GeneralInformation

Country	China
City	Beijing
Organization	CHINA UNICOM CLOUD DATA COMPANY LIMITED
ISP	China Networks Inter-Exchange
ASN	AS4847

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-1938

7.5When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited in ways that may be surprising. In Apache Tomcat 9.0.0.M1 to 9.0.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99, Tomcat shipped with an AJP Connector enabled by default that listened on all configured IP addresses. It was expected (and recommended in the security guide) that this Connector would be disabled if not required. This vulnerability report identified a mechanism that allowed: - returning arbitrary files from anywhere in the web application - processing any file in the web application as a JSP Further, if the web application allowed file upload and stored those files within the web application (or the attacker was able to control the content of the web application by some other means) then this, along with the ability to process a file as a JSP, made remote code execution possible.

OpenPorts

3389 5986 8009 8080

-638398372 | 2024-05-05T05:12:39.921081

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x01\x08\x00\x02\x00\x00\x00

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:2b:08:df:a8:b1:2f:98:49:66:d6:36:d2:37:11:36
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=Order10S.m3erp.com
        Validity
            Not Before: Feb  1 08:50:10 2024 GMT
            Not After : Aug  2 08:50:10 2024 GMT
        Subject: CN=Order10S.m3erp.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b4:55:ec:0c:76:3d:d4:0d:c6:cf:f9:35:ef:d8:
                    16:b3:d4:2a:5c:ce:6d:61:04:fd:8d:74:8c:9d:59:
                    b8:12:5f:d8:dc:80:5f:21:6b:e9:e8:4e:d8:28:bd:
                    bf:74:34:79:f5:32:06:57:73:ef:53:36:a3:ac:0e:
                    0a:56:1f:12:d4:01:63:17:c8:1a:4d:53:a2:3f:c7:
                    73:8a:db:31:13:f3:62:62:cf:c5:3d:5d:04:b6:69:
                    51:7a:60:09:7d:fc:c8:4a:34:a4:d7:14:80:e8:72:
                    57:4b:5d:95:3d:6b:0a:c6:fc:e3:1d:67:b7:5c:c9:
                    cc:03:13:e7:08:a6:03:f1:27:d8:ee:79:be:cf:23:
                    9f:29:73:98:6a:fd:e6:2c:92:98:a3:73:a6:e7:d0:
                    d6:ff:69:6a:1b:e9:18:94:9b:56:7a:fb:af:ea:5a:
                    48:1e:1b:bb:84:e0:96:7d:15:3b:20:4a:e6:ab:3d:
                    14:16:e5:45:94:0a:92:37:51:3f:5e:c4:45:ad:f4:
                    a5:15:8f:6f:37:b2:2c:a0:cc:1a:3a:30:49:75:56:
                    2e:48:cd:b5:d0:30:e9:2f:63:6a:0c:1b:bd:2c:53:
                    9e:49:d9:f8:aa:ee:a3:69:9d:20:1d:a6:4e:97:20:
                    4f:ef:69:cc:71:42:7f:f4:a1:6d:ba:23:1b:92:f8:
                    83:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        6c:81:68:71:0a:47:06:32:24:b3:49:44:04:e1:42:19:9e:49:
        bc:0f:45:56:ab:ac:51:cd:5e:08:a7:31:32:72:b6:c2:0e:f0:
        e5:ea:c8:0b:2f:8e:7b:0f:96:2d:6d:ee:6e:44:ef:35:fa:f0:
        a1:51:96:5b:3c:2a:c5:0b:ca:98:5a:8a:b5:b5:26:e9:16:9b:
        fb:e8:72:31:ec:f8:54:1d:1f:a7:8a:77:88:70:a8:11:1a:bf:
        d1:59:93:79:08:08:9a:c3:12:b5:cc:43:6e:67:e5:95:24:76:
        f6:7b:74:ea:7a:6a:33:02:e3:8f:6f:3e:af:cb:b0:ac:b9:f0:
        82:15:67:db:9e:08:a1:ed:cf:66:b0:0b:40:ab:a7:53:00:ce:
        df:88:b8:7a:59:a6:11:75:21:42:ba:81:4a:57:8e:d8:26:5c:
        a1:a6:bb:c4:8d:a2:b2:fa:08:c4:08:47:47:66:fc:d1:eb:c4:
        f9:74:4c:b8:46:d5:61:2d:ff:a7:22:52:1a:6b:65:f7:d9:42:
        e6:b2:bd:25:d9:18:90:f4:4e:e7:56:a7:8e:30:55:b8:eb:18:
        09:69:99:95:24:15:27:b1:3b:55:42:72:34:42:5a:13:a9:3c:
        88:0f:61:99:99:69:c4:d9:67:59:38:ea:77:40:b6:ab:1c:f6:
        e9:82:e9:a0

1489525118 | 2024-04-23T23:57:31.909240

5986 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 23 Apr 2024 23:57:31 GMT
Connection: close
Content-Length: 315


WinRM NTLM Info:
  OS: Windows Server 2008 R2
  OS Build: 6.1.7601
  Target Name: M3ERP
  NetBIOS Domain Name: M3ERP
  NetBIOS Computer Name: ORDER10S
  DNS Domain Name: m3erp.com
  DNS Tree Name: m3erp.com
  FQDN: Order10S.m3erp.com

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            16:84:77:56:14:21:1b:a5:44:02:a8:6d:bd:41:d5:8c
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=Cloudbase-Init WinRM
        Validity
            Not Before: Jun 17 01:57:17 2017 GMT
            Not After : Jun 17 01:57:17 2027 GMT
        Subject: CN=Cloudbase-Init WinRM
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b3:ce:e7:3d:39:c9:e0:9d:73:22:6f:c6:f6:31:
                    2c:c2:38:08:52:63:47:31:64:9b:da:1d:67:8b:42:
                    e2:8c:cc:0c:10:06:57:5a:e3:02:0e:92:20:b5:ee:
                    2d:cd:27:33:23:1b:07:d8:21:5f:13:c7:05:7f:73:
                    4a:a0:d1:86:c9:00:e2:25:e5:ef:44:f3:f6:61:38:
                    6b:09:d5:d3:c2:6d:9d:f4:bc:11:1d:42:34:82:8e:
                    ac:a7:5f:19:83:e0:d6:0e:73:6e:1b:01:e0:db:41:
                    33:09:79:21:32:6c:89:de:22:c8:a9:f7:c8:b0:d6:
                    c1:8b:49:ea:79:54:61:63:97:3f:81:16:a3:a0:0b:
                    16:82:79:01:93:b3:a9:68:0e:a6:7d:db:31:b0:4b:
                    85:87:e3:4a:c5:d0:b0:76:a5:2f:1a:e1:5a:3e:ff:
                    01:fa:8a:c3:55:2f:78:58:97:81:61:e3:bd:62:0c:
                    b0:b8:c5:98:1b:55:c7:62:55:8f:5e:54:e7:70:ee:
                    84:05:e4:11:49:b7:d6:ba:bb:2e:88:e4:ad:99:c2:
                    9b:49:9f:ca:96:8a:85:58:9b:c4:e5:70:15:51:ad:
                    45:c3:a0:41:2a:74:dd:97:de:8b:19:d9:7d:c2:01:
                    79:95:f6:b2:96:08:82:fa:6d:98:40:6a:07:20:9c:
                    f0:15
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        5b:95:a7:82:09:5d:f2:84:4a:68:0a:99:82:03:42:f7:fb:25:
        06:73:fe:dd:79:c9:1a:f5:1a:b8:76:50:f1:4e:3c:4f:df:65:
        33:bb:74:78:e8:2f:65:e4:8e:dc:73:8e:ff:1c:8a:07:97:fd:
        24:4f:c5:cc:c7:0f:e9:6c:03:10:4c:cf:1c:ac:ff:77:fb:e0:
        45:73:e8:42:c6:02:18:50:af:c6:60:6b:21:0f:90:7d:9d:32:
        39:e1:b3:77:9a:d3:2a:6d:ef:71:e7:da:32:72:2e:b2:32:ed:
        e3:91:0c:1c:0a:ba:c8:d9:26:2a:8d:34:67:f3:b6:e2:de:27:
        4c:41:8c:eb:be:d7:b5:df:88:04:16:44:95:e3:b2:36:bc:ce:
        e2:65:77:d8:97:3f:c3:c2:ca:55:bb:a6:74:f8:b0:57:a3:e4:
        12:10:55:3b:73:e4:11:ab:5a:7e:89:de:92:9d:ef:a6:48:5a:
        8a:9b:7d:dd:b9:1a:11:ab:44:e0:a4:e3:1c:6f:ab:a6:02:9a:
        46:23:a8:6e:b7:51:67:51:f5:aa:9f:b7:ae:ca:17:44:a4:a0:
        43:3a:93:73:e8:4a:06:80:65:75:0d:78:3d:b0:2a:3f:6e:78:
        6b:89:41:2c:c8:f5:83:a1:e7:d3:e9:83:94:f0:a6:3b:11:55:
        01:90:2e:22

1644043081 | 2024-04-18T06:23:44.426246

8009 / tcp

<html><head><title>Apache Tomcat/6.0.41 - Error report</title><style><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}HR {color : #525D76;}--></style> </head><body><h1>HTTP Status 404 - /asdadadas</h1><HR size="1" noshade="noshade"><p><b>type</b> Status report</p><p><b>message</b> <u>/asdadadas</u></p><p><b>description</b> <u>The requested resource is not available.</u></p><HR size="1" noshade="noshade"><h3>Apache Tomcat/6.0.41</h3></body></html>

-1365192906 | 2024-04-29T02:07:40.853517

8080 / tcp

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Accept-Ranges: bytes
ETag: W/"7662-1400496640000"
Last-Modified: Mon, 19 May 2014 10:50:40 GMT
Content-Type: text/html
Content-Length: 7662
Date: Mon, 29 Apr 2024 02:07:40 GMT

123.58.249.234

Last Seen: 2024-05-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-638398372 | 2024-05-05T05:12:39.921081
3389 / tcp

Remote Desktop Protocol

1489525118 | 2024-04-23T23:57:31.909240
5986 / tcp

WinRM

1644043081 | 2024-04-18T06:23:44.426246
8009 / tcp

Apache Tomcat6.0.41

-1365192906 | 2024-04-29T02:07:40.853517
8080 / tcp

Apache Tomcat

Products

Pricing

Contact Us

123.58.249.234

Last Seen: 2024-05-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-638398372 | 2024-05-05T05:12:39.921081 3389 / tcp

Remote Desktop Protocol

1489525118 | 2024-04-23T23:57:31.909240 5986 / tcp

WinRM

1644043081 | 2024-04-18T06:23:44.426246 8009 / tcp

Apache Tomcat6.0.41

-1365192906 | 2024-04-29T02:07:40.853517 8080 / tcp

Apache Tomcat

Products

Pricing

Contact Us

-638398372 | 2024-05-05T05:12:39.921081
3389 / tcp

1489525118 | 2024-04-23T23:57:31.909240
5986 / tcp

1644043081 | 2024-04-18T06:23:44.426246
8009 / tcp

-1365192906 | 2024-04-29T02:07:40.853517
8080 / tcp