GeneralInformation

Hostnames	geo-ip-service.bsscommerce.com 170-187-144-194.ip.linodeusercontent.com
Domains	bsscommerce.com linodeusercontent.com
Cloud Provider	Linode
Cloud Region	us-ga
Country	United States
City	Atlanta
Organization	Linode
ISP	Akamai Connected Cloud
ASN	AS63949

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

1391232767 | 2024-05-09T06:44:45.955788

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDreNO/I7y9Hz9HjwO7NlQF2THQvFq3j+8ntitBZrRcs4qZ
YaZqeYY9V0xQdTOh1o9mUB6Jt5T4FX1I2p0iia1tojmrGQqocnqWTf6qRy+DLoRYM01pSbA4+hAR
p7rzsSz4comwqCuuGF5HdgSogWVRcnKHFJpuyAuExgLNvGawwww1m4viWXN/v6lpeP+pGLk7/f04
M4QtxpCepzJbvyVY+G5IWcaqZYnNh2iCJve4bIKdwJZ2raVM/pxrvVyGcpME/rusTPzSl19t7/NZ
fjk7inebEIG7tvMaw1JwFImxfc7Y/zvb3YkejAZ36FoIGtwP58i5vF23OsmZvYm0sFXlWkt0SLvp
eRR6T9K/RB0K5ZGan/aPTMOjmgX6dB/6t5PHtvm/LoVxu5jXIY0nAtP7dwa3aSk59unlIo08oTSE
8Hcytssrc9q9KZKYd4XO3tikRqXEvgm75jSX0oStmqgNHOf+0TlBqpZgTtqvndNbrUejQgmVY2oA
O1R+i3/3Lzk=
Fingerprint: 9d:3e:37:9b:01:bc:c5:1f:93:ce:7d:a7:1c:69:43:70

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-04-26T10:45:34.542426

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 26 Apr 2024 10:45:34 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Wed, 06 Apr 2022 06:42:18 GMT
Connection: keep-alive
ETag: "624d364a-264"
Accept-Ranges: bytes

1009235027 | 2024-05-07T01:30:19.436287

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 May 2024 01:30:19 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 9
Connection: keep-alive
Access-Control-Allow-Origin: *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:84:da:a9:9a:ba:73:ef:e6:77:53:06:fc:ea:fc:74:0d:c7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 20 23:00:34 2024 GMT
            Not After : Jul 19 23:00:33 2024 GMT
        Subject: CN=geo-ip-service.bsscommerce.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b6:2c:b1:e8:d0:e7:fc:fc:f8:92:b8:ca:4e:e8:
                    95:ed:7c:74:f6:3c:7b:03:4f:3a:c6:2b:98:f4:9e:
                    42:c7:3c:e8:63:31:70:06:ba:9c:b4:87:b3:29:e1:
                    58:e2:0b:a0:10:6b:48:a6:70:84:3f:ea:ed:a6:ff:
                    a7:51:8b:4e:79:27:e4:7d:c1:05:68:4b:49:cd:ef:
                    f6:77:6d:e6:fd:91:1b:b2:7a:5e:0b:18:c7:fd:d4:
                    44:90:c9:03:62:3b:27:ff:10:09:e5:f0:e0:6e:28:
                    4a:2f:bf:bd:50:c9:c0:f4:a5:94:9a:a1:8f:bd:99:
                    65:e6:c8:09:71:1d:ce:d7:9b:6a:70:6c:b3:6b:6a:
                    8b:51:61:fd:56:37:ef:68:b9:ea:63:88:9c:3a:65:
                    68:8c:a5:fa:ce:0e:93:2c:80:99:a5:10:b0:ba:b8:
                    ad:04:3b:34:fc:ef:5f:90:4e:a1:00:82:aa:66:26:
                    65:83:2b:9f:08:a7:d9:47:f4:d6:87:72:85:8b:f1:
                    9f:f9:9e:8d:c3:4c:ac:a6:e4:74:af:9b:e9:45:5f:
                    e1:18:ad:5e:e0:c5:0a:7a:8f:93:d6:45:af:9c:6d:
                    17:66:f8:af:aa:0d:77:2c:bc:ef:49:d2:4e:87:bf:
                    95:ae:0e:43:78:79:99:b3:4a:80:47:f6:2c:bb:0c:
                    e7:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                26:D0:5C:72:12:B3:25:71:D2:8C:06:76:F3:4C:D2:2E:14:3D:FA:F8
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:geo-ip-service.bsscommerce.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 21 00:00:35.197 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:15:8E:3B:72:8B:A2:34:A8:43:40:51:2E:
                                77:14:ED:F4:BD:30:17:97:02:34:C8:15:A4:B6:45:AD:
                                80:23:4A:48:02:21:00:B3:4D:74:47:0A:53:45:E9:02:
                                6F:26:0F:A9:B7:47:D7:99:0D:4D:D8:E5:21:3F:F9:9B:
                                58:2B:BF:08:F0:E2:41
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr 21 00:00:35.233 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:83:63:66:E2:E4:3F:C4:9B:98:EB:66:
                                85:D0:B2:B8:54:69:1F:E6:9D:68:0E:13:BC:9A:0B:D7:
                                B1:BD:8B:1B:FC:02:20:79:86:81:82:3F:17:5E:DE:8B:
                                60:74:A7:37:EF:6E:4A:A8:FB:86:52:81:AE:EF:C6:D7:
                                A9:29:C1:74:53:30:49
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        81:b6:f2:72:28:3e:1a:f6:a5:c7:58:c7:39:85:62:b7:54:bf:
        53:7d:55:da:b8:3f:09:25:11:22:aa:f2:4a:ce:38:91:6c:20:
        7a:ca:54:68:5b:5d:e7:fc:2a:24:c2:e3:23:26:fe:2a:0d:b3:
        f0:99:b2:7c:ad:37:20:6f:b3:b0:8e:a6:5d:3d:9f:cd:3a:6e:
        33:95:be:83:76:09:8c:8e:70:38:ba:11:8f:0a:c9:29:d4:68:
        4e:05:17:1c:07:25:5e:71:f5:15:88:0a:99:2d:a9:9f:a6:86:
        a3:2b:e2:c9:25:c7:78:27:8a:62:03:dd:04:1e:1d:fa:c2:5a:
        97:7f:26:88:b4:24:cb:d0:21:eb:c7:33:c7:70:1f:2e:7d:88:
        dd:8b:26:71:b0:01:94:d3:90:09:95:95:5f:69:1d:b7:06:8b:
        62:a7:e3:34:9a:bc:b3:fd:fe:14:56:8a:ec:9a:68:8b:24:83:
        47:59:b6:f2:e7:ee:4c:d9:92:c7:5e:9d:ec:db:fa:39:b4:7b:
        b8:c0:25:a6:19:c9:91:59:56:d0:47:58:f7:cd:81:6f:32:da:
        a2:e3:77:81:10:8a:22:ca:7c:90:72:af:dc:04:69:ee:51:82:
        08:c1:31:79:9c:a2:73:6b:3d:d9:87:95:c3:2e:4d:55:3a:08:
        5e:88:aa:bb

170.187.144.194

Last Seen: 2024-05-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1391232767 | 2024-05-09T06:44:45.955788
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-26T10:45:34.542426
80 / tcp

nginx1.18.0

1009235027 | 2024-05-07T01:30:19.436287
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

170.187.144.194

Last Seen: 2024-05-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1391232767 | 2024-05-09T06:44:45.955788 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-04-26T10:45:34.542426 80 / tcp

nginx1.18.0

1009235027 | 2024-05-07T01:30:19.436287 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1391232767 | 2024-05-09T06:44:45.955788
22 / tcp

1651973090 | 2024-04-26T10:45:34.542426
80 / tcp

1009235027 | 2024-05-07T01:30:19.436287
443 / tcp