GeneralInformation

Hostnames	mhnpay.dns.boreus.de
Domains	boreus.de
Country	Germany
City	Berlin
Organization	Boreus Rechenzentrum GmbH
ISP	Vodafone GmbH
ASN	AS3209

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

110553246 | 2024-04-13T11:40:01.372061

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.1
Date: Sat, 13 Apr 2024 11:40:01 GMT
Content-Type: text/html
Content-Length: 552
Connection: keep-alive
Set-Cookie: BIGipServermhn_pay_http=2499821066.20480.0000; path=/; Httponly

110553246 | 2024-04-20T01:01:38.548321

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.1
Date: Sat, 20 Apr 2024 01:01:38 GMT
Content-Type: text/html
Content-Length: 552
Connection: keep-alive
Set-Cookie: BIGipServermhn_pay_http=2499821066.20480.0000; path=/; Httponly; Secure

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:26:1f:57:e9:38:72:46:3b:54:0a:26:38:06:79:b0:e3:f1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  1 06:01:24 2024 GMT
            Not After : May 30 06:01:23 2024 GMT
        Subject: CN=mhnpay.dns.boreus.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:ae:5a:df:5f:61:20:8d:11:28:63:11:86:87:d6:
                    4b:a5:92:b4:f5:af:fa:8a:83:aa:c9:00:ac:2f:8a:
                    a9:5f:81:42:4a:ff:81:d0:c1:ad:a7:4e:65:2b:ba:
                    a4:a9:68:f5:41:f7:3d:84:0e:0c:34:71:7e:bb:cc:
                    f2:07:33:90:5a:ce:61:e0:2a:70:b7:3b:cb:8b:9b:
                    7e:5e:9e:66:33:21:80:a8:12:03:56:05:4e:7d:e8:
                    56:be:71:cb:f5:24:9d:a7:f4:82:90:13:a0:24:d5:
                    2d:e6:9e:94:f8:1d:94:20:7f:43:44:5e:4b:6c:d6:
                    10:c0:97:de:bf:2e:1a:60:99:c5:da:e6:78:67:bf:
                    8b:01:f1:53:e5:9f:28:e6:10:a9:dd:c4:fa:4a:61:
                    a7:4e:b7:be:5d:05:4b:7e:e5:ce:57:c9:3a:e2:13:
                    07:91:6f:01:05:f5:9a:72:14:f4:bd:e9:4e:24:6e:
                    bb:c0:cf:b1:1d:56:da:94:51:0f:67:c9:13:7e:29:
                    36:43:92:b3:5f:30:6c:1a:b1:73:18:a8:1f:c5:6e:
                    96:1a:95:ff:89:43:74:24:70:d2:1b:f2:cf:6e:80:
                    0f:d0:68:fc:a0:25:a7:7f:cc:26:3e:fd:50:c2:d2:
                    a5:a6:14:11:e4:9c:97:32:8f:03:2a:04:2b:c2:4f:
                    aa:a9:6f:b0:12:ab:02:51:5b:f2:c8:6f:4b:d8:e8:
                    a9:db:34:ee:fa:4f:3e:00:51:5f:39:76:69:d6:a0:
                    77:2d:ac:24:0a:fb:ab:dd:03:ff:e7:70:8d:c4:74:
                    e3:0e:5e:4c:79:fe:05:47:87:fe:45:c0:61:b7:cf:
                    1b:a0:4d:4d:00:3d:75:da:04:d9:e7:1f:82:3c:38:
                    51:d1:37:6b:32:65:1a:c0:f0:70:05:16:6e:1f:f4:
                    7b:0e:6a:42:a0:97:e8:fd:1f:9e:c3:42:b8:e7:9d:
                    a1:15:73:e5:ef:3e:d7:30:e6:c1:f6:9c:a4:c9:c3:
                    84:97:0b:fb:93:b3:b8:c0:0f:37:4b:7d:11:c3:8a:
                    7b:be:ab:a1:ab:60:c4:3b:f5:d6:2f:c3:b0:e6:4d:
                    a0:f3:1a:cd:b7:b4:08:5c:59:af:93:3e:97:a0:50:
                    9b:c0:cf:97:b0:4d:3c:cd:ca:8b:e3:98:88:8f:41:
                    26:ee:d4:0d:7d:c4:d4:a0:12:9a:88:06:c5:2b:13:
                    31:41:2f:ab:01:71:1d:d0:ac:89:0a:0b:ff:3d:96:
                    55:1a:23:48:78:cc:92:72:83:35:41:09:ca:8a:32:
                    76:7f:47:db:e9:fc:8e:44:ba:72:a5:fd:e0:15:7d:
                    51:78:5e:77:81:8f:d0:4d:9a:ab:4d:79:22:14:f1:
                    98:5b:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                AF:05:A8:3A:2C:4F:02:62:79:78:5E:D4:A7:5A:78:96:B0:8D:00:6E
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:mhnpay.dns.boreus.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar  1 07:01:24.087 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:53:F6:D0:24:28:B3:CC:FB:4C:49:18:6D:
                                23:DC:9D:88:00:0B:CF:82:B1:DF:0F:6A:9E:CA:61:AA:
                                60:BA:E4:BA:02:20:69:2B:98:E3:D7:17:27:9F:50:58:
                                A0:3B:18:44:A6:36:81:A7:C5:02:08:65:7F:0D:67:56:
                                A8:DE:3E:08:4D:67
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar  1 07:01:24.095 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:1D:B6:D7:33:C8:A2:19:63:81:2D:B5:7F:
                                8A:64:02:4E:E2:5C:A2:5B:81:F3:C9:D1:16:CC:0A:47:
                                46:1C:72:E0:02:21:00:C5:CB:4B:F8:AB:63:9C:D9:41:
                                33:07:89:EC:03:DA:04:80:F8:A2:D7:86:52:89:26:0C:
                                FA:1C:6F:EA:44:D2:52
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        02:d9:2d:6d:62:b5:ff:8d:0f:5e:2c:bf:cd:f1:19:cb:72:6f:
        3d:2a:26:e8:f8:b7:c3:90:74:a8:69:eb:c6:04:00:f2:f7:c5:
        51:4c:97:18:b4:ef:3f:2c:a3:e5:67:3f:25:84:24:88:1f:50:
        01:56:4a:8a:27:48:47:8d:1f:21:e4:fe:18:b1:de:86:53:4b:
        f8:5a:65:67:5c:65:a1:e4:d8:95:46:d8:ee:3f:c2:78:d0:a6:
        84:fd:13:c2:51:c9:41:d2:c2:42:ae:69:bd:59:3f:b7:4e:ec:
        5e:77:dc:09:a7:a5:2d:3e:f5:80:7e:71:56:b1:48:2d:23:de:
        ac:d0:fc:dc:a7:a9:4e:1f:6d:59:7f:36:a5:50:0f:83:5f:df:
        d7:ca:ed:56:91:2e:af:9f:66:14:98:38:36:9f:78:70:61:79:
        d5:4f:26:07:91:c3:15:c3:4d:17:3a:b3:20:67:30:9d:27:28:
        80:6d:5e:82:64:df:4a:ec:84:d1:32:c3:4f:65:cf:33:34:b9:
        c3:25:75:e2:67:a0:95:6a:5c:49:74:dc:45:94:de:28:f9:b6:
        7c:b9:b0:d0:c1:36:29:2e:87:fd:eb:5f:e0:cc:ce:33:a9:c6:
        7a:32:15:c1:e6:54:3a:29:69:25:54:6d:ba:52:77:d6:5a:e6:
        43:24:c9:80

178.15.48.169

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

110553246 | 2024-04-13T11:40:01.372061
80 / tcp

nginx1.20.1

110553246 | 2024-04-20T01:01:38.548321
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

178.15.48.169

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

110553246 | 2024-04-13T11:40:01.372061 80 / tcp

nginx1.20.1

110553246 | 2024-04-20T01:01:38.548321 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

110553246 | 2024-04-13T11:40:01.372061
80 / tcp

110553246 | 2024-04-20T01:01:38.548321
443 / tcp