GeneralInformation

Hostnames	vmi1684918.contaboserver.net camera4.sonybox.es
Domains	contaboserver.net sonybox.es
Country	Germany
City	Frankfurt am Main
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

21 80 443 554 1935 4433

786830228 | 2024-04-15T02:51:09.511973

21 / tcp

220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 23:51. Server port: 21.
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
230 Anonymous user logged in
214-The following SITE commands are recognized
 ALIAS
 CHMOD
 IDLE
 UTIME
214 Pure-FTPd - http://pureftpd.org/
211-Extensions supported:
 UTF8
 EPRT
 IDLE
 MDTM
 SIZE
 MFMT
 REST STREAM
 MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
 MLSD
 PRET
 AUTH TLS
 PBSZ
 PROT
 ESTA
 PASV
 EPSV
 ESTP
211 End.

-871981212 | 2024-04-30T04:47:36.761354

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 30 Apr 2024 04:47:36 GMT
Content-Type: text/html
Content-Length: 4681
Last-Modified: Sat, 09 Oct 2021 17:49:21 GMT
Connection: keep-alive
ETag: "6161d621-1249"
Accept-Ranges: bytes

30519532 | 2024-04-30T17:34:07.762221

443 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.20.1
Date: Tue, 30 Apr 2024 17:34:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache
WWW-Authenticate: Digest realm="Wowza Media Systems",  nonce="7edc4f97eee93281d5a0d5ed351289c5", algorithm=MD5, qop="auth"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d6:da:f8:69:5b:29:71:70:5d:c2:c8:c0:d8:c4:d4:1d:d7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 13 22:05:49 2024 GMT
            Not After : Jun 11 22:05:48 2024 GMT
        Subject: CN=camera4.sonybox.es
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:ff:f6:9a:a8:22:57:8d:f1:2f:f4:ba:c9:0c:7d:
                    29:76:db:26:d6:86:4e:ae:aa:2a:91:fd:f9:28:8b:
                    30:a7:21:64:f4:89:3d:b8:cc:1d:26:62:2f:f8:66:
                    c8:b9:66:bf:59:e5:75:c5:d0:d2:b0:c0:7e:3f:05:
                    15:80:4f:a7:64
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                DA:ED:95:27:1D:25:4E:44:D2:FF:3F:DB:FE:86:B3:F2:A9:B5:BB:FB
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:camera4.sonybox.es
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 13 23:05:49.360 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C9:42:1F:40:EA:EE:F9:19:14:7A:15:
                                78:9D:B3:5C:8D:1D:4F:D1:6F:C4:F3:6B:91:55:F4:D0:
                                FA:56:72:A5:C0:02:20:2B:35:EF:58:2A:A3:B3:E4:F7:
                                7E:3E:E4:1F:B8:93:1F:F0:B4:96:35:2F:A0:8A:20:B9:
                                1B:0D:FF:C6:09:5C:48
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 13 23:05:49.807 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8E:5A:8D:C9:2F:53:04:EE:6D:83:5A:
                                E8:13:80:53:14:A2:41:4B:FC:CC:9E:2C:EE:44:4C:09:
                                32:83:19:FE:5F:02:20:0D:3C:83:2A:C3:56:EA:48:75:
                                3C:61:F4:D0:32:B1:45:26:C5:94:30:32:22:D8:9A:3B:
                                C8:60:35:E3:1F:5D:6E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a7:e0:41:fd:85:13:ab:8f:a2:29:2e:93:a8:b9:0c:18:fe:69:
        09:29:d9:0c:9a:4c:e2:bc:06:c2:18:24:82:f7:55:d2:5b:3f:
        bf:5f:d1:2f:f7:b1:34:06:ee:90:af:ea:aa:dd:95:24:4e:42:
        52:a3:d8:9d:e2:d6:7c:1f:09:03:c0:f6:9f:b0:c3:d1:e8:40:
        3f:63:6e:f1:98:c9:8a:fb:4e:33:2e:7e:74:6e:b9:5b:a7:83:
        95:e1:45:18:22:7f:b8:e5:ef:80:08:09:8c:4d:cf:e3:6a:79:
        71:30:54:09:2f:07:a2:98:26:11:09:9c:af:26:c2:77:4d:36:
        57:e4:5a:62:33:e4:29:5a:00:51:74:18:ab:17:e1:e4:3c:fa:
        2e:11:de:b1:bb:d9:85:3d:8e:33:67:80:f9:2e:ec:f8:b8:7a:
        cf:7b:5b:f6:41:7d:39:b2:13:25:78:c0:59:3c:2d:f9:00:93:
        68:c4:5c:65:de:4a:d4:e2:4d:cf:5c:ad:2a:31:9b:6e:80:42:
        59:5c:27:f6:26:46:3b:10:1b:c1:34:72:a9:cc:b5:31:97:a9:
        91:19:64:31:8e:ba:c2:5a:1e:d1:50:1f:78:4b:6e:69:7f:ff:
        b2:33:02:23:a5:a2:72:6f:a2:e3:ee:6b:08:65:71:b4:80:29:
        d4:a3:07:19

73500775 | 2024-05-02T05:31:55.067645

554 / tcp

RTSP/1.0 200 OK
Server: Wowza Media Server 2.2.3 build26454
Public: DESCRIBE, SETUP, TEARDOWN, PLAY, PAUSE, OPTIONS, ANNOUNCE, RECORD, GET_PARAMETER
Cseq: 1
Supported: play.basic, con.persistent

1006262184 | 2024-05-03T16:03:08.129213

1935 / tcp

HTTP/1.1 401 Unauthorized
Cache-Control: no-cache
Server: FlashCom/3.5.4
WWW-Authenticate: Digest realm="Wowza Media Systems",  nonce="73cda2253ee1ccd561e3947758b97cfa", algorithm=MD5, qop="auth"
Connection: Keep-Alive
Content-Type: text/html


RTMP Server

104256300 | 2024-05-02T04:06:58.862211

4433 / tcp

HTTP/1.1 401 Unauthorized
Cache-Control: no-cache
Server: FlashCom/3.5.4
WWW-Authenticate: Digest realm="Wowza Media Systems",  nonce="00da8f4117bfd25da1c786e6b828818e", algorithm=MD5, qop="auth"
Connection: Keep-Alive
Content-Type: text/html

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d6:da:f8:69:5b:29:71:70:5d:c2:c8:c0:d8:c4:d4:1d:d7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 13 22:05:49 2024 GMT
            Not After : Jun 11 22:05:48 2024 GMT
        Subject: CN=camera4.sonybox.es
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:ff:f6:9a:a8:22:57:8d:f1:2f:f4:ba:c9:0c:7d:
                    29:76:db:26:d6:86:4e:ae:aa:2a:91:fd:f9:28:8b:
                    30:a7:21:64:f4:89:3d:b8:cc:1d:26:62:2f:f8:66:
                    c8:b9:66:bf:59:e5:75:c5:d0:d2:b0:c0:7e:3f:05:
                    15:80:4f:a7:64
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                DA:ED:95:27:1D:25:4E:44:D2:FF:3F:DB:FE:86:B3:F2:A9:B5:BB:FB
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:camera4.sonybox.es
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 13 23:05:49.360 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C9:42:1F:40:EA:EE:F9:19:14:7A:15:
                                78:9D:B3:5C:8D:1D:4F:D1:6F:C4:F3:6B:91:55:F4:D0:
                                FA:56:72:A5:C0:02:20:2B:35:EF:58:2A:A3:B3:E4:F7:
                                7E:3E:E4:1F:B8:93:1F:F0:B4:96:35:2F:A0:8A:20:B9:
                                1B:0D:FF:C6:09:5C:48
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 13 23:05:49.807 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8E:5A:8D:C9:2F:53:04:EE:6D:83:5A:
                                E8:13:80:53:14:A2:41:4B:FC:CC:9E:2C:EE:44:4C:09:
                                32:83:19:FE:5F:02:20:0D:3C:83:2A:C3:56:EA:48:75:
                                3C:61:F4:D0:32:B1:45:26:C5:94:30:32:22:D8:9A:3B:
                                C8:60:35:E3:1F:5D:6E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a7:e0:41:fd:85:13:ab:8f:a2:29:2e:93:a8:b9:0c:18:fe:69:
        09:29:d9:0c:9a:4c:e2:bc:06:c2:18:24:82:f7:55:d2:5b:3f:
        bf:5f:d1:2f:f7:b1:34:06:ee:90:af:ea:aa:dd:95:24:4e:42:
        52:a3:d8:9d:e2:d6:7c:1f:09:03:c0:f6:9f:b0:c3:d1:e8:40:
        3f:63:6e:f1:98:c9:8a:fb:4e:33:2e:7e:74:6e:b9:5b:a7:83:
        95:e1:45:18:22:7f:b8:e5:ef:80:08:09:8c:4d:cf:e3:6a:79:
        71:30:54:09:2f:07:a2:98:26:11:09:9c:af:26:c2:77:4d:36:
        57:e4:5a:62:33:e4:29:5a:00:51:74:18:ab:17:e1:e4:3c:fa:
        2e:11:de:b1:bb:d9:85:3d:8e:33:67:80:f9:2e:ec:f8:b8:7a:
        cf:7b:5b:f6:41:7d:39:b2:13:25:78:c0:59:3c:2d:f9:00:93:
        68:c4:5c:65:de:4a:d4:e2:4d:cf:5c:ad:2a:31:9b:6e:80:42:
        59:5c:27:f6:26:46:3b:10:1b:c1:34:72:a9:cc:b5:31:97:a9:
        91:19:64:31:8e:ba:c2:5a:1e:d1:50:1f:78:4b:6e:69:7f:ff:
        b2:33:02:23:a5:a2:72:6f:a2:e3:ee:6b:08:65:71:b4:80:29:
        d4:a3:07:19

144.91.78.81

Last Seen: 2024-05-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

786830228 | 2024-04-15T02:51:09.511973
21 / tcp

Pure-FTPd

-871981212 | 2024-04-30T04:47:36.761354
80 / tcp

nginx1.20.1

30519532 | 2024-04-30T17:34:07.762221
443 / tcp

nginx1.20.1

73500775 | 2024-05-02T05:31:55.067645
554 / tcp

1006262184 | 2024-05-03T16:03:08.129213
1935 / tcp

104256300 | 2024-05-02T04:06:58.862211
4433 / tcp

Products

Pricing

Contact Us

144.91.78.81

Last Seen: 2024-05-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

786830228 | 2024-04-15T02:51:09.511973 21 / tcp

Pure-FTPd

-871981212 | 2024-04-30T04:47:36.761354 80 / tcp

nginx1.20.1

30519532 | 2024-04-30T17:34:07.762221 443 / tcp

nginx1.20.1

73500775 | 2024-05-02T05:31:55.067645 554 / tcp

1006262184 | 2024-05-03T16:03:08.129213 1935 / tcp

104256300 | 2024-05-02T04:06:58.862211 4433 / tcp

Products

Pricing

Contact Us

786830228 | 2024-04-15T02:51:09.511973
21 / tcp

-871981212 | 2024-04-30T04:47:36.761354
80 / tcp

30519532 | 2024-04-30T17:34:07.762221
443 / tcp

73500775 | 2024-05-02T05:31:55.067645
554 / tcp

1006262184 | 2024-05-03T16:03:08.129213
1935 / tcp

104256300 | 2024-05-02T04:06:58.862211
4433 / tcp