T17:55:31.292085
80 / tcp

-1812490505 | 2024-05-27T22:29:35.728382
443 / tcp