GeneralInformation

Hostnames	244.232.169.192.host.secureserver.net ip-192-169-232-244.secureserver.net viajachiapas.com www.viajachiapas.com
Domains	secureserver.net viajachiapas.com
Country	United States
City	Phoenix
Organization	GoDaddy.com, LLC
ISP	GoDaddy.com, LLC
ASN	AS398101

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2024-0727	Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack Impact summary: Applications loading files in the PKCS12 format from untrusted sources might terminate abruptly. A file in PKCS12 format can contain certificates and keys and may come from an untrusted source. The PKCS12 specification allows certain fields to be NULL, but OpenSSL does not correctly check for this case. This can lead to a NULL pointer dereference that results in OpenSSL crashing. If an application processes PKCS12 files from an untrusted source using the OpenSSL APIs then that application will be vulnerable to this issue. OpenSSL APIs that are vulnerable to this are: PKCS12_parse(), PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() and PKCS12_newpass(). We have also fixed a similar issue in SMIME_write_PKCS7(). However since this function is related to writing data we do not consider it security significant. The FIPS modules in 3.2, 3.1 and 3.0 are not affected by this issue.
CVE-2023-5678	Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. While DH_check() performs all the necessary checks (as of CVE-2023-3817), DH_check_pub_key() doesn't make any of these checks, and is therefore vulnerable for excessively large P and Q parameters. Likewise, while DH_generate_key() performs a check for an excessively large P, it doesn't check for an excessively large Q. An application that calls DH_generate_key() or DH_check_pub_key() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. DH_generate_key() and DH_check_pub_key() are also called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_pub_key_ex(), EVP_PKEY_public_check(), and EVP_PKEY_generate(). Also vulnerable are the OpenSSL pkey command line application when using the "-pubcheck" option, as well as the OpenSSL genpkey command line application. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.
CVE-2023-51767	7.0OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.
CVE-2023-51766	Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.
CVE-2023-51385	6.5In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
CVE-2023-51384	5.5In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.
CVE-2023-48795	5.9The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.
CVE-2023-4807	Issue summary: The POLY1305 MAC (message authentication code) implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X86_64 processors supporting the AVX512-IFMA instructions. Impact summary: If in an application that uses the OpenSSL library an attacker can influence whether the POLY1305 MAC algorithm is used, the application state might be corrupted with various application dependent consequences. The POLY1305 MAC (message authentication code) implementation in OpenSSL does not save the contents of non-volatile XMM registers on Windows 64 platform when calculating the MAC of data larger than 64 bytes. Before returning to the caller all the XMM registers are set to zero rather than restoring their previous content. The vulnerable code is used only on newer x86_64 processors supporting the AVX512-IFMA instructions. The consequences of this kind of internal application state corruption can be various - from no consequences, if the calling application does not depend on the contents of non-volatile XMM registers at all, to the worst consequences, where the attacker could get complete control of the application process. However given the contents of the registers are just zeroized so the attacker cannot put arbitrary values inside, the most likely consequence, if any, would be an incorrect result of some application dependent calculations or a crash leading to a denial of service. The POLY1305 MAC algorithm is most frequently used as part of the CHACHA20-POLY1305 AEAD (authenticated encryption with associated data) algorithm. The most common usage of this AEAD cipher is with TLS protocol versions 1.2 and 1.3 and a malicious client can influence whether this AEAD cipher is used by the server. This implies that server applications using OpenSSL can be potentially impacted. However we are currently not aware of any concrete application that would be affected by this issue therefore we consider this a Low severity security issue. As a workaround the AVX512-IFMA instructions support can be disabled at runtime by setting the environment variable OPENSSL_ia32cap: OPENSSL_ia32cap=:~0x200000 The FIPS provider is not affected by this issue.
CVE-2023-45802	When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection close. A client could send new requests and resets, keeping the connection busy and open and causing the memory footprint to keep on growing. On connection close, all resources were reclaimed, but the process might run out of memory before that. This was found by the reporter during testing of CVE-2023-44487 (HTTP/2 Rapid Reset Exploit) with their own test client. During "normal" HTTP/2 use, the probability to hit this bug is very low. The kept memory would not become noticeable before the connection closes or times out. Users are recommended to upgrade to version 2.4.58, which fixes the issue.
CVE-2023-38408	9.8The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.
CVE-2023-3817	Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. The function DH_check() performs various checks on DH parameters. After fixing CVE-2023-3446 it was discovered that a large q parameter value can also trigger an overly long computation during some of these checks. A correct q value, if present, cannot be larger than the modulus p parameter, thus it is unnecessary to perform these checks if q is larger than p. An application that calls DH_check() and supplies a key or parameters obtained from an untrusted source could be vulnerable to a Denial of Service attack. The function DH_check() is itself called by a number of other OpenSSL functions. An application calling any of those other functions may similarly be affected. The other functions affected by this are DH_check_ex() and EVP_PKEY_param_check(). Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications when using the "-check" option. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.
CVE-2023-31122	Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57.
CVE-2023-27522	HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client.
CVE-2023-2650	Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary: Applications that use OBJ_obj2txt() directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience notable to very long delays when processing those messages, which may lead to a Denial of Service. An OBJECT IDENTIFIER is composed of a series of numbers - sub-identifiers - most of which have no size limit. OBJ_obj2txt() may be used to translate an ASN.1 OBJECT IDENTIFIER given in DER encoding form (using the OpenSSL type ASN1_OBJECT) to its canonical numeric text form, which are the sub-identifiers of the OBJECT IDENTIFIER in decimal form, separated by periods. When one of the sub-identifiers in the OBJECT IDENTIFIER is very large (these are sizes that are seen as absurdly large, taking up tens or hundreds of KiBs), the translation to a decimal number in text may take a very long time. The time complexity is O(n^2) with 'n' being the size of the sub-identifiers in bytes (*). With OpenSSL 3.0, support to fetch cryptographic algorithms using names / identifiers in string form was introduced. This includes using OBJECT IDENTIFIERs in canonical numeric text form as identifiers for fetching algorithms. Such OBJECT IDENTIFIERs may be received through the ASN.1 structure AlgorithmIdentifier, which is commonly used in multiple protocols to specify what cryptographic algorithm should be used to sign or verify, encrypt or decrypt, or digest passed data. Applications that call OBJ_obj2txt() directly with untrusted data are affected, with any version of OpenSSL. If the use is for the mere purpose of display, the severity is considered low. In OpenSSL 3.0 and newer, this affects the subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS. It also impacts anything that processes X.509 certificates, including simple things like verifying its signature. The impact on TLS is relatively low, because all versions of OpenSSL have a 100KiB limit on the peer's certificate chain. Additionally, this only impacts clients, or servers that have explicitly enabled client authentication. In OpenSSL 1.1.1 and 1.0.2, this only affects displaying diverse objects, such as X.509 certificates. This is assumed to not happen in such a way that it would cause a Denial of Service, so these versions are considered not affected by this issue in such a way that it would be cause for concern, and the severity is therefore considered low.
CVE-2023-25690	Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack. Configurations are affected when mod_proxy is enabled along with some form of RewriteRule or ProxyPassMatch in which a non-specific pattern matches some portion of the user-supplied request-target (URL) data and is then re-inserted into the proxied request-target using variable substitution. For example, something like: RewriteEngine on RewriteRule "^/here/(.*)" "http://example.com:8080/elsewhere?$1"; [P] ProxyPassReverse /here/ http://example.com:8080/ Request splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.
CVE-2023-0466	The function X509_VERIFY_PARAM_add0_policy() is documented to implicitly enable the certificate policy check when doing certificate verification. However the implementation of the function does not enable the check which allows certificates with invalid or incorrect policies to pass the certificate verification. As suddenly enabling the policy check could break existing deployments it was decided to keep the existing behavior of the X509_VERIFY_PARAM_add0_policy() function. Instead the applications that require OpenSSL to perform certificate policy check need to use X509_VERIFY_PARAM_set1_policies() or explicitly enable the policy check by calling X509_VERIFY_PARAM_set_flags() with the X509_V_FLAG_POLICY_CHECK flag argument. Certificate policy checks are disabled by default in OpenSSL and are not commonly used by applications.
CVE-2023-0465	Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that certificate. A malicious CA could use this to deliberately assert invalid certificate policies in order to circumvent policy checking on the certificate altogether. Policy processing is disabled by default but can be enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()' function.
CVE-2023-0464	A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems. Policy processing is disabled by default but can be enabled by passing the `-policy' argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()' function.
CVE-2023-0286	There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1_STRING but the public structure definition for GENERAL_NAME incorrectly specified the type of the x400Address field as ASN1_TYPE. This field is subsequently interpreted by the OpenSSL function GENERAL_NAME_cmp as an ASN1_TYPE rather than an ASN1_STRING. When CRL checking is enabled (i.e. the application sets the X509_V_FLAG_CRL_CHECK flag), this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call, enabling them to read memory contents or enact a denial of service. In most cases, the attack requires the attacker to provide both the certificate chain and CRL, neither of which need to have a valid signature. If the attacker only controls one of these inputs, the other input must already contain an X.400 address as a CRL distribution point, which is uncommon. As such, this vulnerability is most likely to only affect applications which have implemented their own functionality for retrieving CRLs over a network.
CVE-2023-0215	The public API function BIO_new_NDEF is a helper function used for streaming ASN.1 data via a BIO. It is primarily used internally to OpenSSL to support the SMIME, CMS and PKCS7 streaming capabilities, but may also be called directly by end user applications. The function receives a BIO from the caller, prepends a new BIO_f_asn1 filter BIO onto the front of it to form a BIO chain, and then returns the new head of the BIO chain to the caller. Under certain conditions, for example if a CMS recipient public key is invalid, the new filter BIO is freed and the function returns a NULL result indicating a failure. However, in this case, the BIO chain is not properly cleaned up and the BIO passed by the caller still retains internal pointers to the previously freed filter BIO. If the caller then goes on to call BIO_pop() on the BIO then a use-after-free will occur. This will most likely result in a crash. This scenario occurs directly in the internal function B64_write_ASN1() which may cause BIO_new_NDEF() to be called and will subsequently call BIO_pop() on the BIO. This internal function is in turn called by the public API functions PEM_write_bio_ASN1_stream, PEM_write_bio_CMS_stream, PEM_write_bio_PKCS7_stream, SMIME_write_ASN1, SMIME_write_CMS and SMIME_write_PKCS7. Other public API functions that may be impacted by this include i2d_ASN1_bio_stream, BIO_new_CMS, BIO_new_PKCS7, i2d_CMS_bio_stream and i2d_PKCS7_bio_stream. The OpenSSL cms and smime command line applications are similarly affected.
CVE-2022-4450	The function PEM_read_bio_ex() reads a PEM file from a BIO and parses and decodes the "name" (e.g. "CERTIFICATE"), any header data and the payload data. If the function succeeds then the "name_out", "header" and "data" arguments are populated with pointers to buffers containing the relevant decoded data. The caller is responsible for freeing those buffers. It is possible to construct a PEM file that results in 0 bytes of payload data. In this case PEM_read_bio_ex() will return a failure code but will populate the header argument with a pointer to a buffer that has already been freed. If the caller also frees this buffer then a double free will occur. This will most likely lead to a crash. This could be exploited by an attacker who has the ability to supply malicious PEM files for parsing to achieve a denial of service attack. The functions PEM_read_bio() and PEM_read() are simple wrappers around PEM_read_bio_ex() and therefore these functions are also directly affected. These functions are also called indirectly by a number of other OpenSSL functions including PEM_X509_INFO_read_bio_ex() and SSL_CTX_use_serverinfo_file() which are also vulnerable. Some OpenSSL internal uses of these functions are not vulnerable because the caller does not free the header argument if PEM_read_bio_ex() returns a failure code. These locations include the PEM_read_bio_TYPE() functions as well as the decoders introduced in OpenSSL 3.0. The OpenSSL asn1parse command line application is also impacted by this issue.
CVE-2022-4304	A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages for decryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP and RSASVE. For example, in a TLS connection, RSA is commonly used by a client to send an encrypted pre-master secret to the server. An attacker that had observed a genuine connection between a client and a server could use this flaw to send trial messages to the server and record the time taken to process them. After a sufficiently large number of messages the attacker could recover the pre-master secret used for the original connection and thus be able to decrypt the application data sent over that connection.
CVE-2022-37452	Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.
CVE-2022-37451	Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc.
CVE-2022-37436	Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.
CVE-2022-36760	Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.54 and prior versions.
CVE-2022-31813	7.5Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application.
CVE-2022-30556	5.0Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer.
CVE-2022-29404	5.0In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size.
CVE-2022-28615	6.4Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in ap_strcmp_match() when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use ap_strcmp_match() may hypothetically be affected.
CVE-2022-28614	5.0The ap_rwrite() function in Apache HTTP Server 2.4.53 and earlier may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function. Modules compiled and distributed separately from Apache HTTP Server that use the 'ap_rputs' function and may pass it a very large (INT_MAX or larger) string must be compiled against current headers to resolve the issue.
CVE-2022-28330	5.0Apache HTTP Server 2.4.53 and earlier on Windows may read beyond bounds when configured to process requests with the mod_isapi module.
CVE-2022-26377	5.0Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions.
CVE-2022-23943	7.5Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to overwrite heap memory with possibly attacker provided data. This issue affects Apache HTTP Server 2.4 version 2.4.52 and prior versions.
CVE-2022-22721	5.8If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier.
CVE-2022-22720	7.5Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling
CVE-2022-22719	5.0A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier.
CVE-2022-2097	5.0AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed. Since OpenSSL does not support OCB based cipher suites for TLS and DTLS, they are both unaffected. Fixed in OpenSSL 3.0.5 (Affected 3.0.0-3.0.4). Fixed in OpenSSL 1.1.1q (Affected 1.1.1-1.1.1p).
CVE-2022-2068	10.0In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not discovered that there are other places in the script where the file names of certificates being hashed were possibly passed to a command executed through the shell. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.4 (Affected 3.0.0,3.0.1,3.0.2,3.0.3). Fixed in OpenSSL 1.1.1p (Affected 1.1.1-1.1.1o). Fixed in OpenSSL 1.0.2zf (Affected 1.0.2-1.0.2ze).
CVE-2022-1292	10.0The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n). Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd).
CVE-2022-0778	5.0The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).
CVE-2021-44790	7.5A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts). The Apache httpd team is not aware of an exploit for the vulnerabilty though it might be possible to craft one. This issue affects Apache HTTP Server 2.4.51 and earlier.
CVE-2021-44224	6.4A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery). This issue affects Apache HTTP Server 2.4.7 up to 2.4.51 (included).
CVE-2021-4160	4.3There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some of the TLS 1.3 default curves. Impact was not analyzed in detail, because the pre-requisites for attack are considered unlikely and include reusing private keys. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH private key among multiple clients, which is no longer an option since CVE-2016-0701. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0.0. It was addressed in the releases of 1.1.1m and 3.0.1 on the 15th of December 2021. For the 1.0.2 release it is addressed in git commit 6fc1aaaf3 that is available to premium support customers only. It will be made available in 1.0.2zc when it is released. The issue only affects OpenSSL on MIPS platforms. Fixed in OpenSSL 3.0.1 (Affected 3.0.0). Fixed in OpenSSL 1.1.1m (Affected 1.1.1-1.1.1l). Fixed in OpenSSL 1.0.2zc-dev (Affected 1.0.2-1.0.2zb).
CVE-2021-40438	6.8A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
CVE-2021-39275	7.5ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier.
CVE-2021-38371	5.0The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending.
CVE-2021-3712	5.8ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the "data" and "length" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the "data" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).
CVE-2021-3711	7.5In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen" parameter is populated with the buffer size required to hold the decrypted plaintext. The application can then allocate a sufficiently sized buffer and call EVP_PKEY_decrypt() again, but this time passing a non-NULL value for the "out" parameter. A bug in the implementation of the SM2 decryption code means that the calculation of the buffer size required to hold the plaintext returned by the first call to EVP_PKEY_decrypt() can be smaller than the actual size required by the second call. This can lead to a buffer overflow when EVP_PKEY_decrypt() is called by the application a second time with a buffer that is too small. A malicious attacker who is able present SM2 content for decryption to an application could cause attacker chosen data to overflow the buffer by up to a maximum of 62 bytes altering the contents of other data held after the buffer, possibly changing application behaviour or causing the application to crash. The location of the buffer is application dependent but is typically heap allocated. Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k).
CVE-2021-36368	3.7An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.
CVE-2021-36160	5.0A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48 (inclusive).
CVE-2021-34798	5.0Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.
CVE-2021-3450	5.8The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a "purpose" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named "purpose" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).
CVE-2021-3449	4.3An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).
CVE-2021-33193	5.0A crafted method sent through HTTP/2 will bypass validation and be forwarded by mod_proxy, which can lead to request splitting or cache poisoning. This issue affects Apache HTTP Server 2.4.17 to 2.4.48.
CVE-2021-32792	4.3mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, there is an XSS vulnerability in when using `OIDCPreservePost On`.
CVE-2021-32791	4.3mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, the AES GCM encryption in mod_auth_openidc uses a static IV and AAD. It is important to fix because this creates a static nonce and since aes-gcm is a stream cipher, this can lead to known cryptographic issues, since the same key is being reused. From 2.4.9 onwards this has been patched to use dynamic values through usage of cjose AES encryption routines.
CVE-2021-32786	5.8mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In versions prior to 2.4.9, `oidc_validate_redirect_url()` does not parse URLs the same way as most browsers do. As a result, this function can be bypassed and leads to an Open Redirect vulnerability in the logout functionality. This bug has been fixed in version 2.4.9 by replacing any backslash of the URL to redirect with slashes to address a particular breaking change between the different specifications (RFC2396 / RFC3986 and WHATWG). As a workaround, this vulnerability can be mitigated by configuring `mod_auth_openidc` to only allow redirection whose destination matches a given regular expression.
CVE-2021-32785	4.3mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. When mod_auth_openidc versions prior to 2.4.9 are configured to use an unencrypted Redis cache (`OIDCCacheEncrypt off`, `OIDCSessionType server-cache`, `OIDCCacheType redis`), `mod_auth_openidc` wrongly performed argument interpolation before passing Redis requests to `hiredis`, which would perform it again and lead to an uncontrolled format string bug. Initial assessment shows that this bug does not appear to allow gaining arbitrary code execution, but can reliably provoke a denial of service by repeatedly crashing the Apache workers. This bug has been corrected in version 2.4.9 by performing argument interpolation only once, using the `hiredis` API. As a workaround, this vulnerability can be mitigated by setting `OIDCCacheEncrypt` to `on`, as cache keys are cryptographically hashed before use when this option is enabled.
CVE-2021-30641	5.0Apache HTTP Server versions 2.4.39 to 2.4.46 Unexpected matching behavior with 'MergeSlashes OFF'
CVE-2021-27216	6.3Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file race condition, a local user can delete arbitrary files as root. This involves the -oP and -oPX options.
CVE-2021-26691	7.5In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow
CVE-2021-26690	5.0Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Cookie header handled by mod_session can cause a NULL pointer dereference and crash, leading to a possible Denial Of Service
CVE-2021-23841	4.3The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).
CVE-2021-23840	5.0Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).
CVE-2020-8015	7.2A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1.
CVE-2020-35452	6.8Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Digest nonce can cause a stack overflow in mod_auth_digest. There is no report of this overflow being exploitable, nor the Apache HTTP Server team could create one, though some particular compiler and/or compilation option might make it possible, with limited consequences anyway due to the size (a single byte) and the value (zero byte) of the overflow
CVE-2020-28026	9.3Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.
CVE-2020-28025	5.0Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bodyhash does not validate the relationship between sig->bodyhash.len and b->bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory.
CVE-2020-28024	7.5Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers executing arbitrary commands, because smtp_ungetc was only intended to push back characters, but can actually push back non-character error codes such as EOF.
CVE-2020-28023	5.0Exim 4 before 4.94.2 allows Out-of-bounds Read. smtp_setup_msg may disclose sensitive information from process memory to an unauthenticated SMTP client.
CVE-2020-28022	7.5Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands.
CVE-2020-28021	9.0Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code execution as root) via AUTH= in a MAIL FROM command.
CVE-2020-28019	5.0Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA.
CVE-2020-28018	7.5Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain situations that may be common for builds with OpenSSL.
CVE-2020-28017	7.5Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption.
CVE-2020-28016	7.2Exim 4 before 4.94.2 allows an off-by-two Out-of-bounds Write because "-F ''" is mishandled by parse_fix_phrase.
CVE-2020-28015	7.2Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. Local users can alter the behavior of root processes because a recipient address can have a newline character.
CVE-2020-28014	5.6Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The -oP option is available to the exim user, and allows a denial of service because root-owned files can be overwritten.
CVE-2020-28013	7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow because it mishandles "-F '.('" on the command line, and thus may allow privilege escalation from any user to root. This occurs because of the interpretation of negative sizes in strncpy.
CVE-2020-28012	7.2Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rda_interpret uses a privileged pipe that lacks a close-on-exec flag.
CVE-2020-28011	7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root.
CVE-2020-28010	7.2Exim 4 before 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small (on some common platforms).
CVE-2020-28009	7.2Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow because get_stdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. NOTE: exploitation may be impractical because of the execution time needed to overflow (multiple days).
CVE-2020-28008	7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.
CVE-2020-28007	7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem.
CVE-2020-1971	4.3The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a GENERAL_NAME to see if they are equal or not. This function behaves incorrectly when both GENERAL_NAMEs contain an EDIPARTYNAME. A NULL pointer dereference and a crash may occur leading to a possible denial of service attack. OpenSSL itself uses the GENERAL_NAME_cmp function for two purposes: 1) Comparing CRL distribution point names between an available CRL and a CRL distribution point embedded in an X509 certificate 2) When verifying that a timestamp response token signer matches the timestamp authority name (exposed via the API functions TS_RESP_verify_response and TS_RESP_verify_token) If an attacker can control both items being compared then that attacker could trigger a crash. For example if the attacker can trick a client or server into checking a malicious certificate against a malicious CRL then this may occur. Note that some applications automatically download CRLs based on a URL embedded in a certificate. This checking happens prior to the signatures on the certificate and CRL being verified. OpenSSL's s_server, s_client and verify tools have support for the "-crl_download" option which implements automatic CRL downloading and this attack has been demonstrated to work against those tools. Note that an unrelated bug means that affected versions of OpenSSL cannot parse or construct correct encodings of EDIPARTYNAME. However it is possible to construct a malformed EDIPARTYNAME that OpenSSL's parser will accept and hence trigger this attack. All OpenSSL 1.1.1 and 1.0.2 versions are affected by this issue. Other OpenSSL releases are out of support and have not been checked. Fixed in OpenSSL 1.1.1i (Affected 1.1.1-1.1.1h). Fixed in OpenSSL 1.0.2x (Affected 1.0.2-1.0.2w).
CVE-2020-15778	7.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."
CVE-2020-13950	5.0Apache HTTP Server versions 2.4.41 to 2.4.46 mod_proxy_http can be made to crash (NULL pointer dereference) with specially crafted requests using both Content-Length and Transfer-Encoding headers, leading to a Denial of Service
CVE-2020-13938	2.1Apache HTTP Server versions 2.4.0 to 2.4.46 Unprivileged local users can stop httpd on Windows
CVE-2020-12783	5.0Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c.
CVE-2019-6111	5.9An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).
CVE-2019-6110	6.8In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.
CVE-2019-6109	6.8An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
CVE-2019-17567	5.0Apache HTTP Server versions 2.4.6 to 2.4.46 mod_proxy_wstunnel configured on an URL that is not necessarily Upgraded by the origin server was tunneling the whole connection regardless, thus allowing for subsequent requests on the same connection to pass through with no HTTP validation, authentication or authorization possibly configured.
CVE-2019-0190	5.0A bug exists in the way mod_ssl handled client renegotiations. A remote attacker could send a carefully crafted request that would cause mod_ssl to enter a loop leading to a denial of service. This bug can be only triggered with Apache HTTP Server version 2.4.37 when using OpenSSL version 1.1.1 or later, due to an interaction in changes to handling of renegotiation attempts.
CVE-2018-20685	5.3In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.
CVE-2018-15473	5.3OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.
CVE-2017-15906	5.3The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
CVE-2016-3115	6.4Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.
CVE-2016-20012	5.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product
CVE-2016-1908	9.8The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.
CVE-2016-10708	7.5sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.
CVE-2016-10012	7.8The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.
CVE-2016-10011	5.5authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.
CVE-2016-10010	7.0sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.
CVE-2016-10009	7.3Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.
CVE-2016-0777	6.5The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.
CVE-2015-6564	Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.
CVE-2015-6563	The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.
CVE-2015-5600	The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.
CVE-2015-5352	The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.
CVE-2014-2653	The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
CVE-2014-2532	4.9sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.
CVE-2014-1692	The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.
CVE-2013-4365	7.5Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors.
CVE-2013-2765	5.0The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header.
CVE-2013-0942	4.3Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-0941	2.1EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft Windows use an improper encryption algorithm and a weak key for maintaining the stored data of the node secret for the SecurID Authentication API, which allows local users to obtain sensitive information via cryptographic attacks on this data.
CVE-2012-4360	4.3Cross-site scripting (XSS) vulnerability in the mod_pagespeed module 0.10.19.1 through 0.10.22.4 for the Apache HTTP Server allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2012-4001	5.0The mod_pagespeed module before 0.10.22.6 for the Apache HTTP Server does not properly verify its host name, which allows remote attackers to trigger HTTP requests to arbitrary hosts via unspecified vectors, as demonstrated by requests to intranet servers.
CVE-2012-3526	5.0The reverse proxy add forward module (mod_rpaf) 0.5 and 0.6 for the Apache HTTP Server allows remote attackers to cause a denial of service (server or application crash) via multiple X-Forwarded-For headers in a request.
CVE-2012-0814	The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.
CVE-2011-5000	The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.
CVE-2011-4327	ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
CVE-2011-2688	7.5SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field.
CVE-2011-1176	4.3The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileges by leveraging the root uid and root gid of an mpm-itk process.
CVE-2010-5107	The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.
CVE-2010-4755	The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.
CVE-2010-4478	OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.
CVE-2009-3767	4.3libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4, and possibly other versions, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
CVE-2009-3766	6.8mutt_ssl.c in mutt 1.5.16 and other versions before 1.5.19, when OpenSSL is used, does not verify the domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
CVE-2009-3765	6.8mutt_ssl.c in mutt 1.5.19 and 1.5.20, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
CVE-2009-2299	5.0The Artofdefence Hyperguard Web Application Firewall (WAF) module before 2.5.5-11635, 3.0 before 3.0.3-11636, and 3.1 before 3.1.1-11637, a module for the Apache HTTP Server, allows remote attackers to cause a denial of service (memory consumption) via an HTTP request with a large Content-Length value but no POST data.
CVE-2009-1390	6.8Mutt 1.5.19, when linked against (1) OpenSSL (mutt_ssl.c) or (2) GnuTLS (mutt_ssl_gnutls.c), allows connections when only one TLS certificate in the chain is accepted instead of verifying the entire chain, which allows remote attackers to spoof trusted servers via a man-in-the-middle attack.
CVE-2009-0796	2.6Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the Apache HTTP Server, when /perl-status is accessible, allows remote attackers to inject arbitrary web script or HTML via the URI.
CVE-2008-3844	Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.
CVE-2007-4723	7.5Directory traversal vulnerability in Ragnarok Online Control Panel 4.3.4a, when the Apache HTTP Server is used, allows remote attackers to bypass authentication via directory traversal sequences in a URI that ends with the name of a publicly available page, as demonstrated by a "/...../" sequence and an account_manage.php/login.php final component for reaching the protected account_manage.php page.
CVE-2007-2768	OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.
CVE-2006-20001	A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

OpenPorts

21 22 53 80 443 465 587 993 995 2082 2083 2086 2087 2095 2096 3306

963672017 | 2024-04-04T23:53:37.249774

21 / tcp

220 ProFTPD Server (ProFTPD Default Installation) [::ffff:192.169.232.244]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    HOST    CLNT    AUTH    CCC*    CONF*   
 ENC*    MIC*    PBSZ    PROT    TYPE    STRU    MODE    RETR    
 STOR    STOU    APPE    REST    ABOR    USER    PASS    ACCT*   
 REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@192.169.232.244
211-Features:
 AUTH TLS
 CCC
 CLNT
 EPRT
 EPSV
 HOST
 MDTM
 MFF modify;UNIX.group;UNIX.mode;
 MFMT
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
 PBSZ
 PROT
 REST STREAM
 SIZE
 SSCN
 TVFS
211 End

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1271050920 (0x4bc2b2a8)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
        Validity
            Not Before: Nov  8 07:11:30 2023 GMT
            Not After : Nov  7 07:11:30 2024 GMT
        Subject: CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:71:bb:59:8c:05:20:e3:19:02:2c:6f:bb:28:
                    3c:db:fc:a8:f9:46:e0:0f:fa:2a:2f:03:2a:f5:ca:
                    63:74:38:d5:0d:72:74:0b:5c:71:04:ff:e0:b4:93:
                    7e:a0:37:78:0a:d7:79:09:a0:40:8d:6b:bc:84:9b:
                    31:f7:31:a9:d8:8a:33:c2:1f:25:f2:55:9b:54:1d:
                    f2:27:9e:dc:a0:73:19:62:71:6a:5e:e7:90:00:ea:
                    3d:23:8a:26:6d:20:3c:12:e8:32:0f:2f:b3:27:91:
                    75:dd:2b:cd:d4:d8:c6:ec:cb:6c:5f:a5:b1:71:7a:
                    64:30:e7:de:be:6c:dd:4d:58:dd:10:d0:16:a4:e5:
                    d9:05:db:5d:8d:87:de:43:b3:2b:ef:1d:f1:22:b0:
                    57:dd:00:c9:14:e1:b3:31:e1:24:2e:25:74:1c:34:
                    b1:0f:6c:4c:38:53:46:d6:ed:71:04:cd:fc:c4:70:
                    07:11:fb:b2:22:6d:b5:9d:3b:09:49:a5:a3:c7:2f:
                    72:85:a1:e9:9a:fa:dc:0e:6a:25:d5:38:10:7f:6f:
                    85:0c:81:a9:c4:c9:b8:22:93:5f:bd:9d:b7:e2:f0:
                    5a:79:65:d2:97:d4:c1:fb:ed:c5:d0:49:ed:08:32:
                    5e:4b:e0:99:9d:7b:c0:5c:ee:c5:8e:9a:ee:4b:83:
                    e6:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                D6:D4:2D:3D:69:34:DD:DD:11:AF:7D:2B:96:41:C5:3C:58:85:21:E3
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Authority Key Identifier: 
                keyid:D6:D4:2D:3D:69:34:DD:DD:11:AF:7D:2B:96:41:C5:3C:58:85:21:E3
                DirName:/CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
                serial:4B:C2:B2:A8
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name: 
                DNS:ip-192-169-232-244.secureserver.net
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7b:52:bf:06:b4:7b:98:f6:ad:c9:b5:4c:4d:a3:6b:35:60:23:
        b7:f0:69:c9:02:18:85:87:3f:75:8a:55:6e:fb:0a:06:27:7e:
        c5:71:89:65:b4:2d:fe:df:6e:86:4d:74:58:c1:cc:b6:2b:0c:
        23:44:ed:14:b7:7c:df:ab:58:6c:e0:df:0f:d2:22:8a:ce:d1:
        60:2c:e8:9e:87:a2:13:cc:a3:66:18:0c:b3:07:ed:09:e5:16:
        60:97:96:84:be:cd:41:a2:af:91:55:9e:74:a3:47:63:84:27:
        59:4c:41:92:4e:97:7c:a3:ec:86:72:dd:5d:ad:00:36:1d:c1:
        11:a5:02:b2:b1:b7:9e:9a:db:3a:fe:f5:ff:8b:b7:7d:82:1c:
        0a:75:b3:2a:1c:99:c1:e3:70:0e:21:5c:8b:0b:55:b9:09:fc:
        96:d7:07:c0:3a:12:39:56:2e:38:49:1f:7b:30:27:e3:8c:31:
        a0:97:48:0e:c3:b9:41:6d:20:80:a4:98:56:bc:63:a2:70:03:
        30:b1:85:19:31:3e:c1:a8:b5:1b:11:b7:54:8d:a7:91:96:34:
        37:54:cc:a5:d3:ba:cc:3e:25:6e:a2:0a:25:f9:fd:ce:50:c9:
        9f:56:08:32:32:67:aa:98:b0:9e:4e:82:08:64:6f:7c:f3:9f:
        6e:d2:7f:5c

512547916 | 2024-04-16T22:28:59.586204

22 / tcp

SSH-2.0-OpenSSH_5.3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAABIwAAAQEAyKWs78Z6bxEYpkGesz8hqgfOIVVHPP0NVs+AeAbsoKVtdgQq
WRSMxmsh/z/NqQb1YV6YIdJiZz+0Hsw3/pPln+PgsaZpG4Cva1nGifBGKKz0pu1/9HdrQskD6EB0
59xfddDS5mjflI0IAh1/9rdapxaHAUCMv085BX30W+L6lBwpanoH6t8FPCmFUvw4K2AQGfNWqthh
ooHsClS9MCpgqjHWjY63BcekfAswQ3sLqPYkoc5+Ru2afQHNzkkD4UpLIavPJGa2CHPCPspY4RPh
yb+UvgmEzlAusn0GKDRvER+0wlyPmVH893YSOfop6n02ZC6Ifu9n6wBmMdhqf48Nlw==
Fingerprint: 54:69:67:1b:00:92:63:fe:f1:de:a9:f3:41:b1:83:9c

Kex Algorithms:
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group-exchange-sha1
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa
	ssh-dss

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	arcfour256
	arcfour128
	aes128-cbc
	3des-cbc
	blowfish-cbc
	cast128-cbc
	aes192-cbc
	aes256-cbc
	arcfour
	rijndael-cbc@lysator.liu.se

MAC Algorithms:
	hmac-md5
	hmac-sha1
	umac-64@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-ripemd160
	hmac-ripemd160@openssh.com
	hmac-sha1-96
	hmac-md5-96

Compression Algorithms:
	none
	zlib@openssh.com

-325710523 | 2024-04-09T06:06:38.267966

53 / tcp

Resolver name: ip-192-169-232-244.secureserver.net

-325710523 | 2024-04-14T09:37:11.420572

53 / udp

Resolver name: ip-192-169-232-244.secureserver.net

1294095970 | 2024-04-19T00:14:23.779812

80 / tcp

HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 00:14:23 GMT
Server: Apache/2.4.46 (cPanel) OpenSSL/1.1.1h mod_bwlimited/1.4
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html

78986728 | 2024-04-11T11:28:44.568443

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 11 Apr 2024 11:28:44 GMT
Server: Apache/2.4.46 (cPanel) OpenSSL/1.1.1h mod_bwlimited/1.4
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6943746494543108253 (0x605d24a5b19b189d)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
        Validity
            Not Before: Oct 30 19:48:18 2019 GMT
            Not After : Oct 30 19:48:18 2020 GMT
        Subject: OU=Domain Control Validated, CN=viajachiapas.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:af:64:86:8e:ae:b7:f1:d6:e5:2f:49:d1:c8:1a:
                    af:2b:f0:7a:d4:02:b6:fc:14:54:b0:f9:24:58:1f:
                    d0:44:84:cb:07:3b:9e:88:f0:94:f8:9f:e0:57:96:
                    1f:81:f4:38:e2:3b:bc:14:47:3e:7d:4e:30:f9:95:
                    a0:63:6f:f3:57:38:08:77:5e:ca:ea:3b:de:57:f0:
                    b7:5c:a4:02:68:5b:78:e0:64:54:05:df:e1:fa:06:
                    7b:b1:ba:75:cd:7f:ed:94:b9:2a:c9:3a:93:ca:d2:
                    15:dc:8c:4e:f6:f0:fb:67:0f:7a:42:45:af:ab:be:
                    27:28:b6:a9:75:6f:58:02:c9:ee:5e:69:ed:c7:c3:
                    b2:41:d5:05:bc:47:f2:d4:8d:f2:89:c8:86:d2:eb:
                    b0:42:cf:98:b1:16:38:7e:de:27:50:4b:cb:8e:48:
                    64:d1:0d:50:3b:51:c5:72:a0:e5:4f:d5:aa:e2:d8:
                    3a:d4:7b:94:9e:ea:83:98:6f:7b:d1:49:f5:15:cf:
                    f1:14:52:90:de:8b:bc:e4:a0:eb:b3:1f:36:00:21:
                    4d:54:c5:03:3e:c6:60:eb:68:56:4f:b0:5b:f6:3e:
                    d9:d2:88:37:12:7c:98:56:a8:90:e3:eb:8c:52:27:
                    21:02:7a:d2:e5:e0:f6:a8:ee:a8:71:ac:14:e6:8d:
                    40:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.godaddy.com/gdig2s1-1482.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114413.1.7.23.1
                  CPS: http://certificates.godaddy.com/repository/
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.godaddy.com/
                CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
            X509v3 Authority Key Identifier: 
                40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
            X509v3 Subject Alternative Name: 
                DNS:viajachiapas.com, DNS:www.viajachiapas.com
            X509v3 Subject Key Identifier: 
                B1:98:D3:F8:23:86:31:F1:E9:71:4A:41:B2:E2:A7:8E:BF:60:E3:87
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
                                3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
                    Timestamp : Oct 30 19:48:20.817 2019 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D6:A9:86:8B:65:B9:CF:C8:24:79:63:
                                59:63:EC:69:9B:7C:0E:00:66:C4:AA:7F:99:94:8D:F5:
                                03:8E:31:A6:7A:02:20:33:FA:FC:54:96:DF:49:93:49:
                                DE:34:29:87:02:32:D1:AE:AA:EB:E6:24:6B:BD:AF:39:
                                26:11:49:AA:9F:0D:6E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 5E:A7:73:F9:DF:56:C0:E7:B5:36:48:7D:D0:49:E0:32:
                                7A:91:9A:0C:84:A1:12:12:84:18:75:96:81:71:45:58
                    Timestamp : Oct 30 19:48:21.118 2019 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:71:57:45:02:EB:31:13:C2:00:E4:3E:F0:
                                7B:C7:B3:A3:E6:EB:F0:39:77:76:CC:9E:0E:A8:F2:23:
                                45:9D:11:80:02:21:00:EE:2C:E4:D8:A8:25:49:5D:D3:
                                DE:88:47:48:6D:FF:76:43:A5:DF:32:E0:1E:7C:0A:53:
                                34:BD:59:0E:B7:A0:C8
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1d:49:c7:24:34:f8:ac:56:dc:1e:92:ad:5a:9f:67:2a:af:55:
        71:28:3d:1a:ee:bf:fa:d6:61:71:10:2d:77:3c:f3:5c:0a:d6:
        8e:1c:be:39:37:14:c1:1c:ed:ab:ec:43:9c:a0:ab:f3:2a:d2:
        19:c4:cd:c9:41:e3:31:e5:15:65:7b:0b:4f:99:70:8d:b3:21:
        df:83:14:3a:fc:f5:eb:75:ae:61:78:02:3d:51:df:b5:04:b4:
        cb:df:a8:a0:68:a9:8b:84:08:0a:e0:47:29:81:51:c3:6e:56:
        ab:89:b3:65:73:d7:81:41:92:3c:5a:07:0d:b9:5c:79:9e:f4:
        be:82:78:0f:36:07:1f:68:1e:92:aa:18:71:fb:9d:10:75:64:
        0b:76:8e:47:b0:a7:03:f7:6f:89:40:5f:10:79:dd:39:79:7f:
        c8:20:66:aa:14:cc:05:e8:03:d2:7f:84:b7:bf:42:5e:d4:7b:
        6f:15:ed:6a:1d:f3:35:61:73:23:76:b2:58:f2:dd:0b:b6:36:
        b7:9a:9c:27:16:98:30:3d:ef:9c:4e:80:13:a3:1b:b4:68:65:
        c1:7c:da:2a:9d:5d:0b:87:e1:05:8a:4d:cc:e5:51:33:4b:25:
        07:36:3a:ca:b1:99:db:58:2c:a0:52:d4:96:e4:16:d5:03:6b:
        83:06:19:3a

343014785 | 2024-03-25T21:20:48.241694

465 / tcp

220-ip-192-169-232-244.secureserver.net ESMTP Exim 4.93 #2 Mon, 25 Mar 2024 14:20:14 -0700 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-ip-192-169-232-244.secureserver.net Hello 224.130.229.184 [224.130.229.184]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3553433225 (0xd3cd1689)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
        Validity
            Not Before: Nov  8 07:11:29 2023 GMT
            Not After : Nov  7 07:11:29 2024 GMT
        Subject: CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ee:57:e8:d1:89:22:9a:35:bc:5e:de:1b:40:d1:
                    0f:73:87:86:d7:c1:2c:49:00:c6:96:95:b3:20:f0:
                    d4:ae:e2:ab:a2:b2:89:6a:f4:27:79:d4:71:88:3a:
                    3f:3f:5b:67:a8:51:1e:75:30:58:9d:1f:f0:1c:a7:
                    27:dd:ad:07:a4:12:99:9d:8a:33:6e:78:fb:8e:cb:
                    a2:82:00:13:aa:24:a7:b2:94:1d:ab:8d:c9:db:f1:
                    3b:ef:d0:e7:c1:b1:65:3a:2e:d1:9b:84:75:fb:c4:
                    24:7d:fa:cd:a7:cd:7b:b3:35:f3:84:f7:65:6d:dc:
                    12:ab:a1:90:50:f3:13:9c:56:fe:1d:64:8f:c8:55:
                    2f:d0:fb:c1:a0:a8:54:c3:ee:96:03:a1:c2:2d:fd:
                    cd:20:31:b3:b2:9e:8f:c1:ec:b3:66:76:5f:71:ce:
                    58:b3:ad:f8:c7:90:d4:7e:4c:05:b0:12:1c:3f:f0:
                    2e:08:40:0f:4e:bf:f6:57:ec:5b:bb:0c:4d:cd:90:
                    73:8d:39:22:32:58:bc:fc:3d:1d:79:a4:a9:60:07:
                    e8:40:d1:77:48:3b:8f:c4:ea:55:e2:7a:ad:1b:f6:
                    c0:e5:ce:67:ad:08:59:2a:a0:17:8b:98:fe:31:23:
                    80:d6:25:8c:19:a2:57:e0:33:0a:2c:8e:a5:37:7d:
                    03:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                98:83:90:98:38:1F:D1:4E:55:1A:81:E1:26:ED:60:9C:3B:53:63:BF
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Authority Key Identifier: 
                keyid:98:83:90:98:38:1F:D1:4E:55:1A:81:E1:26:ED:60:9C:3B:53:63:BF
                DirName:/CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
                serial:D3:CD:16:89
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name: 
                DNS:ip-192-169-232-244.secureserver.net
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9d:3f:b9:ea:7c:f9:fb:fa:c7:c7:d3:7c:91:8b:4d:03:26:b4:
        0e:0d:c3:f8:5b:83:b3:71:3b:09:a8:42:f2:a9:6f:97:a7:48:
        d2:c7:81:26:65:9d:df:5a:2c:4f:c7:e1:0e:43:41:29:9b:ab:
        9f:95:0e:f2:cb:fb:ea:ac:e5:5b:54:69:d1:ed:ac:75:77:d4:
        85:70:51:be:8c:6d:46:3f:ee:30:cf:21:a1:de:db:9d:1f:34:
        f3:b7:ce:83:a2:ba:a2:55:e6:ed:19:88:70:d0:b8:d3:f5:59:
        73:4f:f2:3e:97:e5:95:71:94:8a:b7:33:17:5c:2d:71:e1:d4:
        65:a5:83:7b:e4:7a:f8:43:5b:a6:64:c7:75:3b:a8:fa:d1:0d:
        17:66:86:b7:e5:bb:35:a0:2d:61:49:b0:6a:2b:7c:bb:c7:ca:
        ae:0a:5e:13:3e:cb:ac:84:5f:4f:e0:d2:91:98:8a:c5:61:74:
        b7:01:10:56:90:f7:55:44:a4:29:8b:97:8f:24:c1:d5:ce:c2:
        63:a1:73:60:9a:d8:59:c4:a9:70:3c:09:34:cf:3e:df:77:dd:
        d2:93:20:21:2c:a8:c2:b8:32:01:0f:fe:30:10:fd:26:ee:7d:
        dc:89:68:1c:ae:72:7c:de:72:f5:e6:75:15:f7:b8:80:23:1e:
        b3:6a:6d:9b

2000703854 | 2024-04-04T22:45:50.173898

587 / tcp

220-ip-192-169-232-244.secureserver.net ESMTP Exim 4.93 #2 Thu, 04 Apr 2024 15:45:11 -0700 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-ip-192-169-232-244.secureserver.net Hello 224.18.171.195 [224.18.171.195]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3553433225 (0xd3cd1689)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
        Validity
            Not Before: Nov  8 07:11:29 2023 GMT
            Not After : Nov  7 07:11:29 2024 GMT
        Subject: CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ee:57:e8:d1:89:22:9a:35:bc:5e:de:1b:40:d1:
                    0f:73:87:86:d7:c1:2c:49:00:c6:96:95:b3:20:f0:
                    d4:ae:e2:ab:a2:b2:89:6a:f4:27:79:d4:71:88:3a:
                    3f:3f:5b:67:a8:51:1e:75:30:58:9d:1f:f0:1c:a7:
                    27:dd:ad:07:a4:12:99:9d:8a:33:6e:78:fb:8e:cb:
                    a2:82:00:13:aa:24:a7:b2:94:1d:ab:8d:c9:db:f1:
                    3b:ef:d0:e7:c1:b1:65:3a:2e:d1:9b:84:75:fb:c4:
                    24:7d:fa:cd:a7:cd:7b:b3:35:f3:84:f7:65:6d:dc:
                    12:ab:a1:90:50:f3:13:9c:56:fe:1d:64:8f:c8:55:
                    2f:d0:fb:c1:a0:a8:54:c3:ee:96:03:a1:c2:2d:fd:
                    cd:20:31:b3:b2:9e:8f:c1:ec:b3:66:76:5f:71:ce:
                    58:b3:ad:f8:c7:90:d4:7e:4c:05:b0:12:1c:3f:f0:
                    2e:08:40:0f:4e:bf:f6:57:ec:5b:bb:0c:4d:cd:90:
                    73:8d:39:22:32:58:bc:fc:3d:1d:79:a4:a9:60:07:
                    e8:40:d1:77:48:3b:8f:c4:ea:55:e2:7a:ad:1b:f6:
                    c0:e5:ce:67:ad:08:59:2a:a0:17:8b:98:fe:31:23:
                    80:d6:25:8c:19:a2:57:e0:33:0a:2c:8e:a5:37:7d:
                    03:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                98:83:90:98:38:1F:D1:4E:55:1A:81:E1:26:ED:60:9C:3B:53:63:BF
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Authority Key Identifier: 
                keyid:98:83:90:98:38:1F:D1:4E:55:1A:81:E1:26:ED:60:9C:3B:53:63:BF
                DirName:/CN=ip-192-169-232-244.secureserver.net/emailAddress=ssl@ip-192-169-232-244.secureserver.net
                serial:D3:CD:16:89
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name: 
                DNS:ip-192-169-232-244.secureserver.net
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9d:3f:b9:ea:7c:f9:fb:fa:c7:c7:d3:7c:91:8b:4d:03:26:b4:
        0e:0d:c3:f8:5b:83:b3:71:3b:09:a8:42:f2:a9:6f:97:a7:48:
        d2:c7:81:26:65:9d:df:5a:2c:4f:c7:e1:0e:43:41:29:9b:ab:
        9f:95:0e:f2:cb:fb:ea:ac:e5:5b:54:69:d1:ed:ac:75:77:d4:
        85:70:51:be:8c:6d:46:3f:ee:30:cf:21:a1:de:db:9d:1f:34:
        f3:b7:ce:83:a2:ba:a2:55:e6:ed:19:88:70:d0:b8:d3:f5:59:
        73:4f:f2:3e:97:e5:95:71:94:8a:b7:33:17:5c:2d:71:e1:d4:
        65:a5:83:7b:e4:7a:f8:43:5b:a6:64:c7:75:3b:a8:fa:d1:0d:
        17:66:86:b7:e5:bb:35:a0:2d:61:49:b0:6a:2b:7c:bb:c7:ca:
        ae:0a:5e:13:3e:cb:ac:84:5f:4f:e0:d2:91:98:8a:c5:61:74:
        b7:01:10:56:90:f7:55:44:a4:29:8b:97:8f:24:c1:d5:ce:c2:
        63:a1:73:60:9a:d8:59:c4:a9:70:3c:09:34:cf:3e:df:77:dd:
        d2:93:20:21:2c:a8:c2:b8:32:01:0f:fe:30:10:fd:26:ee:7d:
        dc:89:68:1c:ae:72:7c:de:72:f5:e6:75:15:f7:b8:80:23:1e:
        b3:6a:6d:9b

-1132241830 | 2024-03-29T22:56:37.323379

993 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4139819100 (0xf6c0a05c)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: emailAddress=ssl@ip-192-169-232-244.secureserver.net, CN=ip-192-169-232-244.secureserver.net
        Validity
            Not Before: Nov  8 07:11:29 2023 GMT
            Not After : Nov  7 07:11:29 2024 GMT
        Subject: emailAddress=ssl@ip-192-169-232-244.secureserver.net, CN=ip-192-169-232-244.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a8:3c:f8:b2:1c:e2:20:b3:3d:b4:cf:e5:6a:1d:
                    7d:23:d9:ac:b6:b9:dd:c7:a4:79:83:74:3a:1e:d2:
                    8c:a2:ed:c8:d2:87:8d:12:4c:a2:11:f4:fc:1a:74:
                    16:0a:38:90:87:4b:16:8e:3f:ad:17:8b:d2:ab:2c:
                    e9:9c:18:aa:1d:24:35:be:a0:40:4d:7e:ce:9b:fb:
                    25:bd:fd:3c:84:0e:5e:9d:ed:51:59:df:11:f8:a3:
                    ed:aa:4c:d6:54:42:dd:4f:3a:21:be:41:b8:e9:b9:
                    8f:e7:c4:a6:6f:3c:3a:c4:b9:ec:86:3b:b3:73:a4:
                    4a:02:83:41:d3:7e:a7:ab:e6:ab:13:04:e9:91:d2:
                    9f:91:b7:18:9e:6d:26:d0:cc:ea:ea:58:a2:0a:15:
                    41:1b:d7:ba:c1:18:7d:93:c9:72:d4:41:04:ad:22:
                    0c:07:53:a7:6f:bf:2b:d7:e5:b4:0d:ed:2e:5b:71:
                    86:3e:60:69:02:b3:8a:49:5c:59:25:95:1a:3c:99:
                    02:ae:85:c3:24:f3:b7:73:12:a8:79:97:73:08:eb:
                    f2:77:24:00:a8:0d:19:28:4f:25:0f:60:ec:84:ff:
                    27:a3:92:27:ad:26:f4:4a:59:6e:91:c3:d0:15:3b:
                    6e:d6:c6:df:36:6d:d5:4a:24:b4:b5:26:02:61:4a:
                    75:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                5A:76:71:78:36:58:18:B1:41:39:44:01:4C:3C:D3:15:1C:36:85:90
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Authority Key Identifier: 
                keyid:5A:76:71:78:36:58:18:B1:41:39:44:01:4C:3C:D3:15:1C:36:85:90
                DirName:/emailAddress=ssl@ip-192-169-232-244.secureserver.net/CN=ip-192-169-232-244.secureserver.net
                serial:F6:C0:A0:5C
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name: 
                DNS:ip-192-169-232-244.secureserver.net
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        92:6f:06:f1:af:19:95:42:73:a9:c1:7c:47:02:5b:94:cf:44:
        06:93:8b:58:f6:0d:33:37:23:f3:bb:0b:71:87:a8:4f:a0:98:
        71:c5:a9:1c:a5:21:2f:a3:6d:04:d5:3b:29:29:e3:e5:0a:7f:
        2d:f4:a9:dc:c8:32:2b:02:6c:1c:e7:a0:7b:e1:2a:a1:07:18:
        e3:66:f0:62:71:aa:f7:da:6d:8c:fb:21:eb:db:04:c6:1f:e6:
        3a:e4:03:67:15:2b:1a:3f:32:7e:ad:5a:af:a4:28:22:da:f3:
        3c:92:a6:0e:cd:31:77:bd:b0:f5:96:7b:2b:68:0b:2b:53:b4:
        54:c5:9a:b5:e2:dd:a5:3a:67:25:ca:19:56:7c:7f:02:07:6a:
        13:81:e3:c5:db:a0:ab:73:1f:97:95:15:ce:23:ff:a7:24:6d:
        d7:a6:29:d1:83:a8:98:29:72:33:9a:f8:8c:5e:cd:89:a7:28:
        c0:6a:4b:cb:a4:02:5c:af:94:dd:87:c0:e1:b8:1f:7d:d8:2b:
        f8:fb:a6:ba:34:ac:59:db:a8:0a:29:91:30:36:bf:af:74:99:
        37:0a:6e:bc:69:17:05:24:dd:78:bd:16:12:c2:19:56:f8:f8:
        c4:b5:1f:fa:b9:88:f7:9b:6d:d1:29:3c:1a:70:2d:e4:08:f7:
        97:64:f3:ef

-1001764030 | 2024-03-31T19:09:04.656302

995 / tcp

+OK Dovecot ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
USER
SASL PLAIN LOGIN
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4139819100 (0xf6c0a05c)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: emailAddress=ssl@ip-192-169-232-244.secureserver.net, CN=ip-192-169-232-244.secureserver.net
        Validity
            Not Before: Nov  8 07:11:29 2023 GMT
            Not After : Nov  7 07:11:29 2024 GMT
        Subject: emailAddress=ssl@ip-192-169-232-244.secureserver.net, CN=ip-192-169-232-244.secureserver.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a8:3c:f8:b2:1c:e2:20:b3:3d:b4:cf:e5:6a:1d:
                    7d:23:d9:ac:b6:b9:dd:c7:a4:79:83:74:3a:1e:d2:
                    8c:a2:ed:c8:d2:87:8d:12:4c:a2:11:f4:fc:1a:74:
                    16:0a:38:90:87:4b:16:8e:3f:ad:17:8b:d2:ab:2c:
                    e9:9c:18:aa:1d:24:35:be:a0:40:4d:7e:ce:9b:fb:
                    25:bd:fd:3c:84:0e:5e:9d:ed:51:59:df:11:f8:a3:
                    ed:aa:4c:d6:54:42:dd:4f:3a:21:be:41:b8:e9:b9:
                    8f:e7:c4:a6:6f:3c:3a:c4:b9:ec:86:3b:b3:73:a4:
                    4a:02:83:41:d3:7e:a7:ab:e6:ab:13:04:e9:91:d2:
                    9f:91:b7:18:9e:6d:26:d0:cc:ea:ea:58:a2:0a:15:
                    41:1b:d7:ba:c1:18:7d:93:c9:72:d4:41:04:ad:22:
                    0c:07:53:a7:6f:bf:2b:d7:e5:b4:0d:ed:2e:5b:71:
                    86:3e:60:69:02:b3:8a:49:5c:59:25:95:1a:3c:99:
                    02:ae:85:c3:24:f3:b7:73:12:a8:79:97:73:08:eb:
                    f2:77:24:00:a8:0d:19:28:4f:25:0f:60:ec:84:ff:
                    27:a3:92:27:ad:26:f4:4a:59:6e:91:c3:d0:15:3b:
                    6e:d6:c6:df:36:6d:d5:4a:24:b4:b5:26:02:61:4a:
                    75:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                5A:76:71:78:36:58:18:B1:41:39:44:01:4C:3C:D3:15:1C:36:85:90
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Authority Key Identifier: 
                keyid:5A:76:71:78:36:58:18:B1:41:39:44:01:4C:3C:D3:15:1C:36:85:90
                DirName:/emailAddress=ssl@ip-192-169-232-244.secureserver.net/CN=ip-192-169-232-244.secureserver.net
                serial:F6:C0:A0:5C
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name: 
                DNS:ip-192-169-232-244.secureserver.net
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        92:6f:06:f1:af:19:95:42:73:a9:c1:7c:47:02:5b:94:cf:44:
        06:93:8b:58:f6:0d:33:37:23:f3:bb:0b:71:87:a8:4f:a0:98:
        71:c5:a9:1c:a5:21:2f:a3:6d:04:d5:3b:29:29:e3:e5:0a:7f:
        2d:f4:a9:dc:c8:32:2b:02:6c:1c:e7:a0:7b:e1:2a:a1:07:18:
        e3:66:f0:62:71:aa:f7:da:6d:8c:fb:21:eb:db:04:c6:1f:e6:
        3a:e4:03:67:15:2b:1a:3f:32:7e:ad:5a:af:a4:28:22:da:f3:
        3c:92:a6:0e:cd:31:77:bd:b0:f5:96:7b:2b:68:0b:2b:53:b4:
        54:c5:9a:b5:e2:dd:a5:3a:67:25:ca:19:56:7c:7f:02:07:6a:
        13:81:e3:c5:db:a0:ab:73:1f:97:95:15:ce:23:ff:a7:24:6d:
        d7:a6:29:d1:83:a8:98:29:72:33:9a:f8:8c:5e:cd:89:a7:28:
        c0:6a:4b:cb:a4:02:5c:af:94:dd:87:c0:e1:b8:1f:7d:d8:2b:
        f8:fb:a6:ba:34:ac:59:db:a8:0a:29:91:30:36:bf:af:74:99:
        37:0a:6e:bc:69:17:05:24:dd:78:bd:16:12:c2:19:56:f8:f8:
        c4:b5:1f:fa:b9:88:f7:9b:6d:d1:29:3c:1a:70:2d:e4:08:f7:
        97:64:f3:ef

-1223251886 | 2024-04-02T22:20:06.245905

2082 / tcp

HTTP/1.1 301 Moved
Content-length: 113
Location: https://192.169.232.244:2083/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

-918201240 | 2024-04-02T22:20:09.264572

2083 / tcp

HTTP/1.1 301 Moved
Content-length: 132
Location: https://ip-192-169-232-244.secureserver.net:2083
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

-1519128496 | 2024-04-15T00:42:13.333155

2086 / tcp

HTTP/1.1 301 Moved
Content-length: 113
Location: https://192.169.232.244:2087/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

858155783 | 2024-04-15T00:42:15.045473

2087 / tcp

HTTP/1.1 301 Moved
Content-length: 132
Location: https://ip-192-169-232-244.secureserver.net:2087
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

1040690698 | 2024-04-20T08:24:53.399369

2095 / tcp

HTTP/1.1 301 Moved
Content-length: 113
Location: https://192.169.232.244:2096/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

-297856852 | 2024-04-20T08:24:55.549883

2096 / tcp

HTTP/1.1 301 Moved
Content-length: 132
Location: https://ip-192-169-232-244.secureserver.net:2096
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

-1363405207 | 2024-03-26T05:18:25.343381

3306 / tcp

MySQL:
  Error Message: Host '207.90.244.17' is not allowed to connect to this MySQL server
  Error Code: 1130

192.169.232.244

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

963672017 | 2024-04-04T23:53:37.249774
21 / tcp

512547916 | 2024-04-16T22:28:59.586204
22 / tcp

OpenSSH5.3

-325710523 | 2024-04-09T06:06:38.267966
53 / tcp

-325710523 | 2024-04-14T09:37:11.420572
53 / udp

1294095970 | 2024-04-19T00:14:23.779812
80 / tcp

Apache httpd2.4.46

78986728 | 2024-04-11T11:28:44.568443
443 / tcp

Apache httpd2.4.46

343014785 | 2024-03-25T21:20:48.241694
465 / tcp

Exim smtpd4.93

2000703854 | 2024-04-04T22:45:50.173898
587 / tcp

Exim smtpd4.93

-1132241830 | 2024-03-29T22:56:37.323379
993 / tcp

-1001764030 | 2024-03-31T19:09:04.656302
995 / tcp

-1223251886 | 2024-04-02T22:20:06.245905
2082 / tcp

-918201240 | 2024-04-02T22:20:09.264572
2083 / tcp

-1519128496 | 2024-04-15T00:42:13.333155
2086 / tcp

858155783 | 2024-04-15T00:42:15.045473
2087 / tcp

1040690698 | 2024-04-20T08:24:53.399369
2095 / tcp

-297856852 | 2024-04-20T08:24:55.549883
2096 / tcp

-1363405207 | 2024-03-26T05:18:25.343381
3306 / tcp

MySQL

Products

Pricing

Contact Us

192.169.232.244

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

963672017 | 2024-04-04T23:53:37.249774 21 / tcp

512547916 | 2024-04-16T22:28:59.586204 22 / tcp

OpenSSH5.3

-325710523 | 2024-04-09T06:06:38.267966 53 / tcp

-325710523 | 2024-04-14T09:37:11.420572 53 / udp

1294095970 | 2024-04-19T00:14:23.779812 80 / tcp

Apache httpd2.4.46

78986728 | 2024-04-11T11:28:44.568443 443 / tcp

Apache httpd2.4.46

343014785 | 2024-03-25T21:20:48.241694 465 / tcp

Exim smtpd4.93

2000703854 | 2024-04-04T22:45:50.173898 587 / tcp

Exim smtpd4.93

-1132241830 | 2024-03-29T22:56:37.323379 993 / tcp

-1001764030 | 2024-03-31T19:09:04.656302 995 / tcp

-1223251886 | 2024-04-02T22:20:06.245905 2082 / tcp

-918201240 | 2024-04-02T22:20:09.264572 2083 / tcp

-1519128496 | 2024-04-15T00:42:13.333155 2086 / tcp

858155783 | 2024-04-15T00:42:15.045473 2087 / tcp

1040690698 | 2024-04-20T08:24:53.399369 2095 / tcp

-297856852 | 2024-04-20T08:24:55.549883 2096 / tcp

-1363405207 | 2024-03-26T05:18:25.343381 3306 / tcp

MySQL

Products

Pricing

Contact Us

963672017 | 2024-04-04T23:53:37.249774
21 / tcp

512547916 | 2024-04-16T22:28:59.586204
22 / tcp

-325710523 | 2024-04-09T06:06:38.267966
53 / tcp

-325710523 | 2024-04-14T09:37:11.420572
53 / udp

1294095970 | 2024-04-19T00:14:23.779812
80 / tcp

78986728 | 2024-04-11T11:28:44.568443
443 / tcp

343014785 | 2024-03-25T21:20:48.241694
465 / tcp

2000703854 | 2024-04-04T22:45:50.173898
587 / tcp

-1132241830 | 2024-03-29T22:56:37.323379
993 / tcp

-1001764030 | 2024-03-31T19:09:04.656302
995 / tcp

-1223251886 | 2024-04-02T22:20:06.245905
2082 / tcp

-918201240 | 2024-04-02T22:20:09.264572
2083 / tcp

-1519128496 | 2024-04-15T00:42:13.333155
2086 / tcp

858155783 | 2024-04-15T00:42:15.045473
2087 / tcp

1040690698 | 2024-04-20T08:24:53.399369
2095 / tcp

-297856852 | 2024-04-20T08:24:55.549883
2096 / tcp

-1363405207 | 2024-03-26T05:18:25.343381
3306 / tcp