GeneralInformation

Hostnames	adsmuggler.com ns523448.ip-192-99-8.net
Domains	adsmuggler.com ip-192-99-8.net
Country	Canada
City	Châteauguay
Organization	OVH Hosting, Inc.
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

1584412971 | 2024-04-20T20:44:44.640521

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Sat, 20 Apr 2024 20:44:44 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://adsmuggler.com/

1584412971 | 2024-04-17T11:45:40.413653

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Wed, 17 Apr 2024 11:45:40 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://adsmuggler.com/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            68:4b:59:ed:69:27:9f:f6:b8:7c:71:15:ae:a4:7b:4c:34:e5:74:29
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=CloudFlare, Inc., OU=CloudFlare Origin SSL Certificate Authority, L=San Francisco, ST=California
        Validity
            Not Before: Jan  7 16:08:00 2023 GMT
            Not After : Jan  3 16:08:00 2038 GMT
        Subject: O=CloudFlare, Inc., OU=CloudFlare Origin CA, CN=CloudFlare Origin Certificate
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b2:40:b8:f8:b2:21:90:cc:41:f5:17:80:bb:70:
                    0e:a5:ed:f1:90:0e:5e:62:24:a5:44:1a:16:e8:a4:
                    bb:61:41:a6:84:7c:d7:56:a2:21:14:c2:0b:9e:95:
                    5e:41:d2:b6:0f:e9:ed:85:fe:d1:52:c9:35:6d:cd:
                    36:d8:23:90:fc:78:6f:bd:7f:fa:89:3e:c2:50:e2:
                    95:87:3f:e1:9d:49:3a:a3:42:90:ee:ff:7a:08:8d:
                    e0:40:ac:c8:7a:a8:56:a8:b0:21:62:d0:2c:e0:a5:
                    3b:93:b7:cd:c7:e4:48:59:d3:26:8c:cb:5b:64:86:
                    ee:be:21:d5:ec:58:20:aa:cb:88:dd:d4:3c:d4:d6:
                    70:d8:3f:51:8c:25:11:b7:79:9e:88:ec:5e:a5:6b:
                    69:5f:7b:03:95:ec:b9:94:d1:e9:a7:e3:dc:ba:5c:
                    fd:49:ac:e7:b0:cd:ce:59:4e:dd:2d:a7:4b:be:fd:
                    d0:2e:81:c9:86:0d:cc:8e:19:53:3f:be:3f:ed:67:
                    b7:49:7e:45:db:d5:a3:c3:ca:b6:c9:72:54:d6:25:
                    50:ad:1e:d3:06:a0:d8:b4:b0:e5:d8:d0:b6:df:3b:
                    2a:b2:f9:51:bc:3b:c3:86:49:2e:fb:e0:a6:2f:b5:
                    91:b6:68:a8:4f:4e:b7:51:18:f5:24:cc:ae:a8:ba:
                    a4:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B9:C3:22:E6:A8:48:4D:66:47:29:BC:94:45:9D:B6:E2:0C:D1:CA:3B
            X509v3 Authority Key Identifier: 
                24:E8:53:57:5D:7C:34:40:87:A9:EB:94:DB:BA:E1:16:78:FC:29:A4
            Authority Information Access: 
                OCSP - URI:http://ocsp.cloudflare.com/origin_ca
            X509v3 Subject Alternative Name: 
                DNS:*.adsmuggler.com, DNS:adsmuggler.com
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.cloudflare.com/origin_ca.crl
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        73:c8:a3:0e:70:91:87:2e:db:85:a0:85:a2:50:8a:21:97:ce:
        85:d1:08:eb:5a:1a:05:61:f0:91:a8:a8:5e:41:a6:b9:15:17:
        2b:dc:32:f5:29:b5:2e:c2:3e:86:aa:a3:5c:4e:3a:78:04:8b:
        71:26:e5:76:3a:a9:0d:f9:5d:a4:22:b2:c7:98:c1:db:87:8f:
        00:2d:93:81:ac:ad:22:90:fa:4f:f1:78:93:7e:1a:61:c5:f6:
        27:a4:42:95:2a:9d:b4:89:8e:f0:e0:17:e8:96:76:f7:0c:51:
        bc:01:12:0d:79:d6:a5:da:76:1a:93:f6:a1:c1:d0:01:0e:30:
        40:90:c0:10:46:0a:a3:17:34:22:d9:82:62:84:57:dd:81:fc:
        72:6d:02:e2:6b:f8:33:94:af:fa:d1:21:1f:05:ba:59:d1:2f:
        cb:fd:57:9c:d6:71:8d:04:18:cd:00:0b:bd:95:a6:cc:40:01:
        1e:f1:3c:13:13:81:60:c2:41:7e:20:b7:c9:11:31:94:be:fb:
        23:b4:03:0c:68:95:10:83:8c:63:32:84:69:02:9c:61:7e:8d:
        ac:86:5c:4a:3c:86:7c:79:e1:6e:bf:5b:ed:2e:98:6b:e1:d2:
        67:4a:80:37:69:d3:58:98:0a:dc:a8:be:ca:f9:0a:c2:5e:3b:
        ba:50:5b:65

192.99.8.28

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1584412971 | 2024-04-20T20:44:44.640521
80 / tcp

nginx1.18.0

1584412971 | 2024-04-17T11:45:40.413653
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

192.99.8.28

Last Seen: 2024-04-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1584412971 | 2024-04-20T20:44:44.640521 80 / tcp

nginx1.18.0

1584412971 | 2024-04-17T11:45:40.413653 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1584412971 | 2024-04-20T20:44:44.640521
80 / tcp

1584412971 | 2024-04-17T11:45:40.413653
443 / tcp