GeneralInformation

Hostnames	img.10xmails.com ip44.ip-192-99-86.net
Domains	10xmails.com ip-192-99-86.net
Country	Canada
City	Beauharnois
Organization	4S Technologies
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

80 82 443

-1972326615 | 2024-05-10T03:13:58.875379

80 / tcp

HTTP/1.0 503 Service Unavailable
Cache-Control: no-cache
Connection: close
Content-Type: text/html

501510358 | 2024-05-28T11:07:50.199846

82 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Tue, 28 May 2024 11:07:50 GMT
Content-Type: text/html
Content-Length: 4833
Last-Modified: Fri, 16 May 2014 15:12:48 GMT
Connection: keep-alive
ETag: "53762af0-12e1"
Accept-Ranges: bytes

1993832903 | 2024-05-30T22:40:19.382757

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Thu, 30 May 2024 22:40:19 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 23
Connection: keep-alive
X-Powered-By: Express
ETag: W/"17-EaaA/c00hjg00L71s+fjlLfw5Ss"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:4f:92:92:12:61:04:f3:26:32:0d:05:58:f1:2a:2b:ce:e6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Dec 16 06:22:39 2021 GMT
            Not After : Mar 16 06:22:38 2022 GMT
        Subject: CN=img.10xmails.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a1:b2:1d:22:72:0c:06:85:7a:20:b3:4d:bd:f5:
                    c1:1a:85:8f:80:6e:9e:e0:16:0a:3f:83:ff:e5:dc:
                    e8:e7:44:1a:34:b8:f4:6c:c8:7a:3e:c6:02:85:22:
                    cf:c3:6c:66:ea:dd:52:7a:de:a1:45:26:55:f7:b0:
                    ec:fa:89:1f:b0:4a:46:90:1f:5a:76:56:ca:0a:5c:
                    48:a7:1a:a9:25:a9:0c:dc:9b:b2:89:51:e3:55:4b:
                    03:bb:ee:29:ab:03:07:4a:87:f1:d9:6d:e6:8a:c6:
                    10:a3:52:a8:01:7c:ce:2c:3f:4f:97:1c:17:16:80:
                    29:79:a1:72:3b:c2:76:23:93:df:51:bf:c4:af:43:
                    80:c8:ad:dc:04:2a:c2:53:96:07:26:88:d7:cd:91:
                    d3:94:65:d6:5e:70:1b:f4:22:56:18:2d:d6:52:c2:
                    97:e1:f6:e2:f4:78:04:9a:a5:9f:4d:3c:bc:4f:0e:
                    1c:78:8d:8d:cd:0d:ed:73:ba:a2:48:8a:39:e0:1f:
                    82:a2:0e:9d:f9:17:f5:2f:bc:11:7c:16:78:df:a3:
                    2f:0b:ed:99:f2:16:30:64:ff:f9:ff:3b:5f:2c:47:
                    9a:c2:4f:49:23:e8:e6:05:f1:d6:b3:9b:5f:08:90:
                    da:b3:8b:aa:e4:c1:92:d5:70:84:4e:fe:04:ed:7f:
                    62:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                4E:EE:EC:99:16:6B:C3:B4:68:CF:8C:7C:EB:0E:B9:D0:3D:AF:FA:72
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:img.10xmails.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
                                EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
                    Timestamp : Dec 16 07:22:39.600 2021 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:0A:83:51:6B:DE:CB:3D:B0:F6:2B:3D:4A:
                                5D:02:E8:2A:22:3D:18:6F:4C:63:DD:EF:41:36:02:34:
                                8A:54:10:B0:02:20:16:0B:51:52:48:75:53:B2:5C:C7:
                                AC:0B:49:4B:C9:52:C9:A3:7E:71:F5:27:1E:0A:1C:5B:
                                F8:C3:9F:96:34:88
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
                                11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
                    Timestamp : Dec 16 07:22:39.637 2021 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B3:0C:E3:79:6D:E9:78:BE:23:3C:1F:
                                D4:B1:D9:C1:CE:B1:D3:39:4F:09:43:D0:B3:99:B0:06:
                                8C:0B:77:9D:0F:02:20:6B:B6:24:76:98:81:8B:CB:5F:
                                6F:AC:29:24:48:85:CE:0A:F2:14:60:FB:77:D5:64:8E:
                                4E:D1:8A:6E:C8:D0:FE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        0e:48:3d:16:b9:f0:1e:40:72:f8:eb:09:f6:53:ac:01:ab:3c:
        c5:3f:ae:d9:1c:af:90:70:92:1f:bf:94:89:3e:b4:82:6c:2b:
        f6:54:d6:7b:8a:7d:a4:73:07:dd:9f:e6:03:bd:ca:ca:38:cf:
        9e:3b:42:f7:e5:f9:da:1c:35:66:70:7c:84:26:c4:35:7e:7b:
        24:70:27:26:a8:34:57:78:a4:e9:ae:cb:57:73:21:4d:ba:17:
        98:fc:b8:7a:ef:9e:a2:24:5a:84:4f:f2:50:3e:3d:96:ff:9f:
        f3:43:4a:12:70:a8:d4:68:5d:e6:49:bf:fd:0c:2c:a1:a3:c2:
        34:77:b9:da:a8:30:97:5d:0c:66:9f:58:28:40:93:16:99:57:
        eb:be:9d:da:22:0c:ea:87:0b:f9:fb:31:cb:46:1b:12:b1:4c:
        34:3a:91:c3:88:b0:ed:20:71:6e:28:22:36:12:11:41:2c:52:
        51:c2:46:a6:42:a5:00:c9:eb:b2:2c:1d:38:af:7e:ea:31:25:
        2b:2a:d1:2e:6f:f5:b5:f9:17:f6:07:1c:ed:be:0c:cd:fa:0b:
        e0:99:d0:d7:62:3a:06:26:72:ee:81:7b:4a:e5:b3:9e:69:10:
        f8:79:c7:3b:04:1b:a6:23:0a:66:11:89:3c:3f:f5:1e:e7:60:
        88:dd:39:da

192.99.86.44

Last Seen: 2024-05-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1972326615 | 2024-05-10T03:13:58.875379
80 / tcp

501510358 | 2024-05-28T11:07:50.199846
82 / tcp

nginx1.16.1

1993832903 | 2024-05-30T22:40:19.382757
443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

192.99.86.44

Last Seen: 2024-05-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1972326615 | 2024-05-10T03:13:58.875379 80 / tcp

501510358 | 2024-05-28T11:07:50.199846 82 / tcp

nginx1.16.1

1993832903 | 2024-05-30T22:40:19.382757 443 / tcp

nginx1.16.1

Products

Pricing

Contact Us

-1972326615 | 2024-05-10T03:13:58.875379
80 / tcp

501510358 | 2024-05-28T11:07:50.199846
82 / tcp

1993832903 | 2024-05-30T22:40:19.382757
443 / tcp