GeneralInformation

Hostnames	handyhost.ru kif-ip2.handyhost.ru
Domains	handyhost.ru
Country	Finland
City	Helsinki
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 110 443

1826189682 | 2024-05-28T21:04:26.191309

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.20.2
Date: Tue, 28 May 2024 21:04:26 GMT
Content-Type: text/html
Content-Length: 8451
Connection: keep-alive
ETag: "5a6a395c-2103"

-57774420 | 2024-05-21T04:11:35.551060

110 / tcp

+OK Dovecot ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
STLS
USER
SASL PLAIN LOGIN CRAM-MD5
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            fc:1e:b4:05:2b:71:15:ac
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=kif.handyhost.ru/emailAddress=root@kif.handyhost.ru
        Validity
            Not Before: Apr  9 13:14:08 2019 GMT
            Not After : Apr  6 13:14:08 2029 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=kif.handyhost.ru/emailAddress=root@kif.handyhost.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:bf:43:6e:76:7a:7a:02:f7:03:5b:6c:ed:7d:8d:
                    56:99:09:5c:1d:52:13:b3:1c:7f:e4:c2:29:a9:17:
                    5d:0a:bf:30:6a:17:93:f7:09:c1:1a:61:07:f1:de:
                    89:42:58:a2:a2:12:c2:cc:02:03:16:21:38:9c:6b:
                    18:1c:b4:b8:f9:a2:ff:39:7e:1c:68:91:fc:ff:9c:
                    b5:96:81:fe:9e:36:5f:ae:8a:85:86:78:7e:d8:90:
                    04:c4:80:23:a9:bc:4c:b5:95:74:84:87:e5:e1:80:
                    e7:cd:a8:58:77:bc:b5:81:16:02:ac:bd:dd:05:98:
                    f3:66:03:11:4a:50:f8:c7:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                85:04:7D:1D:46:C6:D6:19:5E:7F:AF:4B:E9:8D:58:4F:F9:73:BC:53
            X509v3 Authority Key Identifier: 
                85:04:7D:1D:46:C6:D6:19:5E:7F:AF:4B:E9:8D:58:4F:F9:73:BC:53
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1b:47:f4:03:42:8a:e8:25:f0:8b:fc:4a:a5:66:6b:84:d3:22:
        af:4c:18:96:ee:60:31:35:0f:10:49:db:3a:2f:82:14:26:39:
        5b:db:2f:2f:35:5a:55:6a:1f:bf:93:15:01:5f:07:50:b3:5c:
        60:f1:a2:37:27:48:01:b9:60:91:8e:25:51:b8:a2:03:0c:bb:
        57:85:32:84:ac:e6:f9:ac:72:64:e3:fe:09:4a:4c:28:11:50:
        c9:51:2e:7c:0f:6f:59:b6:b7:3b:24:17:dd:92:91:66:b2:39:
        0a:91:8f:fe:43:01:a0:07:1a:e3:35:5b:66:8f:9b:08:bd:e6:
        b8:22

1826189682 | 2024-05-20T12:40:39.670116

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.20.2
Date: Mon, 20 May 2024 12:40:39 GMT
Content-Type: text/html
Content-Length: 8451
Connection: keep-alive
ETag: "5a6a395c-2103"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6b:f5:b1:74:e7:39:03:7a:27:bb:0d:40
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=AlphaSSL CA - SHA256 - G4
        Validity
            Not Before: Dec  5 08:16:06 2023 GMT
            Not After : Jan  5 08:16:05 2025 GMT
        Subject: CN=*.handyhost.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d9:46:ec:e7:56:d2:47:8b:8b:ed:08:62:2f:7b:
                    d8:09:20:3c:40:28:4d:f0:6a:bc:a8:6b:63:76:a1:
                    e9:1e:10:13:22:fe:25:49:1b:f7:d3:83:93:46:2f:
                    a9:74:ba:9f:32:1a:fb:85:7b:f9:f1:c9:66:48:95:
                    20:bc:73:eb:be:e9:57:79:4b:0a:3e:43:69:21:ba:
                    01:01:b1:2d:5a:25:a5:41:db:14:36:48:b3:4d:60:
                    a6:52:5e:10:2f:c1:0d:25:0c:81:e6:07:e8:4e:8f:
                    b9:9a:f3:8a:f3:d7:b1:53:11:28:8b:e0:14:0f:d1:
                    62:5a:48:77:30:0c:56:17:ed:40:3d:f1:c9:ba:10:
                    a4:aa:97:be:3f:47:b0:93:71:b7:7d:7b:bc:fc:5e:
                    26:1a:cb:19:71:78:68:30:6f:82:84:3c:5e:98:d4:
                    15:c0:41:b1:32:73:ce:25:fb:9d:93:5b:02:c0:87:
                    e3:bd:89:68:5a:65:74:44:00:31:5e:aa:3b:f2:27:
                    79:f1:32:11:71:ce:83:20:81:72:cc:8c:67:4e:d9:
                    77:e1:71:6f:c7:f2:94:0e:82:8c:9a:f4:3e:61:aa:
                    31:54:1e:84:73:34:35:98:6e:8d:a0:84:f8:4d:da:
                    c4:ef:c4:0c:54:d6:61:5e:32:8d:b9:66:ac:59:c0:
                    8b:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/alphasslcasha256g4.crt
                OCSP - URI:http://ocsp.globalsign.com/alphasslcasha256g4
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.4146.10.1.3
                  CPS: https://www.globalsign.com/repository/
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/alphasslcasha256g4.crl
            X509v3 Subject Alternative Name: 
                DNS:*.handyhost.ru, DNS:handyhost.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                4F:CB:AC:A8:C2:EF:AB:DD:83:6F:6B:BF:CE:98:3D:5C:58:25:76:15
            X509v3 Subject Key Identifier: 
                21:D5:AB:88:69:D6:9F:8D:AF:DA:9C:00:23:37:4A:1D:AE:FF:F1:C9
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Dec  5 08:16:08.881 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:66:5A:91:A9:E2:7C:2E:25:C6:96:9A:39:
                                D1:88:52:A6:5B:4C:E0:FC:87:B8:05:07:F9:F7:7D:D8:
                                43:F9:81:F0:02:20:48:47:69:9D:CB:6A:39:A6:04:D9:
                                8A:50:61:EC:66:2D:13:30:6A:52:58:77:DB:1C:06:3A:
                                AB:93:C3:52:8F:0F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Dec  5 08:16:08.874 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:4B:61:D2:17:05:87:C8:5A:EF:23:7A:81:
                                A9:FA:A6:D4:3D:BB:94:4D:25:67:71:58:90:EB:31:DE:
                                0A:78:32:53:02:21:00:AC:6F:D2:89:CA:2E:0F:36:62:
                                70:A4:9E:A5:9E:C5:3B:61:1D:65:A6:1B:35:D4:8D:F4:
                                F9:4D:9A:B9:A3:FA:FA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Dec  5 08:16:08.839 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:35:3E:7F:51:3B:8B:12:4A:7A:27:70:D1:
                                51:0E:98:31:08:77:A5:DC:AB:64:43:44:F0:1C:9D:75:
                                04:E1:CC:42:02:21:00:ED:E1:5F:70:76:5B:18:86:90:
                                06:96:6C:4C:D9:8A:A2:4D:56:5A:A8:36:6B:9C:13:C8:
                                DB:8E:FE:7E:C5:1E:4E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5d:d0:a8:43:77:e8:4b:9b:eb:6a:75:d8:68:cf:02:1e:9b:b0:
        d2:4f:64:32:4f:4a:fc:0b:7e:56:3c:73:f7:23:da:25:ea:ea:
        ac:c3:ea:4a:78:8a:10:c5:a9:56:3c:66:a0:cc:51:08:50:a4:
        de:44:97:e0:ea:29:f9:a3:61:5b:65:6a:e2:7f:0a:70:ad:c3:
        c9:39:d9:e3:05:2c:23:35:b2:49:74:ff:28:77:b1:0c:1d:c8:
        0b:98:c5:59:57:c1:95:11:08:e8:f4:05:8f:7a:a3:04:c5:39:
        6a:eb:73:91:c0:27:83:96:db:c0:4a:9d:dd:7a:b0:1d:78:25:
        f7:6c:d0:9d:99:8a:f7:fd:4f:a1:3e:cb:72:dd:4a:a6:e6:0d:
        b4:a7:ba:4d:26:ff:fd:3e:ea:dc:77:5e:d4:8f:c9:2b:f6:82:
        e3:c4:fe:5c:53:e5:c8:08:54:ed:8d:6d:de:3e:20:80:ee:9e:
        9e:42:2f:26:68:76:d5:0d:d4:97:6f:0e:02:40:5c:2d:e6:2a:
        57:33:14:cd:d8:c7:36:e1:08:c6:7b:03:df:de:3e:86:15:f7:
        70:b0:5b:0a:d8:c5:73:8b:2b:e8:4e:a7:90:c4:fd:23:68:18:
        02:24:09:e0:86:05:26:00:32:5c:1f:45:29:db:a8:53:15:59:
        bf:75:99:6c

135.181.181.90

Last Seen: 2024-05-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1826189682 | 2024-05-28T21:04:26.191309
80 / tcp

nginx1.20.2

-57774420 | 2024-05-21T04:11:35.551060
110 / tcp

1826189682 | 2024-05-20T12:40:39.670116
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

135.181.181.90

Last Seen: 2024-05-28

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1826189682 | 2024-05-28T21:04:26.191309 80 / tcp

nginx1.20.2

-57774420 | 2024-05-21T04:11:35.551060 110 / tcp

1826189682 | 2024-05-20T12:40:39.670116 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

1826189682 | 2024-05-28T21:04:26.191309
80 / tcp

-57774420 | 2024-05-21T04:11:35.551060
110 / tcp

1826189682 | 2024-05-20T12:40:39.670116
443 / tcp