GeneralInformation

Hostnames	adsb-slovanka.utia.cas.cz
Domains	cas.cz
Country	Czechia
City	Prague
Organization	Praha
ISP	CESNET z.s.p.o.
ASN	AS2852

WebTechnologies

JavaScript frameworks

JavaScript libraries

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2022-22707

4.3In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.

CVE-2019-11072

7.5lighttpd before 1.4.54 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a malicious HTTP GET request, as demonstrated by mishandling of /%2F? in burl_normalize_2F_to_slash_fix in burl.c. NOTE: The developer states "The feature which can be abused to cause the crash is a new feature in lighttpd 1.4.50, and is not enabled by default. It must be explicitly configured in the config file (e.g. lighttpd.conf). Certain input will trigger an abort() in lighttpd when that feature is enabled. lighttpd detects the underflow or realloc() will fail (in both 32-bit and 64-bit executables), also detected in lighttpd. Either triggers an explicit abort() by lighttpd. This is not exploitable beyond triggering the explicit abort() with subsequent application exit.

OpenPorts

22 80 8181

-302144689 | 2024-04-22T02:44:54.838321

22 / tcp

SSH-2.0-OpenSSH_7.9p1 Raspbian-10+deb10u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDn/OVk0vshnilBESNwfjZ5ywefVRFj1ZH8z5zfAnepsZS7
cNITrMKZnGeV7a7zWMvWVqIIKYFOUfGH1vL2US/v6mzCrGMEbHYLMUDx9cYuHatahH1U7GfGISTO
ag8zpQZKFOLZ6kx7Tdpmgy4uStKxZ7zTv3YV40SIp0zXHyo2VW+de3iLg+AKdGn85OcM7rQ/i2Z9
lOjm9ipJbnH4Rw4NMnYBQ+bRr5rF04E7GcbtLtQjITQH0VR0ND5m/91ZgKM8x7oJjBvIF5SqH6Sl
hwLCGBYYCTHOGPHoBoBLno7aIISDWuhzZgsbgAATmRwPxrb/v659nUoy/5fegrvrpMGR
Fingerprint: cb:da:86:12:6e:92:77:41:4a:fe:a6:ee:f9:a6:b6:3a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-579992590 | 2024-04-18T10:09:26.350799

80 / tcp

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Type: text/html
Accept-Ranges: bytes
ETag: "2469492547"
Last-Modified: Tue, 31 Dec 2019 04:16:40 GMT
Content-Length: 2669
Date: Thu, 18 Apr 2024 10:09:25 GMT
Server: lighttpd/1.4.53

-642417181 | 2024-04-03T23:35:06.039402

8181 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 34116
Date: Wed, 03 Apr 2024 23:35:05 GMT
Last-Modified: Wed, 03 Apr 2024 15:12:02 GMT
Etag: 660d71c2.34116
Connection: keep-alive
Transfer-Encoding: chunked

8544
<!DOCTYPE html>
<html lang="en">
  <head>
    <meta http-equiv="content-type" content="text/html; charset=utf-8" />
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    
    <link rel="shortcut icon" href="/img/favicon.ico" type="image/x-icon" />
    
    <title>ModeSMixer2</title>

    <style type="text/css">
      html, body, #map-canvas { height: 100%; margin: 0; padding: 0; }
      #map-canvas { height: 100%; }
      body { padding-top: 70px; }
    </style>

    <!-- Fonts -->
    <link href="http://fonts.googleapis.com/css?family=Roboto:400,700" rel="stylesheet">
    <link href="http://fonts.googleapis.com/css?family=Roboto+Mono:400,700" rel="stylesheet">
    <link href="http://fonts.googleapis.com/css?family=Roboto+Condensed:400,700" rel="stylesheet">
    <link href="http://fonts.googleapis.com/css?family=Open+Sans:400,700" rel="stylesheet">
    
    <!-- Le styles -->
    <link href="/css/bootstrap.min.css" rel="stylesheet">
    <link href="/css/bootstrap-select.min.css" rel="stylesheet">
    <link href="/css/local.css" rel="stylesheet">

    <!-- HTML5 Shim and Respond.js IE8 support of HTML5 elements and media

147.231.16.138

Last Seen: 2024-04-22

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-302144689 | 2024-04-22T02:44:54.838321
22 / tcp

OpenSSH7.9p1 Raspbian-10+deb10u1

-579992590 | 2024-04-18T10:09:26.350799
80 / tcp

lighttpd1.4.53

-642417181 | 2024-04-03T23:35:06.039402
8181 / tcp

Products

Pricing

Contact Us

147.231.16.138

Last Seen: 2024-04-22

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-302144689 | 2024-04-22T02:44:54.838321 22 / tcp

OpenSSH7.9p1 Raspbian-10+deb10u1

-579992590 | 2024-04-18T10:09:26.350799 80 / tcp

lighttpd1.4.53

-642417181 | 2024-04-03T23:35:06.039402 8181 / tcp

Products

Pricing

Contact Us

-302144689 | 2024-04-22T02:44:54.838321
22 / tcp

-579992590 | 2024-04-18T10:09:26.350799
80 / tcp

-642417181 | 2024-04-03T23:35:06.039402
8181 / tcp