| Hostnames |
msk11.citrus-web.ru s547722.srvape.com |
| Domains | citrus-web.ru srvape.com |
| Country | Russian Federation |
| City | Moscow |
| Organization | SmartApe OU |
| ISP | LLC Smart Ape |
| ASN | AS56694 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
| CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
-1930909781 | 2024-05-01T21:10:20.64498521 / tcp
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 1 of 50 allowed. 220-Local time is now 00:10. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity. 530 Login authentication failed 214-The following SITE commands are recognized ALIAS CHMOD IDLE UTIME 214 Pure-FTPd - http://pureftpd.org/ 211-Extensions supported: UTF8 EPRT IDLE MDTM SIZE MFMT REST STREAM MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*; MLSD PRET AUTH TLS PBSZ PROT TVFS ESTA PASV EPSV SPSV ESTP 211 End.
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:24:04:27:e6:0a:13:34:ad:5b:09:c4:d8:f7:f9:d7:2e:7c:23:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=msk11.citrus-web.ru/emailAddress=root@msk11.citrus-web.ru
Validity
Not Before: Sep 24 07:29:37 2022 GMT
Not After : Sep 21 07:29:37 2032 GMT
Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=msk11.citrus-web.ru/emailAddress=root@msk11.citrus-web.ru
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c0:9a:df:7b:f0:2e:72:6b:f2:4a:44:da:5f:69:
78:54:8f:e3:4a:8a:c5:8d:88:38:2b:45:cf:9b:df:
92:8d:68:14:ba:01:72:15:7a:51:cb:e4:c0:c7:48:
20:56:15:fa:2b:40:31:10:f8:f1:2b:9c:3a:33:33:
9d:a6:df:3b:d5:93:e2:b4:30:20:ff:34:7b:32:db:
36:ea:f0:ff:ec:c6:f5:e5:c8:3f:98:5b:12:7e:88:
d2:9a:3c:32:ba:b3:c1:54:2b:9b:21:ce:63:f0:5a:
b7:62:7b:78:59:c3:37:4f:0b:fc:f6:74:b4:5f:3f:
18:ea:66:6c:54:55:15:b9:30:19:c4:9f:1e:8c:73:
39:6f:c8:dd:93:85:3e:97:8a:d6:ca:a9:41:79:b7:
af:40:5d:c3:e5:e7:3e:05:be:bc:52:ca:7c:81:86:
a6:85:84:2d:49:c3:44:b9:4a:d7:5d:ec:3d:92:7e:
64:ad:5a:99:8d:ee:eb:f3:72:81:7e:9f:6b:28:d7:
95:5e:85:c3:ac:8e:f4:7b:be:76:35:94:72:59:d3:
87:5b:80:1d:27:1e:82:7e:21:98:6c:63:9d:38:63:
a8:93:c3:34:97:f7:7b:ce:48:66:c0:5d:8c:2e:2c:
55:b1:1d:5c:e1:9d:c2:8d:11:10:8b:50:6e:23:ea:
17:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:20:C6:9A:B8:36:AE:98:58:8F:57:F6:46:F3:F3:FF:E6:C7:2F:72
X509v3 Authority Key Identifier:
03:20:C6:9A:B8:36:AE:98:58:8F:57:F6:46:F3:F3:FF:E6:C7:2F:72
X509v3 Basic Constraints: critical
CA:TRUE
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
82:27:20:9f:7d:dc:69:8b:dd:50:bd:d0:c1:1a:ed:fd:24:01:
8b:8e:a0:d7:57:15:e3:6e:3c:ba:b8:24:99:90:f5:90:2d:19:
c8:48:10:c5:7d:61:82:62:28:96:fe:f4:58:3c:ba:44:d5:6f:
9f:dd:57:39:40:78:b0:22:0d:17:57:14:fa:0c:c4:60:ef:94:
38:c8:f7:35:3b:2f:d1:b9:00:94:b9:3a:f2:d2:f8:20:19:ea:
36:64:d9:73:58:14:bc:e6:65:9e:3b:b5:09:49:76:02:7b:63:
f0:da:8b:61:f1:42:0f:64:7a:fb:57:82:f9:b5:b5:47:9f:87:
cd:7c:9e:17:2c:18:f1:38:8a:cf:2e:08:d0:b4:84:90:64:c7:
6f:12:fd:89:cc:0f:78:b0:65:ff:94:6b:6d:9b:ed:e1:ed:9f:
94:4f:5c:3b:0a:15:2e:7c:d9:c3:9b:09:27:da:e8:e0:d1:56:
a6:c5:90:9f:9c:55:ce:de:9f:2e:3d:11:8d:6d:78:21:10:16:
42:1a:ea:d7:bd:f0:aa:19:3f:9e:9c:f9:4e:02:e8:eb:ff:37:
0f:02:29:7c:a9:6b:f9:d3:7f:a9:0f:ae:34:57:ae:a7:a8:17:
cd:45:57:68:f2:24:41:5b:76:eb:81:60:09:2e:34:66:82:92:
df:be:39:dc
-981094911 | 2024-04-27T04:06:45.45932522 / tcp
SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCmObFUuM1T+8LSGR0ypN7jO6vzTH8nZaGuPO9x8/V9ilFm C1buWSvyVNFxhtGcMxsEERismXAa6mCd+CaVi55H+3FPdVyRcVovsfd9Q8Mpb0snAzmCfKR1Ti4Q L3K09I8C9mM+fg2KtHjuaLVl63smlnaW8JxHFD7EaZLUs4TNzFpE3rGZz6sug/FHgVi8N6Dspupn duuKlxEItNY3pYDQRof03dCj+ApDro7O+dMIjxMKc1MAEg0/Q2OghEz+mbM3Lzo7TE5B2i1wIDxh UCmF7T5d8cpucdBNj0J8oR/CoXpciVfEM4O/3t2HHjRxMwNpdNuUWqXrPqoaQ9dg3GIB/J4x4cFE TB8O07mC0Uwexj5EEv0liNvjn23eEBxqqUt8Ro6ogFgR68yCyY5Z20YWJa3T2xP3RYHNS7WAMGMt eMXVPsKT8+hikxj99VfimIC0nxLba+0VyBaAwWzmnhfivUWui+mnm0oLIq+3vQSE3zIPW6x57cOA 4P4tsp576s8= Fingerprint: 1b:b6:92:4f:64:e4:ea:d5:a3:4b:5a:84:80:0f:fe:e5 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
-1069339810 | 2024-05-03T14:39:24.38904325 / tcp
220 msk11.citrus-web.ru ESMTP Postfix (Debian/GNU) 250-msk11.citrus-web.ru 250-PIPELINING 250-SIZE 10240000 250-VRFY 250-ETRN 250-STARTTLS 250-ENHANCEDSTATUSCODES 250-8BITMIME 250-DSN 250 CHUNKING
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:e4:3e:a4:1b:50:0e:af:af:f7:eb:13:74:8d:38:6c:9e:64:e6:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=s547722.srvape.com
Validity
Not Before: Sep 19 13:11:16 2022 GMT
Not After : Sep 16 13:11:16 2032 GMT
Subject: CN=s547722.srvape.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:f5:ef:06:a7:41:5b:47:00:b5:6d:9f:00:e8:64:
1a:df:95:f3:60:79:91:81:db:17:97:9a:96:a2:3b:
d7:9b:ca:b0:fb:3c:81:e5:fe:e0:96:61:0f:d8:a6:
92:85:f3:a5:ea:d0:39:13:03:54:9b:2b:98:e6:ff:
36:25:b8:f6:0d:96:f9:d5:e6:a7:51:79:e1:93:a4:
b4:2b:8a:fd:5f:ae:0a:01:2f:23:dd:cf:70:ee:3e:
c4:74:68:29:ed:7e:eb:7e:2e:a9:f3:c8:90:c4:59:
cc:76:8a:db:16:d7:a7:52:66:38:0b:08:3e:f2:a4:
77:bb:22:4d:4f:83:37:25:bc:dc:97:e9:94:92:dc:
1a:aa:c0:09:1b:6c:71:10:42:71:5b:da:cd:84:6d:
cf:85:1b:d5:8e:a9:17:25:68:84:56:2a:c9:3a:b1:
6c:11:3d:fc:ba:3a:29:13:0a:64:df:66:30:b5:e4:
84:2b:8a:83:9c:0f:78:2a:fb:b4:65:63:86:3a:78:
d6:a9:11:9e:90:70:4b:09:16:cd:2a:4e:28:3d:1b:
6e:7c:9a:12:5e:d8:2a:dc:6e:0a:5d:7b:80:3d:f3:
6b:f5:0b:43:1e:fe:c1:07:0e:eb:f1:c7:c6:2a:d0:
b2:08:0b:67:54:32:31:b2:27:e4:86:07:0d:36:43:
98:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
X509v3 Subject Alternative Name:
DNS:s547722.srvape.com
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
ea:30:22:ac:49:c4:5c:bb:c0:bf:d3:f4:93:17:11:f8:fe:af:
9e:14:cc:70:5f:13:54:ca:e5:b8:14:d2:f7:f3:1c:ba:69:dc:
7a:10:26:1a:7a:eb:5d:63:b1:e3:ed:e1:b4:da:2a:95:9b:f4:
5b:c2:5b:d1:02:2f:88:b8:ad:19:c0:62:2d:fe:7c:7a:c1:ac:
0b:7e:6f:a8:f6:d3:b2:7b:25:4b:71:db:36:5e:59:66:14:09:
74:e9:b1:67:d9:84:d0:17:e3:b9:9a:a6:6b:47:2a:3e:14:17:
08:f4:d0:4d:15:14:7b:95:c2:73:1d:0f:ef:ca:a7:c5:4f:f4:
88:1c:b9:5f:23:19:fc:2d:a0:ef:1a:13:de:14:b8:84:bd:46:
06:f0:c0:9c:3e:59:dd:f2:8b:a1:26:dd:fa:70:59:b4:ee:b3:
3d:3f:cc:2c:eb:1c:cc:1a:09:9a:a8:75:44:0c:18:a8:c4:a5:
3d:65:29:d1:db:3d:df:40:38:d8:fc:40:ae:d6:e8:ed:f0:b9:
86:20:9b:fb:69:75:77:5c:ba:b4:95:22:1d:40:d9:05:34:dd:
9d:35:87:a1:24:82:c2:29:42:6d:69:76:1a:81:88:1a:cc:8a:
84:22:f6:f3:d3:9a:c3:23:39:2a:3e:c2:58:02:fd:41:81:e5:
fe:e7:95:e5
1228742002 | 2024-04-20T08:20:34.61542253 / tcp
PowerDNS Authoritative Server 4.4.1 Resolver ID: msk11
1228742002 | 2024-05-01T05:12:37.50780253 / udp
PowerDNS Authoritative Server 4.4.1 Resolver ID: msk11
-1717355449 | 2024-04-30T13:56:00.75007780 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Tue, 30 Apr 2024 13:56:00 GMT Content-Type: text/html Content-Length: 12103 Last-Modified: Sat, 29 Oct 2022 17:26:35 GMT Connection: keep-alive ETag: "635d624b-2f47" Accept-Ranges: bytes
1332778667 | 2024-05-02T04:05:06.226950123 / udp
NTP protocolversion: 3 stratum: 2 leap: 0 precision: -24 rootdelay: 0.00190734863281 rootdisp: 0.0397338867188 refid: 3267274753 reftime: 3923609938.36 poll: 3
-1717355449 | 2024-05-02T15:39:24.566702443 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 Date: Thu, 02 May 2024 15:39:24 GMT Content-Type: text/html Content-Length: 12103 Last-Modified: Sat, 29 Oct 2022 17:26:35 GMT Connection: keep-alive ETag: "635d624b-2f47" Accept-Ranges: bytes
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:60:68:90:70:1d:49:22:bb:31:1a:15:02:25:4f:db:0b:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 21 23:53:11 2024 GMT
Not After : Jul 20 23:53:10 2024 GMT
Subject: CN=msk11.citrus-web.ru
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:cd:20:70:2a:dc:ec:f2:11:42:ae:cc:ed:f0:01:
fc:6e:c3:a1:a5:9d:f5:23:52:3e:76:19:1e:f2:a2:
65:fb:be:ef:87:68:51:d1:fd:cb:31:2e:83:65:b7:
25:f8:f6:34:7a:84:e7:a3:75:72:41:5c:50:25:e9:
cb:a9:2b:15:b8:5b:09:28:31:fd:f9:3e:96:66:57:
d1:5b:58:81:f4:2e:ae:32:eb:ea:72:7e:ac:9a:de:
4b:48:4c:c8:e5:00:da:63:35:5d:6a:08:81:fb:d6:
03:e5:4b:7c:7e:1d:b7:f8:f7:c5:40:9c:b7:df:be:
99:49:26:f1:27:b6:3e:20:7d:22:ef:0a:86:60:c9:
07:d8:46:3c:e7:33:c5:e2:15:1d:79:8c:b6:c6:be:
ba:53:4d:c0:3f:09:7c:49:aa:90:fb:75:be:be:83:
3f:ea:26:1b:7b:f7:d2:06:19:a9:25:3b:c3:72:a9:
4a:2d:10:67:de:b1:91:ce:94:2e:bd:5d:ee:16:4f:
cd:6e:8b:a6:0e:77:f4:ea:14:91:5d:2c:0f:aa:20:
e6:bc:55:f4:c3:8b:84:0c:87:17:5e:0d:c3:46:a4:
57:30:97:ab:2e:ae:47:0b:2c:7d:0f:be:c7:9b:d1:
57:50:f8:40:b4:17:9b:1c:75:c2:b6:c4:cd:c2:6b:
f7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
90:2F:2F:F3:63:14:53:67:D7:FA:15:1E:37:14:D7:A1:F6:47:FA:6F
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:msk11.citrus-web.ru
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Apr 22 00:53:12.107 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:87:14:3C:66:95:7C:30:1F:85:CD:D6:
9D:42:E7:57:A6:6F:E5:FF:C8:64:F2:5F:B1:DE:EE:E8:
AF:FA:51:65:1E:02:21:00:E8:8B:E5:0E:2D:15:4F:43:
B0:3B:B4:61:DA:C4:D2:03:3A:59:78:10:6E:A4:2B:EC:
9E:AF:4D:08:DE:29:4D:11
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Apr 22 00:53:12.098 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:C5:B4:D0:60:5E:5B:DC:9E:51:B9:97:
B6:4C:43:E0:46:FA:18:80:AB:A1:03:6A:03:87:1F:A6:
49:35:01:F6:74:02:20:5B:A4:85:4E:92:43:80:C7:8F:
99:F4:33:08:BC:87:0F:F3:6B:27:C8:D9:7E:3B:71:FC:
05:17:4F:08:A3:3D:D3
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
26:55:67:b5:83:4d:0e:1d:1f:96:a5:8f:7a:92:43:32:81:c8:
0a:02:50:7f:bc:aa:88:73:2a:6d:bc:04:84:a0:fd:50:09:aa:
7f:dc:1d:9e:0e:9b:41:f7:f7:96:92:3c:c4:40:07:07:30:fb:
18:c4:9d:cb:67:df:c8:4d:0d:65:d9:d1:09:81:db:e0:40:5e:
84:29:19:ee:94:ee:47:e4:49:a6:d7:c1:03:10:d2:48:99:cd:
44:13:80:14:b2:60:c3:33:e3:f4:13:e8:a4:e6:c8:58:01:66:
9f:b5:62:06:c4:61:10:78:ed:ed:90:e6:99:4d:d3:13:13:34:
97:b8:a6:98:65:c5:80:f1:69:3b:0f:ed:7d:8a:b6:d2:56:32:
74:dd:5a:71:22:53:4b:a0:0b:4c:c6:6d:39:f3:95:30:75:f9:
7e:34:20:aa:f4:d6:2f:af:25:71:6c:0d:73:a2:81:5a:17:9e:
40:21:8e:f6:b2:1c:52:d5:2a:f0:ef:17:ad:1b:7b:7d:9c:23:
36:1c:3c:bc:20:46:74:d4:11:f7:0f:11:bd:34:7c:1c:d8:f7:
52:fa:4a:bc:d4:bd:f2:fc:47:de:00:ea:c0:e7:bb:11:5a:06:
71:d9:7f:de:22:fd:e1:24:76:7b:c2:ea:25:93:6f:2a:63:ce:
04:3c:79:27
-981094911 | 2024-04-30T01:53:07.1314022222 / tcp
SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCmObFUuM1T+8LSGR0ypN7jO6vzTH8nZaGuPO9x8/V9ilFm C1buWSvyVNFxhtGcMxsEERismXAa6mCd+CaVi55H+3FPdVyRcVovsfd9Q8Mpb0snAzmCfKR1Ti4Q L3K09I8C9mM+fg2KtHjuaLVl63smlnaW8JxHFD7EaZLUs4TNzFpE3rGZz6sug/FHgVi8N6Dspupn duuKlxEItNY3pYDQRof03dCj+ApDro7O+dMIjxMKc1MAEg0/Q2OghEz+mbM3Lzo7TE5B2i1wIDxh UCmF7T5d8cpucdBNj0J8oR/CoXpciVfEM4O/3t2HHjRxMwNpdNuUWqXrPqoaQ9dg3GIB/J4x4cFE TB8O07mC0Uwexj5EEv0liNvjn23eEBxqqUt8Ro6ogFgR68yCyY5Z20YWJa3T2xP3RYHNS7WAMGMt eMXVPsKT8+hikxj99VfimIC0nxLba+0VyBaAwWzmnhfivUWui+mnm0oLIq+3vQSE3zIPW6x57cOA 4P4tsp576s8= Fingerprint: 1b:b6:92:4f:64:e4:ea:d5:a3:4b:5a:84:80:0f:fe:e5 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com