GeneralInformation

Hostnames	ip-119-47-115-135.webhost.co.nz
Domains	webhost.co.nz
Country	Australia
City	Sydney
Organization	Dreamscape Networks PTY LTD
ISP	Dreamscape Networks Limited
ASN	AS38719
Operating System	Debian

WebTechnologies

CMS

SilverStripe

JavaScript frameworks

Handlebars

JavaScript libraries

Modernizr

Programming languages

PHP

Tag managers

Google Tag Manager

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2019-11072	7.5lighttpd before 1.4.54 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a malicious HTTP GET request, as demonstrated by mishandling of /%2F? in burl_normalize_2F_to_slash_fix in burl.c. NOTE: The developer states "The feature which can be abused to cause the crash is a new feature in lighttpd 1.4.50, and is not enabled by default. It must be explicitly configured in the config file (e.g. lighttpd.conf). Certain input will trigger an abort() in lighttpd when that feature is enabled. lighttpd detects the underflow or realloc() will fail (in both 32-bit and 64-bit executables), also detected in lighttpd. Either triggers an explicit abort() by lighttpd. This is not exploitable beyond triggering the explicit abort() with subsequent application exit.
CVE-2018-19052	5.0An issue was discovered in mod_alias_physical_handler in mod_alias.c in lighttpd before 1.4.50. There is potential ../ path traversal of a single directory above an alias target, with a specific mod_alias configuration where the matched alias lacks a trailing '/' character, but the alias target filesystem path does have a trailing '/' character.
CVE-2015-3200	5.0mod_auth in lighttpd before 1.4.36 allows remote attackers to inject arbitrary log entries via a basic HTTP authentication string without a colon character, as demonstrated by a string containing a NULL and new line character.

OpenPorts

21 22 80 111

1591683817 | 2024-04-11T14:12:50.020625

21 / tcp

220 NotARealServer 0.0.0.1 - Its just here becuase we watch it like a hawk

-2121979515 | 2024-04-17T02:25:45.864681

22 / tcp

SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC1UYJ+Q95eioPkdKHjiKzohbp9szRx2/KKw7Rv7SN11GNp
ceMttY+JPiJJURnh6pWosR9KK/fz59szYSjGhzKGo8yusz8OAW1gUrnxYtQixXDYG8bJOuPOhJYm
PZksSbAo/twdjczfRt9I0gPa2UbF0xfmatM37k67mI+QuM7vnG0RZveVY0XeKpXG/pCfDh+8/hLy
1HLetd+lhM/nY/bw/z1yhP+otENZDG5qae2eZ5+k4Z34D4xY5k3sQwIKB77/elavvXh0UhUYTsQ0
e+9LCWtBotT/0si6T0+ancwFm6ZUU4DGzuHzdsCLl6ykT1ZbyRNYCVFvvTdlBM7wF/1P
Fingerprint: e9:c7:23:9f:71:bf:6e:ae:29:fa:99:88:d9:a7:e3:ab

Kex Algorithms:
	gss-gex-sha1-toWM5Slw5Ew8Mqkay+al2g==
	gss-group1-sha1-toWM5Slw5Ew8Mqkay+al2g==
	gss-group14-sha1-toWM5Slw5Ew8Mqkay+al2g==
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	ssh-dss

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com
	chacha20-poly1305@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-918048086 | 2024-04-05T02:19:17.623746

80 / tcp

HTTP/1.1 200 OK
X-Powered-By: PHP/5.6.40-0+deb8u4
Content-type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Date: Fri, 05 Apr 2024 02:19:17 GMT
Server: lighttpd/1.4.35

-1345205424 | 2024-04-01T12:48:19.367552

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

119.47.115.135

Last Seen: 2024-04-17

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1591683817 | 2024-04-11T14:12:50.020625
21 / tcp

-2121979515 | 2024-04-17T02:25:45.864681
22 / tcp

OpenSSH6.7p1 Debian 5+deb8u4

-918048086 | 2024-04-05T02:19:17.623746
80 / tcp

lighttpd1.4.35

-1345205424 | 2024-04-01T12:48:19.367552
111 / tcp

Products

Pricing

Contact Us

119.47.115.135

Last Seen: 2024-04-17

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1591683817 | 2024-04-11T14:12:50.020625 21 / tcp

-2121979515 | 2024-04-17T02:25:45.864681 22 / tcp

OpenSSH6.7p1 Debian 5+deb8u4

-918048086 | 2024-04-05T02:19:17.623746 80 / tcp

lighttpd1.4.35

-1345205424 | 2024-04-01T12:48:19.367552 111 / tcp

Products

Pricing

Contact Us

1591683817 | 2024-04-11T14:12:50.020625
21 / tcp

-2121979515 | 2024-04-17T02:25:45.864681
22 / tcp

-918048086 | 2024-04-05T02:19:17.623746
80 / tcp

-1345205424 | 2024-04-01T12:48:19.367552
111 / tcp