GeneralInformation

Hostnames	admin.maxnet.ru newstat.maxnet.ru
Domains	maxnet.ru
Country	Russian Federation
City	Moscow
Organization	MAXnet Systems Ltd.
ISP	MAXnet Systems Ltd.
ASN	AS8636

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443 8080

-1836475360 | 2024-05-31T14:33:10.679860

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.20.1
Date: Fri, 31 May 2024 14:33:08 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-1059651032 | 2024-05-23T14:08:53.642854

443 / tcp

HTTP/1.1 401 Authorization Required
Server: nginx/1.20.1
Date: Thu, 23 May 2024 14:08:53 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 401
Connection: keep-alive
WWW-Authenticate: Basic realm="MAXnetStuff"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:b1:50:ae:99:bd:c5:29:7a:b6:27:4e:da:11:41:f2:47:70
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  1 01:03:27 2024 GMT
            Not After : Jul 30 01:03:26 2024 GMT
        Subject: CN=admin.maxnet.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bb:aa:17:a7:3b:6e:be:05:f3:96:01:2e:44:f7:
                    6b:86:6d:0a:e7:23:7c:a3:3b:5a:73:8c:91:52:f3:
                    84:6f:19:a6:b8:86:50:e8:09:77:20:06:03:4f:50:
                    ae:ce:64:c3:1b:e4:8b:d7:83:2a:33:7b:62:47:71:
                    b6:40:05:3b:a6:10:3a:cf:99:4a:2c:b8:5f:ee:d2:
                    27:e9:c3:7d:2c:83:4a:59:f5:9e:cd:11:7f:64:fd:
                    00:97:d0:70:84:ed:b0:2c:28:1d:88:58:90:14:6a:
                    30:7f:b0:8a:5a:7f:f3:2b:10:fa:78:d2:6d:b8:51:
                    a6:ca:44:fa:5a:1f:43:40:13:1a:6c:ee:d8:f3:29:
                    79:ef:f7:d4:77:59:64:35:8a:86:93:5d:a0:80:c9:
                    3f:81:15:b5:2a:8a:ce:b3:29:c1:f0:38:6b:0b:ee:
                    0c:29:c9:9c:ae:5c:5d:c2:5a:81:82:aa:f7:bf:c8:
                    b7:be:a7:88:94:f2:13:a3:b0:ef:d8:2b:35:34:50:
                    7f:ac:b5:63:f6:a4:4d:45:90:e6:3e:58:07:07:91:
                    eb:03:66:1b:9b:17:76:72:b8:8c:15:ef:0c:a7:4a:
                    00:9e:d4:be:03:8c:0c:cd:a6:b0:25:2a:5d:a8:51:
                    c6:92:4c:da:7f:8c:b6:de:1d:d9:5e:9e:3a:85:56:
                    3f:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                FD:D1:67:49:07:49:BC:12:43:EC:40:0F:AB:F4:03:AA:BC:E8:0F:CE
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:admin.maxnet.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : May  1 02:03:27.935 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E2:C4:39:5C:E8:7C:CA:06:72:9B:11:
                                CA:04:9B:6F:1D:E4:A5:38:D0:1F:86:A8:C4:18:D5:EC:
                                A7:B7:BF:E3:F8:02:20:5D:6E:5C:3A:3C:E2:A8:1F:8D:
                                AB:45:21:56:89:27:C5:04:B4:F1:DB:8E:CE:45:22:A8:
                                FD:CC:F8:DE:DB:B3:39
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : May  1 02:03:28.101 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9B:28:E1:45:D5:27:2C:D4:2F:03:2C:
                                10:BE:AF:EF:9C:3D:A7:F6:29:C7:B8:08:89:F9:D2:AC:
                                24:E9:D3:53:BE:02:20:0C:29:BD:79:2F:89:03:E4:B5:
                                04:D9:25:68:47:45:B1:EF:0A:EE:2B:22:84:8E:CE:5B:
                                63:35:37:C9:10:39:15
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        14:9c:1d:c1:82:ce:fa:19:49:e3:52:04:b1:7f:d9:6e:fc:14:
        28:9e:85:f4:81:05:f3:5f:af:bb:20:9e:7a:08:5a:e0:a5:4c:
        ea:cd:36:52:3c:f7:af:7c:3b:40:fe:dd:2b:d7:d7:31:31:2f:
        99:53:1c:62:db:4f:39:41:10:18:70:6f:50:a2:2c:a7:28:f3:
        f8:6d:86:af:a4:c3:4a:e9:88:dd:87:de:3a:62:4e:94:9b:a4:
        80:18:8d:ee:f1:3c:1f:93:ce:e0:c7:b9:0d:cd:fc:fb:c3:40:
        a8:f3:85:16:5c:79:e7:5e:74:44:eb:6d:20:5d:69:05:9f:9d:
        cd:66:82:69:ab:ae:05:6e:6d:a8:57:92:8f:2b:fb:5c:2d:26:
        a6:e9:d7:33:e0:d8:1f:d4:5d:64:19:dc:8d:8b:1c:be:c0:b9:
        d4:94:5e:db:f5:f3:d2:a3:72:25:e7:62:64:38:5c:3c:52:60:
        b2:11:16:40:93:e3:d2:79:17:dc:d7:b8:8d:d5:4a:da:7e:dd:
        ba:cb:0e:b6:cd:8b:b2:e7:86:ba:fb:f5:09:87:86:32:22:98:
        e3:19:e7:74:0f:8b:bd:35:e6:44:f4:e9:c0:af:ba:9c:90:07:
        e7:8f:ad:49:d2:1b:36:65:3b:c0:26:a1:e0:5a:8c:78:24:74:
        15:2e:69:96

793560149 | 2024-05-09T14:41:38.222077

8080 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.20.1
Date: Thu, 09 May 2024 14:41:38 GMT
Content-Type: text/html
Content-Length: 657
Connection: close

195.112.96.130

Last Seen: 2024-05-31

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1836475360 | 2024-05-31T14:33:10.679860
80 / tcp

nginx1.20.1

-1059651032 | 2024-05-23T14:08:53.642854
443 / tcp

nginx1.20.1

793560149 | 2024-05-09T14:41:38.222077
8080 / tcp

nginx1.20.1

Products

Pricing

Contact Us

195.112.96.130

Last Seen: 2024-05-31

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1836475360 | 2024-05-31T14:33:10.679860 80 / tcp

nginx1.20.1

-1059651032 | 2024-05-23T14:08:53.642854 443 / tcp

nginx1.20.1

793560149 | 2024-05-09T14:41:38.222077 8080 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-1836475360 | 2024-05-31T14:33:10.679860
80 / tcp

-1059651032 | 2024-05-23T14:08:53.642854
443 / tcp

793560149 | 2024-05-09T14:41:38.222077
8080 / tcp