GeneralInformation

Hostnames	cdn-freehost.com.ua static-node02.freehost.com.ua
Domains	cdn-freehost.com.ua freehost.com.ua
Country	Ukraine
City	Kyiv
Organization	Freehost UA
ISP	PE Freehost
ASN	AS42331

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

897585984 | 2024-05-03T08:01:49.449098

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Fri, 03 May 2024 08:01:48 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://cdn-freehost.com.ua/
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
static-number: 01

1191592344 | 2024-05-04T11:39:24.945074

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Sat, 04 May 2024 11:39:24 GMT
Content-Type: text/html
Content-Length: 171
Last-Modified: Wed, 17 Apr 2019 11:44:10 GMT
Connection: keep-alive
ETag: "5cb7118a-ab"
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
static-number: 02
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:87:43:70:ae:12:13:d8:92:4f:29:71:66:10:17:1a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1
        Validity
            Not Before: May 10 00:00:00 2023 GMT
            Not After : May  9 23:59:59 2024 GMT
        Subject: CN=*.cdn-freehost.com.ua
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:be:00:7d:9d:9d:62:72:c3:48:93:9b:cc:d1:d0:
                    5b:aa:74:eb:f3:14:72:84:b8:8c:17:28:e1:e8:3c:
                    6c:3e:11:20:54:29:c6:a4:6d:c2:ff:2d:4a:57:c6:
                    89:93:9c:2d:b2:8c:0d:f8:17:c5:06:a0:70:ea:37:
                    56:86:fb:f8:c7:9a:23:a8:0f:e0:6f:6a:4a:73:a7:
                    29:64:88:4a:96:77:fc:b9:75:74:86:d9:5e:64:d3:
                    d4:8c:1d:93:e3:34:1c:57:eb:8d:22:fa:ae:f8:c2:
                    8e:9a:ed:6a:77:f5:3b:1e:b5:9a:bd:ee:df:35:a5:
                    1e:8f:e7:bc:04:04:1c:a6:ea:7f:ec:e0:56:12:10:
                    28:25:88:54:77:64:c1:bb:5a:c3:0e:e8:1b:75:8c:
                    d8:67:e1:41:85:3d:93:8e:5d:c2:5f:55:59:32:e9:
                    f3:9b:c0:09:66:2c:d0:9d:0a:00:f4:e6:37:8e:36:
                    a2:59:a7:06:a7:4c:69:51:b4:fa:f5:d7:c0:56:b9:
                    c3:f0:5b:53:73:84:66:2b:66:33:2e:f5:6a:fa:7a:
                    d6:9d:09:2c:32:93:73:03:91:6d:e6:40:44:38:9d:
                    70:16:94:e1:86:84:a0:47:86:e8:59:68:c2:88:a0:
                    ba:c9:53:dc:fa:54:65:d2:a7:dc:26:5d:b6:dc:8f:
                    5d:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                0C:DB:6C:82:49:0F:4A:67:0A:B8:14:EE:7A:C4:48:52:88:EB:56:38
            X509v3 Subject Key Identifier: 
                B0:A0:B0:1B:72:D3:D9:29:14:E6:29:90:30:DE:ED:1D:8E:C5:B9:41
            X509v3 Subject Alternative Name: 
                DNS:*.cdn-freehost.com.ua, DNS:cdn-freehost.com.ua
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            Authority Information Access: 
                OCSP - URI:http://status.rapidssl.com
                CA Issuers - URI:http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt
            X509v3 Basic Constraints: 
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : May 10 08:54:26.545 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FE:4C:3C:97:87:CC:06:B7:89:7D:EE:
                                71:D0:1A:69:6F:07:83:63:DF:FD:B1:D7:0A:34:0E:EA:
                                82:C5:3E:04:E4:02:21:00:8E:14:16:CC:32:6E:F7:19:
                                C3:A7:9C:5A:C9:F2:25:7C:5C:C8:C4:A1:92:3C:43:11:
                                40:F7:7A:3E:8D:A7:6E:D0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May 10 08:54:26.560 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9C:06:83:5D:E7:E7:D4:B4:98:51:B8:
                                D1:DA:9E:0A:42:CF:6A:4B:E0:2A:76:82:9A:7F:9B:F6:
                                24:87:1E:2E:66:02:20:1E:3C:C4:08:24:36:26:99:63:
                                08:50:6E:52:04:DD:C4:62:CF:B5:69:0B:55:43:20:35:
                                AA:64:8A:46:D6:11:0E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : May 10 08:54:26.496 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D8:BB:83:1B:79:B7:02:3E:21:E4:EB:
                                AC:F5:8D:58:F9:48:5D:74:45:9F:9B:D6:6C:9A:D1:87:
                                82:87:5D:18:79:02:21:00:87:73:84:4F:E1:94:4A:80:
                                7D:5E:25:13:8A:E4:1C:84:17:B8:F5:69:FE:42:F9:51:
                                BA:3B:03:80:51:6A:45:4C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        35:2e:08:04:47:7a:58:63:27:d3:72:91:33:83:40:bc:ec:db:
        72:6b:e7:f9:3b:e7:1f:12:c9:50:25:d1:f3:78:8c:b2:34:7f:
        ce:c4:cb:20:f3:46:9c:1e:95:69:5e:cc:a1:24:c6:cb:db:3e:
        e3:9f:26:a5:ed:cd:90:b6:c5:98:7f:5c:40:9e:ee:18:00:05:
        5d:9c:6c:b0:7b:b0:82:ec:c0:22:a3:5b:d2:fe:04:dc:80:f0:
        e3:c4:ed:92:16:94:69:58:9a:cb:ba:5e:3b:93:0e:a8:be:0a:
        d1:8c:95:bb:c9:b1:5d:c1:7e:ce:85:0f:f9:a3:c8:3b:74:1c:
        87:82:09:79:52:07:75:21:04:7b:c2:fa:6f:1d:02:42:64:80:
        e4:0a:89:4a:d7:7e:ee:8f:96:ed:b8:a4:01:a5:92:01:03:70:
        89:0f:fa:56:e1:eb:e3:98:d6:cc:64:2c:36:3f:79:75:c4:e6:
        a8:73:a1:ea:22:91:b8:62:05:5f:82:27:9f:ea:b1:ef:ec:65:
        f6:6f:bd:99:75:f3:bd:98:a2:06:f7:ce:be:b2:d1:fe:00:6e:
        3c:ba:9b:05:ed:c9:32:02:8e:63:0f:ec:4a:2d:84:b4:4c:28:
        a2:b8:14:ee:43:b2:4c:7e:81:9c:70:a6:a0:05:6f:52:04:c1:
        97:41:a4:3d

178.20.153.77

Last Seen: 2024-05-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

897585984 | 2024-05-03T08:01:49.449098
80 / tcp

nginx1.20.2

1191592344 | 2024-05-04T11:39:24.945074
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

178.20.153.77

Last Seen: 2024-05-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

897585984 | 2024-05-03T08:01:49.449098 80 / tcp

nginx1.20.2

1191592344 | 2024-05-04T11:39:24.945074 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

897585984 | 2024-05-03T08:01:49.449098
80 / tcp

1191592344 | 2024-05-04T11:39:24.945074
443 / tcp