GeneralInformation

Hostnames	ixloo.com xloo-lb2.xloo.com
Domains	ixloo.com xloo.com
Country	Germany
City	Falkenstein
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

822310679 | 2024-04-19T13:23:33.414887

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 19 Apr 2024 13:23:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 17081
Connection: keep-alive
Vary: Accept-Encoding
X-Mod-Pagespeed: 1.13.35.2-0
Vary: Accept-Encoding
Cache-Control: max-age=0, no-cache, s-maxage=10

772258679 | 2024-04-17T10:02:59.807667

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Wed, 17 Apr 2024 10:02:59 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: http://138.201.1.42/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            bb:d8:9e:06:50:d6:0c:11
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
        Validity
            Not Before: Jan 12 15:08:38 2015 GMT
            Not After : Mar 14 15:51:01 2018 GMT
        Subject: OU=Domain Control Validated, CN=*.ixloo.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b3:9b:7f:97:5b:3c:bf:07:bd:87:80:36:e6:31:
                    69:ea:b6:22:ab:9e:dc:49:0a:6e:e6:fa:01:2e:90:
                    9a:23:57:3b:c5:08:ec:55:5c:6c:90:1f:93:6a:67:
                    4b:c1:43:e4:fb:29:8b:a8:83:a1:e3:f6:fc:01:2d:
                    17:1f:3a:f8:db:0a:50:b5:6b:bc:91:67:52:e5:18:
                    e9:a8:07:16:de:06:57:f3:9c:ce:66:25:b4:7b:7f:
                    af:97:82:d1:83:9c:30:9e:37:65:20:a0:08:af:6f:
                    2b:a4:64:78:54:cc:33:90:98:52:d7:3f:0e:8f:ca:
                    8a:29:d7:0b:b5:a8:7a:cd:d0:46:f6:1b:13:9f:00:
                    3e:26:0b:85:1a:9b:d2:e7:00:2e:cd:09:df:8a:62:
                    39:9e:d5:da:0e:c2:e6:d8:7e:60:b8:22:90:2d:03:
                    62:7f:54:7b:2a:e5:fa:ba:7a:4e:ff:d3:f9:da:55:
                    80:f3:5c:e7:97:05:41:46:1b:e8:d7:9c:5f:2a:78:
                    34:af:c8:cc:d9:2f:42:12:24:76:d3:19:6a:b1:14:
                    50:3d:71:e1:27:5b:84:40:22:f4:dc:2f:f2:75:f7:
                    75:b6:f4:12:19:e5:13:9f:fe:37:00:20:d3:fb:fc:
                    f5:0f:4a:5d:05:94:7c:ad:09:c8:9a:ad:2d:69:72:
                    f7:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.godaddy.com/gdig2s1-87.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114413.1.7.23.1
                  CPS: http://certificates.godaddy.com/repository/
            Authority Information Access: 
                OCSP - URI:http://ocsp.godaddy.com/
                CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
            X509v3 Authority Key Identifier: 
                40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
            X509v3 Subject Alternative Name: 
                DNS:*.ixloo.com, DNS:ixloo.com
            X509v3 Subject Key Identifier: 
                15:0E:DA:F6:1F:53:22:C4:09:42:07:24:05:4B:F8:9E:8C:35:3C:73
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a7:42:a5:b8:53:26:53:7f:8e:cd:1b:31:7a:c4:3b:76:6b:eb:
        82:f5:f9:85:fb:1b:8f:81:d6:fb:ac:f9:7b:9e:5c:86:18:8a:
        20:9f:7e:88:3f:31:f6:9c:eb:6d:a2:83:f2:ee:9e:bb:c1:d0:
        3f:04:3f:3a:61:a2:ee:6a:80:23:18:58:50:52:23:ec:3b:34:
        7e:96:65:e2:79:b7:e4:8d:5a:84:49:c2:19:31:c3:36:28:ec:
        21:03:5f:c5:58:dd:65:68:29:62:88:93:0b:86:c4:d7:ba:05:
        12:87:59:11:d3:44:53:ff:76:c9:7f:d5:ef:48:e9:1f:bd:cb:
        c8:85:d4:57:28:23:e7:24:e5:f3:c2:98:c4:74:e5:7d:e7:5d:
        27:f2:92:4b:ee:aa:12:9f:9c:cb:03:99:87:96:5a:00:36:c0:
        1b:e1:da:c5:03:23:47:78:ab:62:d7:27:3a:b3:fb:b9:eb:9d:
        75:97:51:0f:de:98:b7:88:a0:4d:21:5d:0d:fe:61:d0:9c:f7:
        e8:5e:97:ee:a1:59:25:33:7c:d7:d2:5b:f4:09:8b:fe:5d:a8:
        56:51:d3:96:7f:d5:2c:a1:8c:6f:37:28:cd:98:50:81:b0:da:
        df:16:74:55:f4:4e:f8:a2:dd:9f:2e:42:d9:5e:15:e8:4e:d9:
        1e:34:fa:a7

138.201.1.42

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

822310679 | 2024-04-19T13:23:33.414887
80 / tcp

nginx1.20.1

772258679 | 2024-04-17T10:02:59.807667
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

138.201.1.42

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

822310679 | 2024-04-19T13:23:33.414887 80 / tcp

nginx1.20.1

772258679 | 2024-04-17T10:02:59.807667 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

822310679 | 2024-04-19T13:23:33.414887
80 / tcp

772258679 | 2024-04-17T10:02:59.807667
443 / tcp