GeneralInformation

Hostnames	ec2-18-197-41-136.eu-central-1.compute.amazonaws.com meest.com
Domains	amazonaws.com meest.com
Cloud Provider	Amazon
Cloud Region	eu-central-1
Cloud Service	EC2
Country	Germany
City	Frankfurt am Main
Organization	A100 ROW GmbH
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 5050 8000 8200 9000 9100

1364397582 | 2024-05-09T18:42:37.063929

80 / tcp

HTTP/1.1 403 Forbidden
Date: Thu, 09 May 2024 18:42:36 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 288
Connection: keep-alive
Server: nginx/1.20.0

1364397582 | 2024-05-05T20:58:21.883972

443 / tcp

HTTP/1.1 403 Forbidden
Date: Sun, 05 May 2024 20:58:21 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 288
Connection: keep-alive
Server: nginx/1.20.0

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:db:33:a4:78:98:72:72:44:42:bc:8c:3f:21:89:36
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Oct  5 00:00:00 2023 GMT
            Not After : Nov  3 23:59:59 2024 GMT
        Subject: CN=*.be-oi.be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d5:b9:0e:e5:d1:79:d7:44:53:28:52:ca:bb:0c:
                    a5:e3:09:d2:27:b4:96:22:05:5e:a6:08:08:59:26:
                    5d:5c:44:f9:e5:86:1a:06:80:d7:ca:94:c6:fc:d0:
                    75:95:3e:09:ae:44:86:5e:bc:b3:0f:c0:07:bd:64:
                    3c:1f:5b:cf:f8:47:6c:5f:17:81:81:34:f5:90:b8:
                    93:f3:4b:eb:5d:0b:21:89:83:09:f9:9a:f7:44:4e:
                    40:8c:41:9c:cc:9c:8e:cd:f2:dc:9d:df:d5:0c:7a:
                    c3:ba:01:e2:1c:b3:46:96:a8:7b:09:d3:65:7b:46:
                    bb:f2:09:e7:4f:da:04:1d:cf:83:62:c7:78:fa:fe:
                    f5:21:1d:22:31:94:38:38:e8:79:88:cb:d2:b6:15:
                    56:37:64:e8:17:1f:65:b7:9a:5f:9c:55:6e:b2:b7:
                    37:4e:d4:ac:a8:03:90:3b:89:9f:24:ac:7a:10:a8:
                    01:66:67:03:d4:52:0c:f7:7d:e9:04:c9:e0:33:ad:
                    92:86:68:25:76:c1:84:5d:ed:3b:9c:ab:c1:3b:91:
                    9f:8a:d6:9b:82:42:76:c8:9c:03:95:1a:2c:d6:43:
                    14:11:62:9d:b1:9b:e1:4c:79:a2:7a:27:a0:8b:5c:
                    ba:8a:00:8e:65:b8:91:36:7c:fd:e7:3d:16:71:5c:
                    1a:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                61:7B:E3:64:F1:53:E8:22:24:86:38:D8:04:9B:6C:8D:DE:C7:91:6E
            X509v3 Subject Alternative Name: 
                DNS:*.be-oi.be
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct  5 00:29:12.102 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:1C:C9:6C:84:D1:C4:5B:83:52:DF:09:C5:
                                2E:F4:9A:35:ED:C3:1F:8F:EF:83:2D:A7:77:0B:92:0F:
                                25:4E:21:CE:02:21:00:CB:43:FB:B2:76:5F:A9:48:D7:
                                9B:B2:0A:08:B5:8D:73:30:91:B0:49:A0:B8:C0:AA:8D:
                                C5:74:FA:C4:1A:B5:83
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct  5 00:29:12.043 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CE:EF:D9:04:87:2C:91:E5:56:56:26:
                                01:E3:71:E3:9E:D9:92:6E:CD:6D:89:D5:D0:8A:31:25:
                                FF:0A:0A:0F:A0:02:21:00:BA:6B:6E:E6:00:7C:AF:91:
                                7B:A4:76:C3:01:7B:25:BE:79:A6:5C:01:2A:80:6C:C1:
                                43:66:D2:AD:AE:95:D5:18
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct  5 00:29:12.043 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B5:D8:C6:E7:B4:F8:2B:70:79:18:22:
                                4A:CC:2A:F3:B1:CA:40:66:1A:E2:3A:27:07:20:F2:B6:
                                5E:9F:B8:93:27:02:21:00:C5:F1:F6:B4:C2:47:03:99:
                                4F:EC:8D:A4:99:3C:0E:72:61:BB:30:80:BB:1A:0C:5C:
                                2F:98:AC:41:DC:A4:9E:89
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        af:21:e7:f0:b4:28:ab:de:d7:c3:64:f4:e9:6d:77:ee:3b:60:
        3f:e7:92:ce:e2:41:79:a6:ac:a5:3d:93:a8:8a:97:55:6c:31:
        bd:dd:c0:0a:b5:8a:0e:4a:9c:50:86:44:2f:08:42:7c:9a:c7:
        cd:69:e0:6c:1d:52:a5:06:66:24:21:de:9f:e1:77:9a:f2:a4:
        e1:54:45:5d:93:08:63:09:78:9b:fb:2d:98:31:24:16:3f:5c:
        b3:fc:7a:ec:b8:56:df:bd:57:5f:57:50:bf:e4:bd:18:29:0f:
        1f:2d:26:4d:ef:7b:d5:be:fd:29:31:1e:c8:7b:d4:2e:7b:6e:
        f2:48:5f:9d:13:32:fa:9a:b0:2e:07:d4:c3:86:45:60:8c:cd:
        24:1e:b1:d3:06:d3:96:43:8b:01:d3:55:a5:3d:2f:1b:03:e4:
        d9:37:8b:16:86:b4:bf:51:b4:2f:07:ca:a9:47:bb:b4:9e:51:
        35:76:2b:da:1a:a3:7a:97:e5:77:e1:68:20:1f:34:61:5c:86:
        57:78:e7:36:80:b6:7c:cc:d9:b4:63:0a:18:23:33:d9:fd:6f:
        9b:2c:57:df:96:c5:7c:7e:4f:9c:b8:a1:e6:47:42:db:bd:d4:
        b0:b8:51:03:3a:58:a2:63:dc:1f:c1:21:5d:9e:c0:04:c9:de:
        c2:a7:de:c2

1102849523 | 2024-04-26T17:27:35.300863

5050 / tcp

HTTP/1.1 400 Bad Request
Server: awselb/2.0
Date: Fri, 26 Apr 2024 17:27:35 GMT
Content-Type: text/html
Content-Length: 622
Connection: close

1102849523 | 2024-04-28T20:40:37.490394

8000 / tcp

HTTP/1.1 400 Bad Request
Server: awselb/2.0
Date: Sun, 28 Apr 2024 20:40:37 GMT
Content-Type: text/html
Content-Length: 622
Connection: close

1102849523 | 2024-05-01T15:23:06.172043

8200 / tcp

HTTP/1.1 400 Bad Request
Server: awselb/2.0
Date: Wed, 01 May 2024 15:23:06 GMT
Content-Type: text/html
Content-Length: 622
Connection: close

293410365 | 2024-05-01T03:51:51.543604

9000 / tcp

HTTP/1.1 503 Service Temporarily Unavailable
Server: awselb/2.0
Date: Wed, 01 May 2024 03:51:51 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:dd:8a:c2:12:bd:ff:a9:32:25:0d:97:8e:c7:a9:c1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M01
        Validity
            Not Before: Sep 25 00:00:00 2023 GMT
            Not After : Oct 24 23:59:59 2024 GMT
        Subject: CN=meest.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:be:bc:2a:5e:b7:56:2b:18:a7:cf:32:62:39:26:
                    30:7b:10:d2:c3:0f:bd:53:af:a4:6c:59:15:f1:11:
                    6c:b7:92:0a:b6:2e:68:90:ad:c3:de:f2:46:43:cb:
                    08:f1:e3:ba:07:d9:85:0f:96:db:42:6c:d0:42:3f:
                    af:50:b2:d2:54:62:48:c5:ad:46:82:a1:d1:2f:4a:
                    82:71:3f:03:dc:bc:c4:b1:d2:36:28:ee:8d:48:95:
                    80:03:76:52:b2:b6:22:84:24:11:15:1c:c3:23:a1:
                    1a:e4:6e:4d:c2:5b:af:4e:b9:96:69:db:38:52:bd:
                    79:f2:1c:17:42:c3:fc:a8:cf:76:be:0a:3e:60:ad:
                    12:2c:e0:23:83:93:7d:c2:19:2a:a1:3b:05:30:a2:
                    1b:84:9a:f9:22:3a:fb:4b:56:ea:47:56:28:7b:f3:
                    81:c5:59:c6:ec:c6:21:18:99:74:12:9f:17:02:57:
                    ee:3b:26:68:59:25:75:c6:a4:58:7b:da:22:9b:61:
                    7c:39:16:c0:b9:16:96:93:1a:6a:88:3f:c5:4d:b7:
                    0e:ed:ec:df:ff:50:77:84:dd:2b:f2:d7:a5:d1:5a:
                    f8:48:13:ea:9f:f6:49:22:e7:c2:ad:52:5e:1f:ad:
                    8b:21:e2:ce:ad:fd:0a:6c:a8:23:33:f6:4e:4d:4c:
                    fe:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                81:B8:0E:63:8A:89:12:18:E5:FA:3B:3B:50:95:9F:E6:E5:90:13:85
            X509v3 Subject Key Identifier: 
                80:35:E9:3C:56:90:5E:8C:0B:73:97:50:E0:01:08:07:4D:63:78:6B
            X509v3 Subject Alternative Name: 
                DNS:meest.com, DNS:*.meest.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m01.amazontrust.com/r2m01.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m01.amazontrust.com
                CA Issuers - URI:http://crt.r2m01.amazontrust.com/r2m01.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep 25 00:24:21.231 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:1B:B8:56:65:01:9B:E9:28:87:B4:ED:92:
                                E2:72:B7:4D:6D:78:9F:6C:F8:35:C8:16:F0:40:F5:E4:
                                65:00:52:95:02:21:00:AF:12:F5:57:84:F4:E3:1A:84:
                                04:B1:D8:5B:42:6A:62:0A:39:9F:7F:D6:0C:8B:1C:DD:
                                7D:4A:E5:55:54:D1:B5
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Sep 25 00:24:21.257 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CB:9E:16:3A:6F:4C:6C:B6:85:F2:D9:
                                4B:C0:73:25:9F:C2:96:8D:10:16:26:9F:8C:B5:FF:90:
                                06:2F:91:62:64:02:21:00:C7:CC:D8:8A:F7:00:72:CF:
                                6E:03:06:11:60:AE:C5:01:F6:74:FA:AB:E5:1A:5C:1A:
                                77:D7:7B:2B:BB:27:45:D4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep 25 00:24:21.192 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:6C:B3:DC:A8:5A:F6:A0:72:F1:57:9C:2C:
                                77:4D:B9:AB:5F:AF:7A:9C:AD:A7:44:F2:48:0A:3F:BD:
                                0A:7E:38:D7:02:21:00:8E:68:FA:EA:15:A4:4B:39:40:
                                5D:B8:A1:A6:7B:36:A3:27:BD:CB:F4:50:2E:0E:C8:A5:
                                3E:70:D3:40:9D:85:E5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        43:99:d1:35:80:6a:f3:8f:2a:aa:b6:6f:15:84:6e:31:04:2c:
        13:4b:f2:ac:d5:70:e1:39:4b:5f:e2:65:66:91:67:cd:b3:82:
        e2:db:ea:8d:0d:d3:bd:1f:a5:8f:df:dc:6e:20:06:21:35:c2:
        42:0d:5e:23:2a:2d:79:d4:04:0f:7b:dc:59:18:e4:cf:79:f2:
        e2:bb:71:58:23:5f:e2:64:bb:82:9e:7f:b0:64:cd:a2:09:2a:
        a0:9f:fb:04:07:0b:af:5f:52:d7:8f:2a:bd:c7:28:84:5e:27:
        d3:5f:e2:d9:9f:22:dd:12:c7:ef:36:2f:9f:0f:3f:67:8b:b4:
        63:db:0c:dc:75:b5:29:2a:98:82:f2:36:c9:a7:db:01:8f:b0:
        24:e3:a1:92:1a:f6:3a:67:5c:92:1e:15:94:2a:e4:c4:a6:8f:
        ad:9a:c9:75:54:0e:d3:7e:84:b5:ae:79:b5:91:a7:45:f9:5f:
        92:78:16:f0:c0:ea:c7:35:97:98:ab:ca:a0:02:df:9a:41:37:
        9a:0e:87:d2:e0:cc:36:a0:f8:60:42:63:9f:56:38:f7:17:32:
        93:a0:c0:2e:e3:7a:0d:68:f1:b2:03:7d:0a:87:a2:ab:8a:51:
        f3:f0:34:ae:3b:f1:21:88:40:cb:17:fe:8c:f1:96:f0:ec:44:
        a0:4c:bd:20

782136286 | 2024-04-29T04:07:19.074653

9100 / tcp

HTTP/1.1 400 Bad Request
Server: awselb/2.0
Date: Mon, 29 Apr 2024 04:07:18 GMT
Content-Type: text/html
Content-Length: 122
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
</body>
</html>

18.197.41.136

Last Seen: 2024-05-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1364397582 | 2024-05-09T18:42:37.063929
80 / tcp

nginx1.20.0

1364397582 | 2024-05-05T20:58:21.883972
443 / tcp

nginx1.20.0

1102849523 | 2024-04-26T17:27:35.300863
5050 / tcp

1102849523 | 2024-04-28T20:40:37.490394
8000 / tcp

AWS ELB2.0

1102849523 | 2024-05-01T15:23:06.172043
8200 / tcp

293410365 | 2024-05-01T03:51:51.543604
9000 / tcp

AWS ELB2.0

782136286 | 2024-04-29T04:07:19.074653
9100 / tcp

Products

Pricing

Contact Us

18.197.41.136

Last Seen: 2024-05-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1364397582 | 2024-05-09T18:42:37.063929 80 / tcp

nginx1.20.0

1364397582 | 2024-05-05T20:58:21.883972 443 / tcp

nginx1.20.0

1102849523 | 2024-04-26T17:27:35.300863 5050 / tcp

1102849523 | 2024-04-28T20:40:37.490394 8000 / tcp

AWS ELB2.0

1102849523 | 2024-05-01T15:23:06.172043 8200 / tcp

293410365 | 2024-05-01T03:51:51.543604 9000 / tcp

AWS ELB2.0

782136286 | 2024-04-29T04:07:19.074653 9100 / tcp

Products

Pricing

Contact Us

1364397582 | 2024-05-09T18:42:37.063929
80 / tcp

1364397582 | 2024-05-05T20:58:21.883972
443 / tcp

1102849523 | 2024-04-26T17:27:35.300863
5050 / tcp

1102849523 | 2024-04-28T20:40:37.490394
8000 / tcp

1102849523 | 2024-05-01T15:23:06.172043
8200 / tcp

293410365 | 2024-05-01T03:51:51.543604
9000 / tcp

782136286 | 2024-04-29T04:07:19.074653
9100 / tcp