GeneralInformation

Hostnames	featureide.cs.ovgu.de www2.iti.cs.ovgu.de
Domains	ovgu.de
Country	Germany
City	Magdeburg
Organization	Otto-von-Guericke-Universitaet
ISP	Verein zur Foerderung eines Deutschen Forschungsnetzes e.V.
ASN	AS680

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

-158149353 | 2024-04-23T02:31:02.085519

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Tue, 23 Apr 2024 02:31:02 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-521102259 | 2024-04-25T02:04:16.669876

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 25 Apr 2024 02:04:16 GMT
Content-Type: text/html
Content-Length: 333
Last-Modified: Thu, 14 Sep 2017 08:24:14 GMT
Connection: keep-alive
ETag: "59ba3cae-14d"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:10:9b:5d:e7:d3:18:3d:b0:30:d8:f9:f5:ec:08:3b:06:55
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 20 07:10:12 2024 GMT
            Not After : Jun 18 07:10:11 2024 GMT
        Subject: CN=featureide.cs.ovgu.de
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:b2:40:19:f0:1b:99:75:c0:c8:bb:b5:36:00:f8:
                    c9:d4:4d:7a:ac:08:e7:a7:df:4d:ef:65:d7:2d:c6:
                    43:70:ad:b3:32:d0:f8:02:89:c9:9c:cb:69:ed:b2:
                    00:c7:a8:3e:63:14:db:41:5c:2b:71:51:68:f7:f7:
                    2c:8d:d2:3b:57
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                68:EB:1E:2B:C2:03:16:46:7A:A8:70:69:F4:3B:AD:B8:79:69:5A:5C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:featureide.cs.ovgu.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 20 08:10:12.711 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:3F:56:54:F6:39:5E:42:C4:C8:F0:52:9E:
                                32:2C:67:50:33:5A:3A:E8:43:FF:DD:F0:A6:68:56:B3:
                                68:BF:78:6E:02:21:00:C6:D4:65:26:92:EB:69:36:D6:
                                59:7C:E4:71:A7:4D:B4:02:AF:C4:F9:4A:CA:65:80:31:
                                1E:CB:51:65:A4:A4:F9
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 20 08:10:13.215 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E3:94:46:0E:E7:A6:48:E2:8A:81:4F:
                                9C:82:B5:CD:51:E3:5C:C8:05:49:00:E1:BE:4F:AD:26:
                                D6:9A:D1:E9:64:02:21:00:C6:1B:B3:78:F6:FD:A1:FB:
                                E1:17:1B:E1:3A:F1:27:BF:C8:A7:F4:3A:01:15:E0:A2:
                                13:60:B4:D4:63:13:96:4F
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a1:89:6e:33:ab:49:9a:a4:b6:dc:20:43:49:25:50:27:25:eb:
        a0:53:72:04:df:57:fa:37:26:b1:f8:ff:02:fa:9b:98:fc:a6:
        94:51:5c:b8:5d:9d:fc:07:d7:5e:9d:36:30:30:5d:95:d1:d8:
        f2:4f:92:60:58:d9:7f:e2:9a:97:d8:55:9c:a0:b6:36:f8:8d:
        77:a2:88:51:24:25:9a:ee:ca:21:51:09:b5:8d:a9:38:a8:64:
        3d:21:27:d9:68:10:bb:4a:35:22:5c:21:3b:36:73:e5:ef:c9:
        0b:3a:c4:9e:fe:26:a2:13:aa:ee:ec:0b:93:a2:38:aa:e4:4a:
        de:b0:24:b1:0c:b3:53:93:89:05:53:47:d9:15:4e:66:39:37:
        01:f3:ab:c3:00:2a:9d:1f:82:cd:9c:02:89:36:49:c7:6b:34:
        e5:71:3b:db:c6:10:55:9b:17:70:15:a3:34:a3:57:d0:88:c4:
        67:d9:67:43:e1:f3:15:d2:02:92:c8:6b:4d:89:a8:04:17:f0:
        57:3d:e3:57:4a:db:a7:81:2f:c7:a2:fe:b3:9f:39:12:ef:ea:
        05:09:25:b0:22:09:e1:c4:b8:a9:26:d1:0c:d5:80:da:39:cb:
        67:a9:cc:02:e5:1d:bb:f1:91:dd:9e:5a:67:c1:96:20:33:3b:
        d3:d2:13:1e

141.44.31.8

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-158149353 | 2024-04-23T02:31:02.085519
80 / tcp

nginx1.18.0

-521102259 | 2024-04-25T02:04:16.669876
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

141.44.31.8

Last Seen: 2024-04-25

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-158149353 | 2024-04-23T02:31:02.085519 80 / tcp

nginx1.18.0

-521102259 | 2024-04-25T02:04:16.669876 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-158149353 | 2024-04-23T02:31:02.085519
80 / tcp

-521102259 | 2024-04-25T02:04:16.669876
443 / tcp