GeneralInformation

Hostnames	195-154-28-130.rev.poneytelecom.eu vidoza.net
Domains	poneytelecom.eu vidoza.net
Country	France
City	Paris
Organization	Scaleway
ISP	SCALEWAY S.A.S.
ASN	AS12876

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

21 80 123 443

-1590805267 | 2024-05-03T16:52:28.877813

21 / tcp

220 FTP Server ready.
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    AUTH*   CCC*    CONF*   ENC*    MIC*    
 PBSZ*   PROT*   TYPE    STRU    MODE    RETR    STOR    STOU    
 APPE    REST    ABOR    USER    PASS    ACCT*   REIN*   LIST    
 NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@localhost
211-Features:
 TVFS
 MFMT
 SIZE
 MFF modify;UNIX.group;UNIX.mode;
 REST STREAM
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.mode*;UNIX.owner*;
 UTF8
 EPRT
 EPSV
 LANG fr-FR;zh-CN;it-IT;en-US;ru-RU;bg-BG;es-ES;ja-JP;ko-KR;zh-TW
 MDTM
211 End

-779483251 | 2024-05-03T05:34:49.266658

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 03 May 2024 05:34:49 GMT
Content-Type: text/html
Content-Length: 4
Last-Modified: Wed, 10 Apr 2024 06:02:15 GMT
Connection: keep-alive
ETag: "66162b67-4"
Expires: Fri, 17 May 2024 05:34:49 GMT
Cache-Control: max-age=1209600
Accept-Ranges: bytes

-1087536792 | 2024-05-04T19:15:04.260048

123 / udp

NTP
protocolversion: 3
stratum: 3
leap: 0
precision: -24
rootdelay: 0.0112915039062
rootdisp: 0.0692291259766
refid: 624639869
reftime: 3923837074.16
poll: 3

-779483251 | 2024-05-02T03:48:39.278282

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 May 2024 03:48:39 GMT
Content-Type: text/html
Content-Length: 4
Last-Modified: Wed, 10 Apr 2024 06:02:15 GMT
Connection: keep-alive
ETag: "66162b67-4"
Expires: Thu, 16 May 2024 03:48:39 GMT
Cache-Control: max-age=1209600
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:03:18:6a:ea:8f:08:2e:7d:44:72:7a:49:e4:98:28:14:7f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 14 01:21:54 2024 GMT
            Not After : May 14 01:21:53 2024 GMT
        Subject: CN=vidoza.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:fa:6a:8d:d1:77:6f:d2:b8:b8:b3:a0:04:b6:
                    c4:fd:4d:93:ec:e6:41:cc:6e:06:1a:eb:18:88:19:
                    43:e5:30:80:78:5a:4b:1a:f4:8c:6f:64:73:20:f6:
                    9f:cc:06:c1:03:af:d8:a2:d4:96:e1:c2:30:59:c9:
                    f7:72:12:a0:f5:db:88:52:71:c1:3e:a6:fe:f2:e5:
                    d9:ee:05:72:12:97:b7:d3:cb:ab:22:16:d7:fd:78:
                    93:a9:1f:02:bb:e0:f0:83:67:d8:85:e9:5f:65:d6:
                    9b:0b:c0:ee:2b:67:12:ee:a2:fe:a0:0d:e4:f6:9d:
                    81:5f:e2:39:06:15:75:4e:8c:4f:b3:d9:a4:ad:56:
                    14:95:51:a7:a2:e2:27:03:d1:82:8c:be:15:65:02:
                    e6:c3:57:f5:47:0d:cd:3a:35:63:ef:8b:81:f7:c3:
                    6b:13:84:5c:9f:f3:28:3b:43:e1:69:3a:74:24:5e:
                    be:0c:43:55:51:27:27:2d:4f:47:a2:98:5c:ff:aa:
                    1f:04:cb:2c:6d:5e:4b:7b:77:e7:ed:ff:26:51:7f:
                    c4:0f:8a:6d:76:5a:69:c3:b8:ff:bc:a5:22:37:16:
                    1d:9f:27:69:8e:6a:1e:9e:a8:68:de:25:a9:b6:f5:
                    3a:e1:1d:f8:98:d0:10:1a:07:86:0c:b7:91:e1:13:
                    ec:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                32:F2:98:65:C4:9D:2E:90:BF:E0:EE:5B:4D:41:68:DF:1E:E4:14:BC
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.vidoza.net, DNS:vidoza.net
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 14 02:21:54.621 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:30:3E:9C:13:35:1C:65:24:39:DE:12:65:
                                23:63:FF:C7:4D:3C:41:1C:18:6E:0C:9E:C9:0D:95:7C:
                                DD:96:71:E3:02:20:7F:5C:27:AB:7B:E5:8A:F4:A3:52:
                                4A:3E:04:35:38:F6:4B:56:DE:A5:6F:3D:64:AC:F3:83:
                                AA:70:4E:9B:17:1A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 14 02:21:54.495 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:41:FC:1C:36:55:BA:02:C6:B5:8A:9F:5F:
                                E9:D6:36:6B:9E:A2:DF:22:8B:90:91:A3:76:58:E4:04:
                                E3:92:C6:9E:02:21:00:C0:24:A5:D0:F8:D3:9F:6C:D6:
                                99:09:A5:52:5F:1D:2E:2B:A6:A8:63:43:4B:9F:D5:DF:
                                51:68:6D:22:E1:32:3B
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        71:97:0c:8e:6d:c0:37:85:50:2d:85:d0:45:c9:fe:2f:a0:b6:
        af:ac:af:64:37:33:1c:51:40:1a:66:ae:44:4a:17:cb:29:c6:
        82:e2:18:50:fc:3d:6d:3f:15:9c:f3:b3:e9:fa:77:c4:e3:3c:
        7a:41:56:9f:62:41:7d:16:a7:f6:bf:2d:e4:2d:47:2c:68:d6:
        8e:1b:ed:e0:df:d2:60:dd:48:54:00:56:d6:d8:dd:ae:b9:3b:
        4b:61:17:69:6f:1f:e9:50:72:52:8f:76:45:96:83:7d:1b:12:
        b2:7a:34:5c:e5:7f:aa:ab:94:77:94:8e:0d:00:ea:0b:34:1c:
        58:c6:9a:3d:b7:5b:25:5c:d0:49:8f:f3:03:31:67:7f:6d:fe:
        bf:61:cb:46:13:97:1e:fe:d8:2d:8d:64:52:e8:d8:2b:e7:09:
        22:7b:1f:5a:30:ee:99:83:ad:b1:c6:e1:60:6f:cc:80:cf:a2:
        76:5e:51:6a:ad:01:79:a0:b9:61:06:f0:3b:79:20:64:10:e3:
        86:aa:a2:a2:42:80:a3:bf:36:b3:73:4d:ca:17:23:ae:9b:17:
        04:54:80:f4:6b:fc:ca:44:4e:d0:c7:bc:cc:26:72:4b:6c:de:
        23:3d:d1:33:6e:a6:e2:56:df:f3:1a:e5:bd:44:9e:c2:a6:6d:
        f9:69:dd:7d

195.154.28.130

Last Seen: 2024-05-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1590805267 | 2024-05-03T16:52:28.877813
21 / tcp

-779483251 | 2024-05-03T05:34:49.266658
80 / tcp

nginx1.20.1

-1087536792 | 2024-05-04T19:15:04.260048
123 / udp

-779483251 | 2024-05-02T03:48:39.278282
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

195.154.28.130

Last Seen: 2024-05-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1590805267 | 2024-05-03T16:52:28.877813 21 / tcp

-779483251 | 2024-05-03T05:34:49.266658 80 / tcp

nginx1.20.1

-1087536792 | 2024-05-04T19:15:04.260048 123 / udp

-779483251 | 2024-05-02T03:48:39.278282 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-1590805267 | 2024-05-03T16:52:28.877813
21 / tcp

-779483251 | 2024-05-03T05:34:49.266658
80 / tcp

-1087536792 | 2024-05-04T19:15:04.260048
123 / udp

-779483251 | 2024-05-02T03:48:39.278282
443 / tcp