GeneralInformation

Hostnames	244.248.87.110.broad.sm.fj.dynamic.163data.com.cn
Domains	163data.com.cn
Country	China
City	Sanming
Organization	CHINANET FUJIAN PROVINCE NETWORK
ISP	CHINANET-BACKBONE
ASN	AS4134
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 9000

-828137564 | 2024-05-01T18:09:06.796324

22 / tcp

SSH-2.0-OpenSSH_6.6.1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDuJKvHEz04FJyaPVnXJPhAtGdMlE41ZWHM/fmrM2sM8lv2
TvcIKLPfdN4XzLJd7bD0iQ3rV7GwSTlNmuwHNWbAtpY6bYnX2FwC+d0GLhPC63jqiLiNE8QZzzBp
Ds6AVq950Wf/bcShU4afpaoawSpAUrdCtRM1jQ0CzBZ3r9VRptrrWUKvx6tS3mRKHxzCc+DUfwWG
nwQaHuMFK817UTnHrPlLZmrKPK9Lx1pSgGjvjPtHdgWYb4R5YNFpllkP3AX+mgOnYPHJrqX/L7pN
Ujb8KjPMkJvN4KcikYybayfc3OWDHwrFSfFnhyKKztZPDWsv32kJKHQuygGYyO+I3QlD
Fingerprint: 52:3f:80:10:34:b5:5b:d8:a7:88:fc:dd:78:6f:5e:c6

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group-exchange-sha1
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	arcfour256
	arcfour128
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com
	chacha20-poly1305@openssh.com
	aes128-cbc
	3des-cbc
	blowfish-cbc
	cast128-cbc
	aes192-cbc
	aes256-cbc
	arcfour
	rijndael-cbc@lysator.liu.se

MAC Algorithms:
	hmac-md5-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-ripemd160-etm@openssh.com
	hmac-sha1-96-etm@openssh.com
	hmac-md5-96-etm@openssh.com
	hmac-md5
	hmac-sha1
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-ripemd160
	hmac-ripemd160@openssh.com
	hmac-sha1-96
	hmac-md5-96

Compression Algorithms:
	none
	zlib@openssh.com

483066719 | 2024-05-20T18:53:30.583650

9000 / tcp

HTTP/1.1 407 Proxy Authentication Required
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 20 May 2024 18:53:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Proxy-Authenticate: Basic realm="Test Authentication System"

0

110.87.248.244

Last Seen: 2024-05-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-828137564 | 2024-05-01T18:09:06.796324
22 / tcp

OpenSSH6.6.1

483066719 | 2024-05-20T18:53:30.583650
9000 / tcp

nginx1.18.0

Products

Pricing

Contact Us

110.87.248.244

Last Seen: 2024-05-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-828137564 | 2024-05-01T18:09:06.796324 22 / tcp

OpenSSH6.6.1

483066719 | 2024-05-20T18:53:30.583650 9000 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-828137564 | 2024-05-01T18:09:06.796324
22 / tcp

483066719 | 2024-05-20T18:53:30.583650
9000 / tcp