| Hostnames |
postfix.co.fi otrs.cofi-dev.ru |
| Domains | co.fi cofi-dev.ru |
| Country | Russian Federation |
| City | Moscow |
| Organization | ITH Ltd. |
| ISP | 3DATA LLC |
| ASN | AS62010 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
-1557519165 | 2024-04-17T12:03:09.62614425 / tcp
220 postfix.co.fi ESMTP Postfix 250-postfix.co.fi 250-PIPELINING 250-SIZE 154857600 250-VRFY 250-ETRN 250-STARTTLS 250-ENHANCEDSTATUSCODES 250-8BITMIME 250-DSN 250 CHUNKING
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:b1:fe:24:1a:fa:72:a2:3d:44:f9:ef:13:6a:3b:0d:03:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Feb 1 15:15:46 2022 GMT
Not After : May 2 15:15:45 2022 GMT
Subject: CN=postfix.co.fi
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (4096 bit)
Modulus:
00:a4:ab:77:e4:31:42:17:6f:3b:60:13:81:cc:6a:
5e:8c:4d:8f:68:2a:b4:ee:7b:42:44:d1:94:be:94:
52:50:90:fd:b5:83:af:e9:48:df:9d:3b:35:06:4c:
a2:05:bb:ff:78:1a:b1:ad:0e:2f:1f:3c:b7:2c:40:
65:32:80:11:dd:eb:60:15:8f:08:c5:01:96:05:43:
1b:5f:05:e5:d9:fd:74:2e:b7:26:95:ca:3b:f0:1d:
4b:52:90:fe:e9:d8:dc:7d:7c:64:f8:e2:8f:d7:c5:
7d:9e:3a:cc:45:0f:08:e9:fd:5e:d8:66:d8:d6:4b:
ef:cf:9c:0f:dc:57:6f:15:dd:e5:dc:92:0b:4d:f8:
d1:47:b9:8b:fa:09:e4:d1:b7:4f:a8:c7:a7:9e:b5:
c6:7e:b2:ff:34:58:58:4f:e5:98:11:38:d4:17:f6:
da:3a:2b:4e:4e:7d:03:65:60:8c:b6:a5:dd:d6:db:
ab:3c:bb:55:41:99:46:22:2d:74:c1:3d:b1:df:63:
4a:ee:bd:38:1b:f3:55:4e:c9:e5:c8:4c:41:07:e5:
61:fe:31:10:e4:c6:5d:3b:b2:ac:b9:90:eb:a8:cb:
cb:42:9b:7f:0f:a6:74:8d:85:2b:00:bf:99:ad:e3:
62:9d:c1:20:a9:db:09:62:e3:3e:b7:42:18:20:d4:
d6:c9:78:4d:cc:86:bc:35:19:84:de:30:91:83:7d:
80:d3:22:80:97:cf:b9:0e:9c:45:b9:32:8e:9b:73:
e4:83:e9:1c:1d:93:9f:84:97:b8:09:4c:6e:8b:37:
e6:6c:41:24:1a:6c:47:6b:98:f8:29:4d:c9:c3:df:
fd:35:fa:59:bd:ff:f4:63:fc:b7:73:0e:51:ee:e2:
ec:c1:86:b4:28:34:cb:7e:33:b3:3f:c1:ca:c6:29:
72:52:db:8b:af:7d:6b:a7:69:61:b4:89:d1:c9:2d:
b2:a9:7b:e5:02:fb:9a:0c:a9:52:95:38:90:1a:af:
79:06:5b:15:e9:c9:81:47:52:51:27:7c:07:1f:aa:
fc:33:72:aa:4b:83:84:a8:79:a3:df:f2:82:02:6f:
3a:1e:1e:b8:65:ed:90:8b:94:b9:0b:b5:ff:66:33:
5d:56:cf:75:06:95:96:41:1f:46:a4:30:4d:cb:03:
4a:36:ff:60:dc:30:6f:56:95:41:33:36:64:50:d4:
5d:cf:63:35:5c:75:e4:30:ea:74:42:3f:59:7b:91:
1e:ce:a4:6b:79:54:a5:0e:d4:e6:38:5e:74:d0:06:
f9:0b:ea:85:61:f1:43:41:fb:73:63:ae:7e:e9:5f:
6d:84:ad:02:11:b5:96:08:eb:51:42:0d:4a:9a:0b:
f7:be:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
E1:1A:FB:24:1D:6E:E3:07:1C:1B:0B:98:80:62:F5:D5:FC:86:01:27
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:postfix.co.fi
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 41:C8:CA:B1:DF:22:46:4A:10:C6:A1:3A:09:42:87:5E:
4E:31:8B:1B:03:EB:EB:4B:C7:68:F0:90:62:96:06:F6
Timestamp : Feb 1 16:15:46.763 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:20:B9:99:6B:A1:32:A1:91:16:84:E8:E5:
1A:22:79:B1:0C:46:D7:EF:66:41:C0:D3:AF:09:61:3A:
C0:42:E3:D5:02:20:1A:AC:ED:13:E6:AE:C1:C4:5B:C1:
CE:BD:5A:D6:E1:11:BA:35:A6:7D:86:59:DC:7A:29:7B:
AA:92:93:BC:B4:3E
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
Timestamp : Feb 1 16:15:46.790 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:F7:C8:02:D9:A6:EF:0B:6B:0C:4D:0E:
7C:FF:4D:99:99:B0:66:A8:42:80:36:8F:D0:56:8C:C9:
98:C1:7A:2F:29:02:20:08:B1:4E:4F:98:C1:EE:8C:51:
F9:44:D5:C1:EE:AB:45:2C:F8:3E:BD:7E:22:EA:80:46:
45:3E:A7:56:AB:40:CB
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
13:e9:a1:04:8b:b0:87:4d:2b:72:d7:61:da:93:9b:27:5a:38:
ef:dd:17:d4:fb:a5:b2:b2:1f:70:02:bc:76:08:a1:85:87:fa:
74:e0:96:84:d4:50:4c:43:cb:d8:8a:f4:63:ce:83:a0:5a:a0:
4b:fe:04:a0:33:7f:83:8e:68:0b:2b:59:f0:7c:01:4e:af:02:
e9:3a:04:98:5e:62:d7:4e:47:e0:b9:4a:df:af:e6:4d:64:85:
a0:9c:b8:da:5e:6b:e3:b1:b2:ed:2d:ac:a0:00:b9:43:3d:5c:
3f:a3:f0:0c:a3:4e:ce:66:a8:8b:c7:ed:a8:4f:b7:b3:4f:b0:
ca:76:6e:a0:e4:85:b9:52:09:6e:fb:5c:50:63:fd:ab:de:aa:
c8:df:89:7e:a6:8a:24:11:32:bf:7f:31:02:ee:fd:bd:98:3e:
f4:ca:cd:09:c5:86:89:81:25:3f:ea:e4:b7:14:1f:e2:31:55:
b2:ff:c1:93:8a:cd:b7:89:e4:5c:0e:30:26:40:fb:3e:13:3f:
fe:a3:f3:5c:8f:c3:3f:f1:f4:84:ef:73:8c:dc:1a:7b:7f:23:
08:56:ad:87:fd:57:66:8b:47:8f:4f:e6:18:88:fa:57:be:36:
8f:5d:9c:3b:0b:a7:15:5a:d4:be:5c:f7:01:a4:1d:4b:8a:9b:
0b:b4:a0:e9
1637199859 | 2024-04-19T04:38:00.78491180 / tcp
HTTP/1.1 200 OK Server: nginx/1.20.2 Date: Fri, 19 Apr 2024 04:38:00 GMT Content-Type: text/html Content-Length: 615 Last-Modified: Mon, 23 May 2022 23:59:19 GMT Connection: keep-alive ETag: "628c1fd7-267" Accept-Ranges: bytes
1495287234 | 2024-04-11T07:32:13.570851443 / tcp
HTTP/1.1 403 Forbidden Server: nginx/1.20.2 Date: Thu, 11 Apr 2024 07:32:13 GMT Content-Type: text/html Content-Length: 555 Connection: keep-alive
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:71:2e:d5:41:10:79:92:57:0f:f3:92:79:58:9a:46:47:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Jul 22 19:27:42 2022 GMT
Not After : Oct 20 19:27:41 2022 GMT
Subject: CN=otrs.cofi-dev.ru
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:db:8b:1f:60:cc:76:1d:36:c2:58:15:25:97:ab:
80:45:10:fe:e9:86:2b:b0:1a:bb:28:4e:f2:33:61:
07:df:39:67:23:d5:4b:53:64:95:81:b1:85:a3:4f:
9e:83:0f:82:3a:40:ad:ec:45:a2:c8:09:c2:4b:79:
2b:ff:f0:f6:f7:46:27:5f:97:88:df:8e:22:5a:40:
b1:3f:41:7f:ed:dd:57:ab:46:59:2c:42:af:2c:48:
e6:b3:77:dc:aa:f1:fd:d8:8b:dc:5e:71:a4:06:8a:
ad:c5:0a:8d:de:f3:66:2c:c4:19:8e:d4:79:df:01:
70:88:14:ce:ae:98:5e:d4:1c:b0:4c:90:82:4e:d5:
ed:4a:13:e2:b1:53:a1:ae:f5:e5:c9:66:ac:06:84:
22:d9:16:ca:58:3f:f3:4d:bd:15:ed:ed:4b:1f:ca:
66:5c:c0:6e:cb:f3:41:ae:34:43:ed:86:98:aa:ae:
0f:22:5c:6e:ea:11:6b:e3:c7:5a:7e:b4:66:19:c5:
b1:17:25:91:bf:82:b8:9c:c9:4f:cd:6a:5e:17:d0:
8f:3c:71:f0:b5:ba:39:38:b6:f4:3d:61:d2:e8:e1:
f4:38:51:1a:bf:e7:96:f7:52:d4:3f:ce:1d:0a:cf:
55:48:c8:f0:44:55:f2:0d:91:73:17:06:48:6c:46:
2f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
0A:79:AA:36:65:A3:5B:D8:0C:94:69:D9:7E:29:1B:3D:98:8E:E2:2D
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:otrs.cofi-dev.ru
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
Timestamp : Jul 22 20:27:42.730 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:32:B9:4A:41:4C:15:C7:75:40:69:3F:5E:
62:C9:E8:44:B8:30:0F:76:85:E8:48:AA:09:4B:8A:F8:
04:6A:EF:EF:02:20:06:C1:58:F6:F9:B0:CF:55:E7:53:
B2:BF:6C:F7:90:9C:D2:2F:10:D0:CA:B2:33:3F:DA:9B:
56:41:8A:43:1D:6B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 41:C8:CA:B1:DF:22:46:4A:10:C6:A1:3A:09:42:87:5E:
4E:31:8B:1B:03:EB:EB:4B:C7:68:F0:90:62:96:06:F6
Timestamp : Jul 22 20:27:42.775 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:66:4A:7B:DF:73:83:15:9B:E7:7C:B8:1D:
43:41:1F:E0:87:66:98:64:29:3F:33:48:68:A1:38:BE:
D1:68:BC:5E:02:20:6F:BF:5C:66:93:21:24:69:E4:80:
07:48:51:6B:23:66:8F:4F:5D:58:07:E3:B3:29:11:C9:
D0:94:CF:F7:6D:01
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4a:c2:e7:9d:e9:07:a6:31:19:f4:bd:74:26:2a:e7:64:81:91:
c1:e3:41:fe:6a:73:11:90:77:2d:91:57:d9:97:4d:c8:dc:54:
97:c1:21:e3:01:8b:be:72:3f:50:c1:b4:18:e5:12:6e:45:d9:
29:36:ca:61:23:ce:14:57:8e:a5:ee:51:28:ff:3d:98:97:cb:
0a:7f:3b:83:77:20:49:7e:09:62:d0:cb:1f:5a:e0:0b:99:99:
34:99:45:44:35:f5:5a:ec:cd:c4:ce:d8:d0:36:a0:c0:66:69:
2e:00:3b:7c:2f:d3:53:2c:c4:d5:d2:7e:98:05:34:45:f8:68:
a0:d5:9f:67:79:f4:04:ea:bd:22:f6:5d:11:c7:bb:96:ac:98:
e1:4d:fa:18:35:d5:3c:21:c5:f6:73:93:d7:9b:c2:94:f6:b6:
e7:53:08:22:ec:40:ee:7d:71:92:c3:ad:cc:4d:df:1b:cd:8f:
f9:bf:27:b1:7e:44:4c:65:72:80:fa:3f:cc:6b:9f:ec:21:63:
32:9c:d0:d2:c2:12:94:2a:c6:a0:28:3a:ab:5d:8d:c7:e8:dc:
8e:ea:fd:87:50:7e:79:e3:93:eb:f3:18:a8:86:da:57:b1:c4:
93:fd:18:33:de:61:df:c4:67:d9:c3:81:27:00:4d:f9:ef:f2:
69:50:dc:00