GeneralInformation

Hostnames	download.support.alcatel-lucent.com download-emea.support.alcatel-lucent.com download.support.nokia.com download-fin.support.nokia.com
Domains	alcatel-lucent.com nokia.com
Country	Finland
City	Helsinki
Organization	Nokia Solutions and Networks Oy
ISP	Nokia Solutions and Networks Oy
ASN	AS8983

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-9315	5.0 PRODUCT NOT SUPPORTED WHEN ASSIGNED Oracle iPlanet Web Server 7.0.x has Incorrect Access Control for admingui/version URIs in the Administration console, as demonstrated by unauthenticated read access to encryption keys. NOTE: a related support policy can be found in the www.oracle.com references attached to this CVE.
CVE-2020-9314	4.9 PRODUCT NOT SUPPORTED WHEN ASSIGNED Oracle iPlanet Web Server 7.0.x allows image injection in the Administration console via the productNameSrc parameter to an admingui URI. This issue exists because of an incomplete fix for CVE-2012-0516. NOTE: a related support policy can be found in the www.oracle.com references attached to this CVE.
CVE-2017-10055	5.8Vulnerability in the Oracle iPlanet Web Server component of Oracle Fusion Middleware (subcomponent: Admin Graphical User Interface). The supported version that is affected is 7.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle iPlanet Web Server. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle iPlanet Web Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle iPlanet Web Server accessible data as well as unauthorized read access to a subset of Oracle iPlanet Web Server accessible data. CVSS 3.0 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).
CVE-2016-1950	6.8Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and 3.20.x and 3.21.x before 3.21.1, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code via crafted ASN.1 data in an X.509 certificate.
CVE-2015-7182	7.5Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted OCTET STRING data.
CVE-2013-1620	4.3The TLS implementation in Mozilla Network Security Services (NSS) does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.
CVE-2012-1738	5.0Unspecified vulnerability in the Oracle iPlanet Web Server component in Oracle Sun Products Suite Java System Web Server 6.1 and Oracle iPlanet Web Server 7.0 allows remote attackers to affect availability via unknown vectors related to Web Server.

OpenPorts

22 80 443 8443

-1950432318 | 2024-04-23T06:52:36.062930

22 / tcp

SSH-2.0-Sun_SSH_1.1.8
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAABIwAAAIEAyarmiYEbk5A2L7hgClZeKRXVZrRVPuvvqmCgdusz95GCfPxi
3XqSk98fT0WwVoILEdxqQNwMMjJUPAJOtVrggK0yEe42f8IXM++aSHIxirMrbrLe1zMsuV9wVqC5
O0KpFDbtjV9OD+izHL1KsNPCY4I/inmxGdsuszit8IZ69Ck=
Fingerprint: d3:3f:da:59:14:8b:39:f7:05:15:9f:90:5e:68:5e:94

Kex Algorithms:
	gss-group1-sha1-toWM5Slw5Ew8Mqkay+al2g==
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group-exchange-sha1
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa
	ssh-dss

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr

MAC Algorithms:
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1
	hmac-sha2-256-96
	hmac-sha2-512-96
	hmac-sha1-96
	hmac-md5
	hmac-md5-96

Compression Algorithms:
	none
	zlib@openssh.com
	zlib

-979634223 | 2024-05-01T21:58:03.833598

80 / tcp

HTTP/1.1 200 OK
Server: Oracle-iPlanet-Web-Server/7.0
Date: Wed, 01 May 2024 21:37:34 GMT
Content-type: text/html
Last-modified: Tue, 10 Jul 2012 19:25:28 GMT
Content-length: 1178
Etag: "49a-4ffc81a8"
Accept-ranges: bytes

1250321865 | 2024-04-27T19:47:10.923415

443 / tcp

HTTP/1.1 302 Moved Temporarily
Server: Oracle-iPlanet-Web-Server/7.0
Date: Sat, 27 Apr 2024 19:26:43 GMT
Cache-Control: no-cache
Location: https://login.networks.nokia.com/dcpcc/?TYPE=33554433&REALMOID=06-0ec73bc3-182b-4a41-95cb-1a81cae647f6&GUID=&SMAUTHREASON=0&METHOD=GET&SMAGENTNAME=$SM$dBHGopwStuuVDHnrFX7SJHeLNQCFb1HHnF%2bfo8mjSGnn2UX1WM6i5uskPM8uh3Nk&TARGET=$SM$https%3a%2f%2fdownload-fin%2esupport%2enokia%2ecom%2f
Content-length: 0

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:8f:30:46:86:cf:37:c9:42:a2:99:f6:49:28:69:af
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
        Validity
            Not Before: Feb 14 00:00:00 2024 GMT
            Not After : Mar 16 23:59:59 2025 GMT
        Subject: C=FI, L=Espoo, O=Nokia Oyj, CN=download-fin.support.nokia.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a8:d0:22:93:67:b1:39:a5:2a:4e:7f:88:cb:07:
                    e1:d4:8f:5c:94:19:cf:da:96:1b:f6:11:cc:01:07:
                    a1:9b:ef:09:2f:e6:95:a9:2b:48:33:e7:09:26:29:
                    c6:d3:e2:69:1c:0d:86:d4:5b:21:ae:d0:51:f2:fb:
                    ca:0b:57:89:a8:d2:0e:cf:01:e5:7d:c5:c0:81:e1:
                    9f:0a:ef:d2:57:1b:d1:9d:42:48:52:e8:11:98:51:
                    6e:d6:c2:c1:bf:2f:39:6f:01:2a:b3:4b:48:d5:23:
                    df:6a:ad:6f:ba:74:e1:70:bf:a7:c6:58:4f:b7:19:
                    d9:a5:5b:03:3a:fa:95:28:21:2b:5c:ab:47:88:b0:
                    a9:21:e2:ca:e2:33:81:8c:5a:6e:35:15:22:91:c6:
                    66:13:72:86:65:23:99:0e:02:c7:8b:0f:48:11:53:
                    7e:fa:cb:f0:f2:4f:e1:54:ff:5f:de:a9:76:c4:94:
                    9e:6a:1b:3b:34:e0:85:e1:55:8d:96:d6:ae:72:48:
                    e9:5a:48:13:05:d7:35:7d:36:8b:11:53:a8:5b:67:
                    6b:2d:c4:28:1b:78:d8:1d:05:1c:a2:3c:00:e2:71:
                    bb:40:ac:43:3e:a6:9a:41:ef:1b:a3:8f:9b:48:5d:
                    e6:ca:a7:37:63:14:31:1a:88:57:06:9a:8d:53:22:
                    05:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                74:85:80:C0:66:C7:DF:37:DE:CF:BD:29:37:AA:03:1D:BE:ED:CD:17
            X509v3 Subject Key Identifier: 
                7B:1C:DB:C9:4E:7C:F0:2A:4C:F8:F2:A0:97:03:4C:B5:F5:53:C5:74
            X509v3 Subject Alternative Name: 
                DNS:download-fin.support.nokia.com, DNS:download.support.nokia.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
                Full Name:
                  URI:http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 14 10:01:48.070 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:50:F0:45:38:FF:59:77:72:DD:38:68:22:
                                30:41:AF:DA:9D:42:06:65:87:7E:29:A2:12:CB:F1:64:
                                B5:6D:A3:37:02:21:00:9F:2D:CA:06:B0:0F:A0:3F:3C:
                                99:77:60:CF:A3:19:18:AD:10:39:F0:DE:32:D7:7D:46:
                                48:E6:6B:12:2F:A0:72
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Feb 14 10:01:47.997 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:93:48:13:A9:1D:48:5A:0B:8A:6F:BC:
                                88:5A:37:98:AB:37:53:72:1C:7E:CF:43:02:17:94:0B:
                                2A:83:E7:7E:1F:02:20:26:6D:5C:75:15:38:98:89:1B:
                                71:75:1B:1E:C8:F1:8F:C2:A6:1D:46:64:52:BB:1D:47:
                                93:77:F4:B1:62:87:B2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb 14 10:01:48.044 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:94:F8:5D:D0:32:DF:C4:57:48:69:F0:
                                54:5C:FC:74:46:29:73:4D:8D:76:82:E7:9F:58:E0:93:
                                38:58:56:7A:A9:02:21:00:AA:9C:14:20:D5:5F:58:07:
                                32:91:1B:B7:91:9F:A1:22:C3:3B:96:44:EA:66:C2:E9:
                                49:46:DB:94:76:FC:DA:01
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        25:d9:5b:49:30:b7:91:32:78:a2:0c:94:d9:08:bf:d4:16:a9:
        48:56:35:cd:5a:b6:e5:10:98:ce:a4:6a:33:ec:1c:b3:c2:bc:
        21:a5:7c:bd:db:03:c5:49:14:8a:25:a7:96:1a:2b:e5:4b:3d:
        45:7f:5d:51:64:a4:aa:74:c7:78:b0:42:4f:66:ff:49:06:6d:
        c0:37:56:a7:6d:fc:fa:32:48:3f:25:96:ab:79:d6:14:e2:67:
        f1:1b:59:4e:d8:3d:4e:7f:61:59:70:b3:67:dc:1d:68:c9:91:
        78:22:99:f9:55:05:2a:23:04:4b:bb:8c:18:56:8c:a1:e5:15:
        a7:a1:c1:b0:11:c5:15:1b:ac:c2:0c:c5:83:6d:b5:9f:63:b9:
        12:f8:c4:8f:e8:f0:75:6a:3d:46:be:a9:81:1d:50:fb:e9:df:
        c2:04:41:44:82:ed:21:cc:66:23:52:d0:8d:2f:2e:49:4c:64:
        36:3d:41:73:c6:e4:58:82:11:3f:99:0c:bc:93:3a:de:62:e3:
        8c:22:67:db:01:c6:67:1e:14:49:1f:cc:b4:cd:3d:ba:85:a3:
        e4:2f:f9:c0:92:dc:bf:06:80:6a:94:30:3c:ef:6e:3b:92:48:
        5a:a2:32:36:85:7f:a4:29:06:c2:7f:ce:cf:ec:04:13:71:d8:
        15:9b:0b:9c

-1103186649 | 2024-04-22T09:50:50.891368

8443 / tcp

HTTP/1.1 200 OK
Server: Oracle-iPlanet-Web-Server/7.0
Date: Mon, 22 Apr 2024 09:30:25 GMT
Content-type: text/html
Last-modified: Thu, 05 Aug 2010 16:43:10 GMT
Content-length: 12036
Etag: "2f04-4c5aea1e"
Accept-ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            8b:81:8c:16:ac:e8:03:ee:00:00:00:00:50:df:36:e3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Entrust, Inc., OU=See www.entrust.net\/legal-terms, OU=(c) 2012 Entrust, Inc. - for authorized use only, CN=Entrust Certification Authority - L1K
        Validity
            Not Before: Dec  1 12:59:32 2017 GMT
            Not After : Dec  1 13:29:31 2019 GMT
        Subject: C=US, ST=Illinois, L=Naperville, O=Alcatel-Lucent USA Inc., CN=download-emea.support.alcatel-lucent.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bb:cc:76:9c:27:d5:e0:9a:8d:5a:0f:56:6d:92:
                    64:e3:f6:64:1e:28:5f:d8:9e:48:6a:9a:7a:df:ca:
                    1d:57:94:5b:6d:91:ed:4c:3e:92:17:50:55:98:8f:
                    24:b9:60:44:0c:74:64:42:b8:fe:06:ef:b2:0a:a9:
                    01:bf:e1:86:32:f3:c7:07:a0:f0:7c:68:5b:79:45:
                    cf:b2:c1:ac:9f:ac:9b:9c:0c:d7:c9:3e:d7:74:51:
                    40:6e:e8:97:48:34:f2:42:8a:af:7e:90:07:68:13:
                    e4:47:48:42:b7:6b:97:5d:80:2f:c1:9f:77:a8:e3:
                    d7:59:c6:f4:2a:5b:50:d7:ee:e1:69:0a:f7:c4:20:
                    d8:95:32:38:1b:46:66:22:d7:7e:87:4e:86:8c:f5:
                    0b:62:8c:19:8c:58:50:b9:c8:2b:e5:63:c3:01:26:
                    36:10:88:c6:09:0a:fa:de:96:13:b4:35:1c:c1:39:
                    77:0f:9b:55:d3:60:f2:38:20:bd:ba:fd:06:e1:4e:
                    31:5e:df:aa:6f:df:2e:56:c0:98:61:55:c0:a0:dc:
                    3e:09:47:db:9c:d0:dd:20:f9:f4:cd:10:2e:83:8c:
                    cf:95:9d:3f:46:8d:5e:29:2e:46:93:64:af:c9:76:
                    3d:33:59:36:41:73:cf:27:ad:11:2b:7a:bf:cf:64:
                    26:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.entrust.net/level1k.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114028.10.1.5
                  CPS: http://www.entrust.net/rpa
                Policy: 2.23.140.1.2.2
            Authority Information Access: 
                OCSP - URI:http://ocsp.entrust.net
                CA Issuers - URI:http://aia.entrust.net/l1k-chain256.cer
            X509v3 Subject Alternative Name: 
                DNS:download-emea.support.alcatel-lucent.com, DNS:download.support.alcatel-lucent.com
            X509v3 Authority Key Identifier: 
                82:A2:70:74:DD:BC:53:3F:CF:7B:D4:F7:CD:7F:A7:60:C6:0A:4C:BF
            X509v3 Subject Key Identifier: 
                0A:95:E8:87:45:9F:22:76:A1:BF:C6:C1:5F:31:2D:9A:9A:4C:76:67
            X509v3 Basic Constraints: 
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        35:4a:28:e8:e3:cb:a7:f2:b3:6b:c5:94:2b:06:e1:80:2b:80:
        dd:3a:49:5a:2f:bc:4a:0e:ea:f6:39:d9:03:93:8d:dd:4b:94:
        35:5e:aa:5a:09:ea:8f:22:b8:f0:60:04:bf:7e:1a:de:13:3e:
        0f:1c:78:29:26:4f:55:85:e6:95:4d:a3:15:91:2f:15:c2:66:
        ce:0c:55:9b:8e:79:78:18:17:b9:43:e2:2f:d7:74:c8:0f:a7:
        31:24:16:7d:3c:73:e8:a2:b3:94:54:f7:bd:25:5c:3c:0a:c0:
        82:66:a2:96:9b:fb:2a:ab:fc:bc:18:0f:f3:93:6f:86:74:07:
        18:39:a7:1b:ae:14:50:08:56:d9:a8:56:a9:35:dc:1a:68:7a:
        79:1d:c5:1b:26:19:5a:de:22:f2:79:46:ee:84:2e:7c:26:61:
        03:ba:13:fa:7b:02:8b:8f:9e:8b:08:5a:65:b7:62:db:40:96:
        91:dd:26:8e:70:ae:58:30:17:90:f3:f7:60:15:89:67:2f:ce:
        6f:d8:2a:c2:51:a5:8a:31:79:07:30:27:42:0d:ae:67:45:7d:
        3a:f0:6f:0e:0b:03:33:9d:88:7c:3e:62:a6:a6:a2:83:ec:b7:
        a3:b5:5f:ce:84:6f:95:f4:88:26:49:c0:3a:5b:30:6c:80:60:
        bc:81:de:da

131.228.2.178

Last Seen: 2024-05-01

GeneralInformation

Vulnerabilities

OpenPorts

-1950432318 | 2024-04-23T06:52:36.062930
22 / tcp

SunSSH1.1.8

-979634223 | 2024-05-01T21:58:03.833598
80 / tcp

Oracle iPlanet Web Server7.0

1250321865 | 2024-04-27T19:47:10.923415
443 / tcp

Oracle iPlanet Web Server7.0

-1103186649 | 2024-04-22T09:50:50.891368
8443 / tcp

Oracle iPlanet Web Server7.0

Products

Pricing

Contact Us

131.228.2.178

Last Seen: 2024-05-01

GeneralInformation

Vulnerabilities

OpenPorts

-1950432318 | 2024-04-23T06:52:36.062930 22 / tcp

SunSSH1.1.8

-979634223 | 2024-05-01T21:58:03.833598 80 / tcp

Oracle iPlanet Web Server7.0

1250321865 | 2024-04-27T19:47:10.923415 443 / tcp

Oracle iPlanet Web Server7.0

-1103186649 | 2024-04-22T09:50:50.891368 8443 / tcp

Oracle iPlanet Web Server7.0

Products

Pricing

Contact Us

-1950432318 | 2024-04-23T06:52:36.062930
22 / tcp

-979634223 | 2024-05-01T21:58:03.833598
80 / tcp

1250321865 | 2024-04-27T19:47:10.923415
443 / tcp

-1103186649 | 2024-04-22T09:50:50.891368
8443 / tcp