GeneralInformation

Hostnames	as5300-s39-093.cnt.entelchile.net starken.cl
Domains	entelchile.net starken.cl
Country	Chile
City	Santiago
Organization	ENTEL CHILE S.A.
ISP	ENTEL CHILE S.A.
ASN	AS27651

WebTechnologies

Analytics

Google Analytics

CDN

Cloudflare

cdnjs

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 443

-778212877 | 2024-04-18T21:31:53.458250

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Thu, 18 Apr 2024 21:31:53 GMT
Content-Type: text/html
Content-Length: 3114
Last-Modified: Thu, 26 Oct 2023 11:38:04 GMT
Connection: keep-alive
ETag: "653a4f9c-c2a"
Expires: Thu, 18 Apr 2024 21:31:52 GMT
Cache-Control: no-cache
Accept-Ranges: bytes
Set-Cookie: www.starken.cl=!sqRTP4AGx5HjXfGmYwc7IO6wrBl5AbfcMRLySsjqjCZolHIZyVTof4ZxtK+8NiA5WHjoNh1SMixOdCk=; path=/; Httponly
Set-Cookie: TSd22a7c64027=08e55b756dab20006d88781d636e9ea773d555c91473e685c3091299e12c321b13ebed3ee989536c08617edb2b113000a312ece540a394e09585961d0171d9e521ede67f503c0bea99f534953ce192119b6bc99b1c5238a292fca6a59331395c; Path=/

-1792722753 | 2024-04-17T06:37:34.107807

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Wed, 17 Apr 2024 06:37:33 GMT
Content-Type: text/html
Content-Length: 5126
Last-Modified: Thu, 08 Feb 2024 18:25:21 GMT
Connection: keep-alive
ETag: "65c51c91-1406"
Expires: Wed, 17 Apr 2024 06:37:32 GMT
Cache-Control: no-cache
Accept-Ranges: bytes
Set-Cookie: www.starken.cl=!qKzt4IhxyK52tA2mYwc7IO6wrBl5AfdWPbBxOmxP5ow4qX9otnvlTqBcYbvQ7d5q/Wwit033jbap6C4=; path=/; Httponly; Secure
Set-Cookie: TS74b769bb027=08e55b756dab2000d27963a9ed68d13c641bea9483a769b5395a1791f1e18423f5540822efa19063083d0723fb1130002cb5e73dd95f7fea22f6422bb81daaa8a4d61f9c22b41b691035f113fa101fcb5abbdb32dd0bd936f9e019315084bc39; Path=/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2f:7e:38:2a:ac:97:bc:56:a6:e7:f4:75
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign RSA OV SSL CA 2018
        Validity
            Not Before: Apr 28 15:31:25 2023 GMT
            Not After : May 29 15:31:24 2024 GMT
        Subject: C=CL, ST=Regi\xC3\xB3n Metropolitana de Santiago, L=Santiago, O=EMPRESA DE TRANSPORTES RURALES SPA, CN=*.starken.cl
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a7:69:b3:64:3e:bc:34:eb:08:ab:9b:c6:54:5e:
                    95:c9:4f:53:47:ed:9c:28:37:0e:18:65:6e:6e:a7:
                    a1:04:f8:9e:30:87:ee:77:8c:3f:d5:17:49:94:57:
                    a3:45:d5:de:87:50:1f:fe:8a:89:b9:3f:6b:51:ee:
                    99:db:dd:d8:c3:f6:23:17:30:b4:be:9c:5e:c7:45:
                    92:ae:c8:25:25:18:69:2d:15:23:82:d5:5b:e7:77:
                    8c:1b:db:27:68:46:17:0c:5d:8c:56:0f:60:07:da:
                    e7:01:44:22:76:37:18:18:e2:97:bc:85:5e:82:2c:
                    ee:ad:96:75:c1:68:7e:55:8d:a6:03:82:cb:f7:48:
                    ff:b8:ce:41:58:06:3c:c6:a2:b7:df:e3:33:97:81:
                    21:5b:34:85:b1:fa:95:22:92:72:bd:ab:d5:c7:d9:
                    9d:38:3c:de:54:4c:04:b4:9f:e2:d1:33:77:a8:70:
                    46:af:47:cf:87:8f:fb:0c:3c:52:a2:37:84:64:4f:
                    a4:79:75:d0:19:8d:75:ea:e4:a0:e2:46:d7:3e:aa:
                    6f:ad:2b:0c:f2:2d:7a:99:71:d7:e7:0c:43:8e:2d:
                    eb:3c:8d:f4:d7:fc:cb:ac:a8:a8:b7:37:57:82:63:
                    c1:87:b0:96:32:c6:2e:e9:c5:9f:9d:17:e0:fb:c8:
                    8d:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
                OCSP - URI:http://ocsp.globalsign.com/gsrsaovsslca2018
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.2
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsrsaovsslca2018.crl
            X509v3 Subject Alternative Name: 
                DNS:*.starken.cl, DNS:starken.cl
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                F8:EF:7F:F2:CD:78:67:A8:DE:6F:8F:24:8D:88:F1:87:03:02:B3:EB
            X509v3 Subject Key Identifier: 
                84:BE:19:9E:FB:7B:AB:0A:BD:3A:13:6E:DA:59:34:C4:E2:3F:1E:A9
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 28 15:31:30.015 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FD:04:9C:DA:87:38:7F:1B:26:F4:AD:
                                68:02:F4:2C:B4:D9:65:04:51:F2:73:DB:E5:44:BC:25:
                                E5:CE:88:85:7F:02:21:00:BD:FC:F9:F0:59:49:0A:0B:
                                BA:72:97:45:55:93:1B:CC:58:88:EF:B7:E4:B3:DB:19:
                                F6:C6:FE:BF:FA:20:31:62
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 28 15:31:29.996 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AA:A9:00:0D:F7:8E:C0:0D:50:85:08:
                                6B:DE:91:BD:69:87:16:30:C1:00:39:87:B5:44:50:BF:
                                E5:82:EB:33:05:02:20:28:B5:C6:A4:6E:27:B6:04:EC:
                                B7:17:CD:0A:F8:13:26:EE:7F:4E:4D:B0:6B:5C:4B:DD:
                                89:71:16:F2:AC:35:4C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 28 15:31:30.060 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:ED:00:EE:97:DF:D7:AC:05:8D:78:0C:
                                8E:E3:B4:CF:36:DA:44:34:BA:4F:31:4D:26:19:D0:0A:
                                21:63:AF:E4:5E:02:20:2F:F6:62:23:AB:1D:28:FB:ED:
                                97:82:4F:EF:41:C6:B5:98:7B:74:3C:83:86:F8:44:A7:
                                D6:B3:67:46:07:B3:E1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9d:14:19:14:62:67:f1:63:25:2b:f0:c8:ab:63:c5:4c:85:cb:
        13:8c:79:f4:a8:73:46:85:fa:b4:16:48:df:a6:ff:2e:c4:f5:
        23:a5:83:c5:35:b5:79:8a:f6:a4:83:20:ac:ee:d5:06:d8:65:
        14:87:cb:ad:6b:13:61:ef:50:3a:b3:26:08:92:ce:73:21:4e:
        56:68:07:be:93:8f:9a:ac:88:56:e5:65:cb:1e:24:af:53:29:
        e9:c5:5c:8d:c6:5e:f9:21:28:71:27:10:31:9c:1c:e5:dd:6e:
        75:75:43:5e:10:3a:db:db:98:2a:1f:66:c8:42:54:2f:65:d7:
        de:7c:78:d5:e9:fe:6c:55:5d:5b:14:d1:30:d8:69:c9:bd:ff:
        3c:65:cb:f5:ba:c2:cc:6a:d3:75:2c:6f:39:30:40:81:8f:d3:
        e8:f8:77:9e:ae:45:a9:ad:fa:fe:67:5e:99:66:d6:0a:c7:9a:
        3e:72:77:a1:0d:79:d8:3d:56:ac:3d:aa:62:40:68:fb:3f:cc:
        10:9b:ee:70:fa:f0:4e:b2:6c:2e:b9:6d:d2:66:5b:96:5d:da:
        c1:d4:f1:11:da:8a:70:c5:c4:93:bf:93:3d:ef:5e:24:97:8b:
        90:fe:90:e0:f2:62:7b:ba:a1:e5:a5:b5:6b:0e:5b:1d:8e:ac:
        33:4c:43:86

164.77.137.103

Last Seen: 2024-04-18

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-778212877 | 2024-04-18T21:31:53.458250
80 / tcp

nginx1.16.1

-1792722753 | 2024-04-17T06:37:34.107807
443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

164.77.137.103

Last Seen: 2024-04-18

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-778212877 | 2024-04-18T21:31:53.458250 80 / tcp

nginx1.16.1

-1792722753 | 2024-04-17T06:37:34.107807 443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

-778212877 | 2024-04-18T21:31:53.458250
80 / tcp

-1792722753 | 2024-04-17T06:37:34.107807
443 / tcp