GeneralInformation

Hostnames	api.dgbanksoft.com
Domains	dgbanksoft.com
Country	Iran, Islamic Republic of
City	Shiraz
Organization	Mizban Amvaj Sahel Sepehr Bushehr PJSC
ISP	Hostiran Network
ASN	AS59441

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-29552	The Service Location Protocol (SLP, RFC 2608) allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor.
CVE-2022-31681	VMware ESXi contains a null-pointer deference vulnerability. A malicious actor with privileges within the VMX process only, may create a denial of service condition on the host.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2017-5753	4.7Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2016-5330	4.4Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 through 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Player 12.1.x before 12.1.1, and VMware Fusion 8.1.x before 8.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
CVE-2014-0160	5.0The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.

OpenPorts

80 443 7443

-2031516481 | 2024-04-30T19:51:40.187639

80 / tcp

HTTP/1.1 302 
Server: nginx/1.20.1
Date: Tue, 30 Apr 2024 19:51:31 GMT
Content-Length: 0
Connection: keep-alive
X-AREQUESTID: @QOUL4Lx951x393x0
X-ASEN: SEN-L14955517
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache
Cache-Control: no-store
Location: http://bitbucket.behsatec.ir/dashboard
Content-Language: en-US

-55179945 | 2024-04-24T10:40:20.611787

443 / tcp

HTTP/1.1 502 Bad Gateway
Server: nginx/1.20.1
Date: Wed, 24 Apr 2024 10:39:35 GMT
Content-Type: text/html
Content-Length: 3693
Connection: keep-alive
ETag: "616e0979-e6d"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:26:42:9e:36:65:64:85:03:75:98:71:da:fa:f2:c0:b2:c8
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jul  9 05:10:42 2022 GMT
            Not After : Oct  7 05:10:41 2022 GMT
        Subject: CN=api.dgbanksoft.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b3:2b:0e:d8:34:52:50:19:60:f5:7f:63:da:3f:
                    15:07:0a:d4:f1:0b:48:b0:d2:ac:7b:02:ef:f4:10:
                    47:2a:f1:a6:01:79:77:13:f5:ca:87:2f:8b:09:7b:
                    b3:7a:31:98:88:11:22:98:5c:40:d5:02:ed:a9:2f:
                    fb:b0:16:45:2b:d6:1c:bd:fc:22:91:10:58:55:4c:
                    f1:db:7a:fe:14:8a:d4:53:1a:34:28:8e:c2:4f:9d:
                    b8:c9:57:32:e3:e6:ba:9b:2c:1f:9b:ca:2c:5a:16:
                    db:c7:81:98:e2:e8:92:8c:fa:92:d6:bd:97:e7:16:
                    81:03:4d:66:8b:01:6d:15:63:ec:cc:af:dc:db:57:
                    7a:a0:8e:fb:bc:64:76:cc:01:84:51:cf:a4:8b:80:
                    0a:53:25:b9:ab:1f:88:f4:6b:b1:c2:ed:b7:e8:16:
                    07:3f:1f:38:37:e3:f2:d2:46:59:fd:b4:30:c1:a7:
                    c1:3c:c2:d7:3c:3d:b1:4c:76:d1:ba:d5:94:d9:54:
                    b1:9b:32:d1:c4:ec:ed:ec:0c:85:47:8a:28:4d:90:
                    60:34:da:2b:bd:af:e4:f9:d5:8d:8e:b9:92:66:5d:
                    7e:19:e2:80:ad:e6:4d:20:d4:43:45:65:b3:21:ea:
                    db:f2:32:21:ac:9c:6b:ce:8e:38:c9:9a:76:46:31:
                    2f:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                D6:FD:DC:31:4C:83:8A:C3:D6:52:1F:47:11:6C:FB:C1:3C:75:19:1B
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.dgbanksoft.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
                                EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
                    Timestamp : Jul  9 06:10:42.550 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:75:0B:91:A3:CC:4A:2C:D6:78:36:B9:DA:
                                91:2F:CA:79:1A:E6:AD:15:A7:21:82:2D:95:E1:1B:81:
                                00:80:1C:06:02:20:0A:A5:B5:7D:8B:88:54:F1:F0:D5:
                                53:80:7E:9F:C9:15:28:48:95:56:EF:F0:FB:C6:61:60:
                                85:6F:46:54:AD:CA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
                                11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
                    Timestamp : Jul  9 06:10:42.581 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E8:83:68:0C:06:18:33:7D:7C:64:52:
                                2B:61:2F:25:EC:AF:4B:6E:51:7E:7F:52:69:C1:7C:BF:
                                9E:9C:C3:71:8D:02:21:00:84:F6:0F:8E:B3:A9:E1:4D:
                                42:A8:7A:F2:46:E0:F3:AD:4E:01:2D:43:F1:EB:F2:7D:
                                E4:C8:F2:69:20:90:8D:C1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        69:bb:a8:cb:b8:a7:f5:e6:bd:ad:f4:0d:8e:69:a9:de:d0:84:
        d5:75:ac:16:2e:4d:0c:e1:e4:71:5e:1c:3f:37:d7:cf:c7:ec:
        83:57:49:db:79:10:f8:f3:1d:9b:40:1b:8b:9f:3a:77:6a:d0:
        63:7a:dd:44:0a:fe:2c:55:75:4c:a1:3e:88:a4:3e:ff:45:0d:
        ac:3d:6d:b0:e2:f8:6b:09:d8:f7:6f:b3:93:3e:88:c8:7f:ac:
        65:76:43:f8:d8:f5:aa:8c:c1:00:0a:13:a8:7b:f2:12:92:ad:
        5a:2a:78:27:f2:db:81:26:0b:c8:8f:f4:4d:90:45:5e:f5:38:
        90:ae:32:83:70:e2:36:e9:f3:b3:d8:ff:53:f9:47:52:30:b8:
        7b:2d:f9:fe:94:09:41:65:1c:9b:35:5d:74:b3:93:5d:c7:1f:
        97:f3:5a:08:de:dd:61:b4:f0:25:77:8d:88:b5:e9:73:70:bf:
        6a:a6:d9:96:b9:06:2e:7b:52:1e:e4:fd:f8:dd:8c:17:e9:ee:
        bd:e0:2f:e0:e2:78:8f:34:dd:45:58:d8:a3:1b:6c:6f:1f:c6:
        d6:d2:12:21:73:3c:81:cf:ea:b5:bb:24:c6:51:6f:fb:1d:7a:
        5e:12:e8:14:d1:45:e8:85:72:b8:e9:f9:ef:44:e1:c5:67:8a:
        c1:14:1b:8e

1070047436 | 2024-04-20T04:21:40.485535

7443 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 04:20:55 GMT
Connection: Keep-Alive
Content-Type: text/html
Content-Length: 5157


VMware ESXi:
  Full Name: VMware ESXi 5.5.0 build-1331820
  Name: VMware ESXi
  Version: 5.5.0
  Build: 1331820
  OS Type: vmnix-x86
  Product Line Id: embeddedEsx
  Vendor: VMware, Inc.
  API Type: HostAgent
  API Version: 5.5
  Locale Build: 000
  Locale Version: INTL
  Alternate Names:
    ESXi 5.5 GA
  Release Date: 2013-09-22T00:00:00

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 116431609217141 (0x69e4d8b54075)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: O=VMware Installer
        Validity
            Not Before: Mar 16 20:35:16 2013 GMT
            Not After : Sep 14 20:35:16 2024 GMT
        Subject: C=US, ST=California, L=Palo Alto, O=VMware, Inc, OU=VMware ESX Server Default Certificate/emailAddress=ssl-certificates@vmware.com, CN=localhost.localdomain/unstructuredName=1363466115,564d7761726520496e632e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f2:6d:68:ec:d9:91:1f:d1:4a:73:a3:a0:34:fc:
                    29:42:68:de:e7:74:5a:08:33:2d:63:21:3b:d3:26:
                    a9:2a:0f:c5:35:1c:d7:59:f7:cd:e8:a0:ab:ed:0b:
                    00:66:eb:a5:30:c3:b1:28:4d:9a:39:3e:6d:a5:60:
                    d2:7a:ee:5b:c4:2f:83:53:14:40:fa:57:6e:d2:1c:
                    e2:1a:b1:16:6b:e7:b8:e1:1d:9b:9a:c2:0d:b1:7c:
                    4d:f1:a4:d1:e7:68:61:60:ac:88:db:40:72:13:bb:
                    c2:fd:79:42:ee:9e:ea:39:fb:fe:5e:d7:62:c3:83:
                    53:31:f8:c6:35:b0:85:27:7b:1f:36:d0:51:b0:b8:
                    d7:d5:51:95:9b:a9:f7:49:0e:32:0b:47:f0:6d:91:
                    58:9b:73:d6:31:0b:1f:0c:6d:bf:f1:97:21:5d:28:
                    9f:89:92:b4:f6:8a:1c:de:e9:ef:62:07:3d:4f:3d:
                    13:eb:3e:24:01:19:ad:f4:2a:63:16:f2:5b:7f:fa:
                    0d:7c:88:7d:65:70:92:be:11:c0:fe:1f:25:bd:cd:
                    8c:ed:22:44:83:4b:c6:1f:f4:69:5a:44:5f:e0:80:
                    3a:99:2c:58:f5:f9:2d:2a:4e:57:12:16:71:c6:23:
                    dd:59:fd:24:10:e7:9f:27:ee:52:86:59:8f:31:32:
                    2f:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Key Usage: 
                Digital Signature, Key Encipherment, Data Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name: 
                DNS:localhost.localdomain
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        24:71:ee:bd:5f:13:c2:23:09:44:7a:bb:e7:37:b6:08:6a:41:
        af:b4:9f:01:cb:f7:05:5b:21:11:ab:ca:80:06:26:81:ac:16:
        ee:53:09:62:3e:4a:a4:12:d5:2a:f4:c6:d0:d3:91:22:b0:8e:
        bc:b3:11:18:a7:b9:d3:c9:45:88:46:85:56:dd:6d:e8:e7:ae:
        3c:98:7d:f1:34:0e:9c:96:69:74:76:4f:a1:65:3d:cb:bf:72:
        43:82:5d:fa:cb:1e:cd:ef:2e:d4:aa:60:8d:3b:b8:8d:da:a2:
        de:c8:0e:9e:83:68:8b:ce:f6:8c:ec:57:a4:46:59:b5:0e:68:
        ce:c4:32:a8:8c:ee:eb:81:fa:f1:a8:68:7b:a6:54:90:02:42:
        dd:53:cc:c0:47:40:34:34:60:df:d8:8a:95:8f:6a:d8:ab:64:
        f0:15:5a:35:96:65:94:53:08:3b:05:bf:20:33:57:06:93:8f:
        39:8b:a2:04:30:9f:c6:27:c5:10:ec:4c:0b:31:a7:3b:b1:d7:
        19:92:76:55:52:37:08:65:bd:56:f6:8f:c5:8e:32:47:27:f5:
        51:96:f3:d3:f8:c2:db:7a:12:ad:c7:74:b6:40:15:f9:72:87:
        97:0e:f7:a7:1b:83:65:25:62:57:b6:be:01:dd:87:2e:7c:91:
        b3:1d:4d:cf

185.165.29.232

Last Seen: 2024-04-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2031516481 | 2024-04-30T19:51:40.187639
80 / tcp

nginx1.20.1

-55179945 | 2024-04-24T10:40:20.611787
443 / tcp

nginx1.20.1

1070047436 | 2024-04-20T04:21:40.485535
7443 / tcp

VMware ESXi5.5.0

Products

Pricing

Contact Us

185.165.29.232

Last Seen: 2024-04-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2031516481 | 2024-04-30T19:51:40.187639 80 / tcp

nginx1.20.1

-55179945 | 2024-04-24T10:40:20.611787 443 / tcp

nginx1.20.1

1070047436 | 2024-04-20T04:21:40.485535 7443 / tcp

VMware ESXi5.5.0

Products

Pricing

Contact Us

-2031516481 | 2024-04-30T19:51:40.187639
80 / tcp

-55179945 | 2024-04-24T10:40:20.611787
443 / tcp

1070047436 | 2024-04-20T04:21:40.485535
7443 / tcp