GeneralInformation

Country	China
City	Nanjing
Organization	Chinanet Jiangsu Province Network
ISP	CHINANET-BACKBONE
ASN	AS4134
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

161 1701 1723 2000 9000

-1314237642 | 2024-05-01T01:09:34.913505

161 / udp

SNMP:
  Versions:
    3
  Engineid Format: text
  Engine Boots: 0
  Engineid Data: 80003a8c04
  Enterprise: 14988
  Engine Time: 0:00:00

1814268925 | 2024-04-29T02:19:41.807376

1701 / udp

\xc8\x02\x00c\x00\x00\x00\x00\x00\x00\x00\x01\x80\x08\x00\x00\x00\x00\x00\x02\x80\x08\x00\x00\x00\x02\x01\x00\x80\n\x00\x00\x00\x03\x00\x00\x00\x01\x80\n\x00\x00\x00\x04\x00\x00\x00\x00\x00\x08\x00\x00\x00\x06\x00\x01\x80\r\x00\x00\x00\x07jljssq2\x00\x0e\x00\x00\x00\x08MikroTik\x80\x08\x00\x00\x00\t\xefo\x80\x08\x00\x00\x00\n\x00\x04

-1721035045 | 2024-04-24T15:54:09.924802

1723 / tcp

PPTP:
  Firmware: 1
  Hostname: jljssq2
  Vendor: MikroTik

-1538260461 | 2024-04-15T19:11:12.635261

2000 / tcp

\x01\x00\x00\x00

-1985323841 | 2024-05-11T08:21:04.728457

9000 / tcp

HTTP/1.1 407 Proxy Authentication Required
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 11 May 2024 08:21:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Proxy-Authenticate: Basic realm="Test Authentication System"

0

114.239.172.151

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1314237642 | 2024-05-01T01:09:34.913505
161 / udp

MikroTik

1814268925 | 2024-04-29T02:19:41.807376
1701 / udp

-1721035045 | 2024-04-24T15:54:09.924802
1723 / tcp

PPTP

-1538260461 | 2024-04-15T19:11:12.635261
2000 / tcp

MikroTik bandwidth-test server

-1985323841 | 2024-05-11T08:21:04.728457
9000 / tcp

nginx1.18.0

Products

Pricing

Contact Us

114.239.172.151

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1314237642 | 2024-05-01T01:09:34.913505 161 / udp

MikroTik

1814268925 | 2024-04-29T02:19:41.807376 1701 / udp

-1721035045 | 2024-04-24T15:54:09.924802 1723 / tcp

PPTP

-1538260461 | 2024-04-15T19:11:12.635261 2000 / tcp

MikroTik bandwidth-test server

-1985323841 | 2024-05-11T08:21:04.728457 9000 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1314237642 | 2024-05-01T01:09:34.913505
161 / udp

1814268925 | 2024-04-29T02:19:41.807376
1701 / udp

-1721035045 | 2024-04-24T15:54:09.924802
1723 / tcp

-1538260461 | 2024-04-15T19:11:12.635261
2000 / tcp

-1985323841 | 2024-05-11T08:21:04.728457
9000 / tcp