GeneralInformation

Hostnames	yougile.com autodiscover.yougile.com mail.yougile.com owa.yougile.com
Domains	yougile.com
Country	Russian Federation
City	Moscow
Organization	Domain names registrar REG.RU, Ltd
ISP	"Domain names registrar REG.RU", Ltd
ASN	AS49352
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 8080

-567194451 | 2024-04-16T05:17:18.612452

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 16 Apr 2024 05:17:18 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 541
Connection: keep-alive
X-Content-Type-Options: nosniff
Set-Cookie: JSESSIONID.6727c510=node0by8y03jch7df5s0k53lxmley53489.node0; Path=/; HttpOnly
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Hudson: 1.395
X-Jenkins: 2.425
X-Jenkins-Session: 321592d9

-567194451 | 2024-04-04T21:14:16.771151

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 04 Apr 2024 21:14:16 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 541
Connection: keep-alive
X-Content-Type-Options: nosniff
Set-Cookie: JSESSIONID.6727c510=node0nnysdfdrqanqcwpph8r819ou48859.node0; Path=/; Secure; HttpOnly
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Hudson: 1.395
X-Jenkins: 2.425
X-Jenkins-Session: 321592d9

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4c:d0:92:77:94:da:64:90:09:5f:86:d3
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign RSA OV SSL CA 2018
        Validity
            Not Before: Sep 19 10:48:12 2023 GMT
            Not After : Oct 20 10:48:11 2024 GMT
        Subject: C=RU, ST=Moscow, L=Moscow, O=YUDZHAIL LLC, CN=*.yougile.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e3:2c:ce:7b:d2:f4:67:ac:bb:7f:43:be:26:a5:
                    f2:b0:3b:6a:91:7a:05:14:99:d1:bb:3a:0a:b9:00:
                    39:f3:b0:92:8d:b1:6e:de:0e:91:e2:ae:7a:5c:43:
                    78:b6:b0:45:3c:38:fd:e5:cb:3a:9b:79:8f:f6:de:
                    b7:fb:12:a3:e8:34:fa:e2:ed:5e:5d:6f:ad:4f:0d:
                    87:93:ed:6a:49:38:e4:f6:e3:01:06:12:57:dc:fa:
                    60:73:9c:d6:ea:ab:71:c6:42:2f:bf:60:4a:12:7a:
                    06:13:ce:9b:19:7b:2e:cc:5f:55:66:50:e6:a6:6b:
                    57:25:da:59:f6:f2:c7:a7:fc:28:59:01:6c:72:b5:
                    83:1c:ee:77:64:c6:c0:f5:a9:e6:e1:4d:01:3c:10:
                    48:c9:3e:d1:7a:e4:be:5a:05:f0:56:51:74:7e:01:
                    86:2a:f4:c2:bc:e3:87:b0:8d:cf:3a:5b:a4:81:9b:
                    ac:fe:3e:9e:41:6c:4d:f2:7c:4d:95:72:82:30:7e:
                    d5:c1:94:f9:9f:07:66:4c:41:96:9b:4a:18:05:34:
                    b8:1d:90:12:d6:09:1e:9d:ac:0a:87:d7:c7:72:dd:
                    73:a6:fc:9e:dd:ce:27:92:89:e1:18:10:da:2e:cc:
                    41:de:3b:c1:6c:ff:95:18:ea:00:e8:06:71:98:07:
                    f7:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
                OCSP - URI:http://ocsp.globalsign.com/gsrsaovsslca2018
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsrsaovsslca2018.crl
            X509v3 Subject Alternative Name: 
                DNS:*.yougile.com, DNS:autodiscover.yougile.com, DNS:mail.yougile.com, DNS:owa.yougile.com, DNS:yougile.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                F8:EF:7F:F2:CD:78:67:A8:DE:6F:8F:24:8D:88:F1:87:03:02:B3:EB
            X509v3 Subject Key Identifier: 
                9E:14:C6:9F:E2:F0:0B:79:89:E1:B2:85:B3:E4:13:64:B3:B8:09:F4
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep 19 10:48:15.367 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D5:74:AA:BB:18:66:F5:BA:A5:98:7F:
                                C8:6B:54:C8:41:9B:80:72:B2:8E:9D:90:A9:74:C5:25:
                                A8:E1:D5:B6:A4:02:21:00:A6:A4:7A:A3:A7:58:78:09:
                                11:1F:5E:48:C7:10:AE:34:82:8E:6A:31:D0:B4:2B:C6:
                                A3:25:BD:02:AF:13:F7:79
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Sep 19 10:48:14.940 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A6:0D:D8:4D:41:6B:69:EB:36:8F:F3:
                                2F:D5:35:F9:0F:31:14:B1:E8:08:94:2A:22:29:AF:97:
                                AF:A8:89:F8:41:02:21:00:F2:54:86:9A:65:A2:EF:77:
                                C0:56:4A:EC:88:75:51:FA:E3:0B:09:C7:BB:24:91:49:
                                CB:B4:7B:A1:15:44:86:4D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep 19 10:48:15.204 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4B:4A:15:BC:51:AB:D5:F5:BB:59:CB:91:
                                A6:30:51:43:99:56:7D:C7:77:65:64:12:1D:43:62:C5:
                                11:7C:D3:BB:02:20:5D:39:E8:9D:14:43:04:41:7E:2E:
                                63:F3:3E:13:8A:68:36:0C:36:B9:A1:A1:CA:8B:9F:61:
                                BD:60:22:25:EB:D3
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0e:83:7b:d4:38:75:49:7c:8b:87:c4:bd:7f:9b:01:22:bb:ff:
        18:12:63:50:5e:a7:87:2b:85:45:a2:c4:3f:25:23:5f:a8:7d:
        7a:24:bd:5b:7d:36:8b:9b:ae:3e:f1:24:75:06:d2:4b:19:66:
        34:cb:cc:d8:4d:21:48:dc:6e:6b:99:aa:9a:6d:e9:31:7c:5b:
        a2:f3:47:87:49:bd:f6:49:8c:03:ff:96:02:a7:97:69:74:dc:
        95:05:61:81:97:cf:53:57:ea:04:ba:8c:58:bd:d7:67:4b:cd:
        d7:ea:b4:6e:58:5b:09:13:5b:a3:d6:f5:55:b4:4c:fb:36:f1:
        a4:15:61:3f:13:51:0c:7c:2e:5f:ff:8c:cf:1a:9d:67:8d:77:
        2e:a7:bf:e2:99:04:a9:89:dc:d6:06:f3:77:29:81:b9:c6:45:
        f7:d4:37:d7:50:83:c4:5b:1c:dc:c7:36:d3:8d:ad:92:27:98:
        3a:01:8f:05:73:65:b9:c8:72:51:60:01:07:93:2f:9c:14:85:
        d8:c3:d1:22:96:a7:41:6d:c8:9d:96:66:94:c1:7c:40:a5:66:
        42:a0:44:d1:c5:4d:0e:3a:29:c7:4f:55:c8:01:a3:98:49:5d:
        d0:5f:51:5d:da:34:30:91:05:15:7d:ce:b6:da:72:07:06:48:
        f9:c5:b7:9c

-567194451 | 2024-04-08T10:19:31.797762

8080 / tcp

HTTP/1.1 403 Forbidden
Date: Mon, 08 Apr 2024 10:19:31 GMT
X-Content-Type-Options: nosniff
Set-Cookie: JSESSIONID.6727c510=node01awg1g6v84hicq34dwm43f8pe50191.node0; Path=/; HttpOnly
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/html;charset=utf-8
X-Hudson: 1.395
X-Jenkins: 2.425
X-Jenkins-Session: 321592d9
Content-Length: 541
Server: Jetty(10.0.16)

176.99.5.199

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-567194451 | 2024-04-16T05:17:18.612452
80 / tcp

Jenkins

-567194451 | 2024-04-04T21:14:16.771151
443 / tcp

Jenkins

-567194451 | 2024-04-08T10:19:31.797762
8080 / tcp

Jenkins

Products

Pricing

Contact Us

176.99.5.199

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-567194451 | 2024-04-16T05:17:18.612452 80 / tcp

Jenkins

-567194451 | 2024-04-04T21:14:16.771151 443 / tcp

Jenkins

-567194451 | 2024-04-08T10:19:31.797762 8080 / tcp

Jenkins

Products

Pricing

Contact Us

-567194451 | 2024-04-16T05:17:18.612452
80 / tcp

-567194451 | 2024-04-04T21:14:16.771151
443 / tcp

-567194451 | 2024-04-08T10:19:31.797762
8080 / tcp