GeneralInformation

Hostnames	services.gyro-tec.com 173.214.244.199.serverel.net
Domains	gyro-tec.com serverel.net
Country	United States
City	San Jose
Organization	Serverel Inc.
ISP	Serverel Inc.
ASN	AS15317

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	5.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

25 53 80 81 443

-570953911 | 2024-04-22T03:48:25.598862

25 / tcp

220 billing.gyro-tec.com ESMTP Postfix
250-billing.gyro-tec.com
250-PIPELINING
250-SIZE 10240000
250-ETRN
250-AUTH PLAIN LOGIN DIGEST-MD5 CRAM-MD5
250-AUTH=PLAIN LOGIN DIGEST-MD5 CRAM-MD5
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN

315530436 | 2024-04-19T03:55:22.190084

53 / tcp

9.11.4-P2-RedHat-9.11.4-9.P2.el7
Resolver name: billing.gyro-tec.com

315530436 | 2024-04-11T15:45:20.515102

53 / udp

9.11.4-P2-RedHat-9.11.4-9.P2.el7
Resolver name: billing.gyro-tec.com

1993683159 | 2024-04-16T04:02:31.953009

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.16.1
Date: Tue, 16 Apr 2024 04:02:32 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 202
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding

1993683159 | 2024-04-23T18:32:20.322128

81 / tcp

HTTP/1.1 403 Forbidden
Date: Tue, 23 Apr 2024 18:32:23 GMT
Server: Apache
Content-Length: 202
Connection: close
Content-Type: text/html; charset=iso-8859-1

1993683159 | 2024-04-18T06:31:42.425376

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.16.1
Date: Thu, 18 Apr 2024 06:31:43 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 202
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:c3:43:5b:f1:c8:79:47:e9:75:a4:3f:ed:17:1b:7a:a5:dd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 12 03:01:16 2024 GMT
            Not After : Jun 10 03:01:15 2024 GMT
        Subject: CN=services.gyro-tec.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b7:ce:37:5e:16:94:c1:ad:dd:4a:bb:a5:bf:05:
                    e8:9a:19:3b:45:c8:e1:c1:41:b4:20:72:58:69:38:
                    c8:cb:6d:2f:54:f6:29:4c:78:6c:31:22:3b:6c:d3:
                    4f:c1:c9:24:55:33:fe:13:ec:ce:d4:40:ff:b9:80:
                    15:87:a4:46:f3:b5:85:9f:11:63:b4:31:8f:bd:33:
                    10:c8:ac:59:27:ca:53:f5:ea:7c:5e:c1:66:40:3d:
                    0f:82:33:f1:46:de:4a:b5:0f:90:31:e6:d8:4c:20:
                    7c:b7:87:18:aa:12:b0:f9:a9:f9:ec:98:76:09:8d:
                    45:e0:82:0d:34:d4:1c:0c:c8:d3:98:3f:23:00:6f:
                    87:11:78:26:af:f9:32:ff:5d:2a:e3:ad:e9:3e:3f:
                    7c:90:4e:c9:7e:14:e3:7b:d2:6e:d3:ea:08:49:69:
                    11:86:96:92:f9:c8:ea:fe:6a:da:62:b5:0f:ed:73:
                    59:3c:5e:d6:4f:90:6c:26:dd:57:2e:d6:64:b9:9c:
                    6f:47:d8:8c:c2:54:d4:3d:ff:65:88:bf:d0:cf:44:
                    70:51:2b:ff:23:ad:c5:a1:61:87:0b:5c:85:5f:8b:
                    db:09:da:76:9c:aa:e2:35:fb:49:a3:3c:2f:e2:67:
                    69:dd:0e:2d:e8:fd:c2:dc:1a:56:a0:62:5e:11:73:
                    07:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A5:8D:B4:FD:A0:3B:19:56:F8:B1:AD:9A:90:A5:25:17:37:FD:E2:31
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:services.gyro-tec.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 12 04:01:17.221 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:27:46:D5:16:4A:F6:B2:D8:41:70:85:72:
                                FD:A1:A0:65:9A:F4:83:63:F5:24:B8:AB:E5:89:01:32:
                                19:73:4E:B3:02:21:00:C3:BF:79:E0:1C:46:36:C9:D5:
                                AD:C5:3B:17:79:F1:38:C4:69:95:CE:04:BB:E0:76:3B:
                                66:0F:5C:E3:95:4E:1E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 12 04:01:17.275 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E2:20:31:8D:4A:8C:4E:E3:7A:96:E3:
                                5B:94:C5:9D:13:FE:29:FF:4D:D4:D1:B6:11:2B:8A:E6:
                                F8:7F:2D:56:A6:02:21:00:DF:09:A0:40:7C:23:14:48:
                                C9:24:CE:A9:02:7C:7A:66:33:A0:94:2F:85:BB:69:20:
                                CB:69:48:A7:98:E5:3C:92
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        41:e6:10:41:e1:2e:67:6f:cf:79:8c:7b:59:79:99:65:2f:9f:
        5e:91:10:60:4c:38:31:b0:f2:00:9e:a9:f8:b9:a5:91:87:c2:
        27:11:42:c5:ed:f0:1c:b6:34:83:8b:e5:eb:4e:25:13:27:87:
        b5:4f:a3:bf:e3:30:6f:fb:79:df:1c:27:91:7b:32:e5:3d:f7:
        87:58:79:e7:46:98:b2:0f:35:2c:2c:9b:2c:87:7a:d2:43:cc:
        86:4b:c2:75:cc:20:25:24:47:2d:b2:50:8d:4c:be:29:09:74:
        ec:b8:e4:fc:ad:15:23:50:36:0d:3d:e6:b4:3c:d7:4f:53:1f:
        cc:58:ed:b1:65:48:ba:07:8e:ea:b3:0b:cd:20:98:b4:70:68:
        87:67:8d:16:59:f4:fb:ac:d8:a4:39:67:62:53:00:75:fd:1f:
        87:9e:00:35:6d:32:04:de:1e:f9:28:d0:64:d1:07:a8:a0:1f:
        37:40:11:b8:c6:33:dc:2f:24:25:2a:25:c3:a6:dc:74:1c:4c:
        71:b9:fc:f6:9a:41:6f:3b:03:3d:42:64:eb:30:e5:e5:9a:b6:
        29:b6:6e:71:38:6c:d5:4d:59:4b:16:15:df:4a:4b:94:07:3a:
        0d:7e:f8:24:01:05:d7:26:41:6b:82:aa:81:60:c2:0b:60:f4:
        d6:60:7f:75

173.214.244.199

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-570953911 | 2024-04-22T03:48:25.598862
25 / tcp

Postfix smtpd

315530436 | 2024-04-19T03:55:22.190084
53 / tcp

315530436 | 2024-04-11T15:45:20.515102
53 / udp

1993683159 | 2024-04-16T04:02:31.953009
80 / tcp

nginx1.16.1

1993683159 | 2024-04-23T18:32:20.322128
81 / tcp

Apache httpd

1993683159 | 2024-04-18T06:31:42.425376
443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

173.214.244.199

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-570953911 | 2024-04-22T03:48:25.598862 25 / tcp

Postfix smtpd

315530436 | 2024-04-19T03:55:22.190084 53 / tcp

315530436 | 2024-04-11T15:45:20.515102 53 / udp

1993683159 | 2024-04-16T04:02:31.953009 80 / tcp

nginx1.16.1

1993683159 | 2024-04-23T18:32:20.322128 81 / tcp

Apache httpd

1993683159 | 2024-04-18T06:31:42.425376 443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

-570953911 | 2024-04-22T03:48:25.598862
25 / tcp

315530436 | 2024-04-19T03:55:22.190084
53 / tcp

315530436 | 2024-04-11T15:45:20.515102
53 / udp

1993683159 | 2024-04-16T04:02:31.953009
80 / tcp

1993683159 | 2024-04-23T18:32:20.322128
81 / tcp

1993683159 | 2024-04-18T06:31:42.425376
443 / tcp