| Hostnames |
utm.aabb.org www.utm.aabb.org |
| Domains | aabb.org |
| Country | United States |
| City | Gaithersburg |
| Organization | Design Data Systems, Inc. |
| ISP | Design Data Systems, Inc. |
| ASN | AS14011 |
| Operating System | Windows |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2014-4078 | 5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability." |
1138219898 | 2024-04-28T03:46:59.78794980 / tcp
HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Tue, 02 Aug 2016 20:41:55 GMT Accept-Ranges: bytes ETag: "856aa04efeecd11:0" Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET Date: Sun, 28 Apr 2024 03:46:58 GMT Content-Length: 701
-286260405 | 2024-04-24T23:15:00.618622161 / udp
SNMP:
Versions:
3
Engine Boots: 14
Engineid Data: 80001f888092dfea60aad0b560
Enterprise: 8072
Engine Time: 42 days, 16:52:08
1489525118 | 2024-04-04T21:10:50.931634443 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Thu, 04 Apr 2024 21:10:50 GMT Connection: close Content-Length: 315
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:19:16:f1:6c:41:43:0d:89:ad:38:9b:79:23:bd:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
Validity
Not Before: Jan 9 00:00:00 2024 GMT
Not After : Feb 2 23:59:59 2025 GMT
Subject: C=US, ST=Maryland, L=Bethesda, O=American Association of Blood Banks, Corporation, CN=*.aabb.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:e6:06:ed:77:db:17:51:d8:46:a4:c6:ca:04:32:
40:80:75:9b:4f:37:ae:a3:2c:bb:cf:76:f5:39:7b:
7b:06:e6:d7:8b:e2:f4:a7:d7:0d:91:45:8e:da:c5:
73:4d:99:cd:e8:d4:41:d7:8b:c8:50:86:e8:90:ff:
dd:90:ae:d7:67:13:70:43:8f:64:f5:f9:b8:21:a4:
27:56:b9:cb:19:b5:48:c0:07:81:56:ef:6c:40:97:
66:83:ef:94:c3:53:b6:14:6a:c4:e4:cb:62:08:a8:
bd:04:8f:33:07:be:66:06:6c:5c:39:7a:75:4f:9f:
fb:0d:ef:23:c1:6b:d1:74:6e:db:dc:9a:b5:80:99:
d1:36:ab:ad:c2:ea:8a:f3:49:37:df:0e:22:b5:14:
6b:83:da:bb:56:c7:e5:e4:a6:f7:53:99:66:a0:3e:
61:6c:32:2a:66:5b:63:b5:f1:bd:e6:ac:29:ee:d5:
07:0f:ed:a5:ae:0c:06:d6:45:12:1f:6f:d9:b0:ca:
42:b8:6f:36:4f:db:08:44:61:dc:a9:14:7e:79:dc:
dc:02:33:f9:4a:60:b6:b6:6d:88:e6:d4:5c:4d:f2:
0e:b6:93:45:38:30:f6:7c:af:3c:54:51:2d:72:f8:
a2:b1:33:31:44:07:8f:ec:97:2a:6e:80:c8:86:ec:
0a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
74:85:80:C0:66:C7:DF:37:DE:CF:BD:29:37:AA:03:1D:BE:ED:CD:17
X509v3 Subject Key Identifier:
07:9F:B1:27:48:C0:1B:89:18:D3:D9:FF:00:87:6B:C2:79:91:4A:05
X509v3 Subject Alternative Name:
DNS:*.aabb.org
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Full Name:
URI:http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Authority Information Access:
OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt
X509v3 Basic Constraints: critical
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Jan 9 07:43:26.261 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:38:2E:BC:E9:65:FE:28:FA:22:6F:64:32:
46:0D:23:AF:87:4A:2C:CC:C3:7B:BF:FC:C2:63:E0:80:
3D:1E:34:AE:02:20:7F:EA:2B:9C:2C:E4:74:BB:57:F1:
65:C1:63:A2:9A:B9:B0:DD:F6:E1:06:BB:17:46:3D:4F:
80:79:1B:5E:FD:2B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Jan 9 07:43:26.323 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:8A:60:56:17:94:BE:87:27:EC:BE:25:
10:D4:79:84:DE:8B:ED:8D:FB:A2:69:A4:38:4D:11:0F:
AD:C4:DB:00:59:02:20:4C:D9:C0:AB:0B:17:B1:27:DC:
6B:8F:2D:52:52:7B:AF:4A:66:A7:3F:10:48:68:09:2F:
54:4E:3D:C3:13:AC:AE
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
Timestamp : Jan 9 07:43:26.351 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:31:F9:B2:3C:CE:A3:26:DC:D3:F2:05:06:
FF:52:9A:7A:2A:AB:44:1A:05:56:84:7E:06:5C:8F:C7:
79:B2:59:EC:02:20:39:5F:57:C7:49:43:95:53:5C:FC:
C4:30:5E:1D:6C:89:5A:50:D4:74:0F:EB:CE:86:9D:4A:
4B:99:06:52:5C:6A
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
82:10:96:5e:26:ea:22:3e:ee:9d:65:72:32:12:f7:81:99:e1:
b6:0a:f5:a9:17:2c:68:8b:b9:ed:50:ac:da:d3:02:de:f5:64:
15:fd:3b:09:3b:fa:f9:4f:6f:52:95:83:51:b0:10:60:f7:08:
98:e4:cd:0c:e4:af:16:68:ac:ea:ef:2b:2b:01:c9:65:e1:9c:
99:12:6e:a9:f9:c0:fa:2b:3e:24:b1:b1:20:4d:8a:66:a9:8a:
fc:ae:1b:58:dc:3c:3d:fc:ba:bc:bd:52:de:52:23:74:e8:31:
b7:ea:a3:50:7c:09:96:6d:99:f2:d3:fc:35:cc:b2:e7:91:55:
4d:da:dc:61:37:0c:0e:4a:2e:62:be:bf:0a:c1:4a:69:79:7b:
03:be:d2:85:d2:31:67:e9:c5:92:94:38:1f:a3:58:5e:6c:ba:
c6:2b:5f:eb:1e:e7:ee:f0:7f:cf:9b:fc:ce:42:ba:89:07:66:
e2:6a:7b:c5:67:50:fe:5c:80:48:a6:d0:64:ad:ce:3a:4e:3a:
83:8b:1c:27:6f:b9:22:1d:8f:4a:62:36:5b:71:f3:aa:cd:69:
32:c8:3f:65:10:40:ea:09:0a:d9:21:32:d6:f3:4d:01:4f:63:
20:aa:5c:5a:f5:a9:9f:45:41:b7:4c:7d:74:e4:fb:0a:e4:2d:
e5:eb:20:e6
1421698988 | 2024-04-21T23:53:44.886562500 / udp
VPN (IKE)
Initiator SPI: 7a786e6273793436
Responder SPI: 693067686d756963
Next Payload: RESERVED
Version: 2.0
Exchange Type: DOI Specific Use
Flags:
Encryption: False
Commit: False
Authentication: False
Message ID: 00000000
Length: 36
1684664771 | 2024-04-26T18:14:23.3915434443 / tcp
HTTP/1.1 200 OK Date: Fri, 26 Apr 2024 18:13:25 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Content-Security-Policy: default-src https: data: ws: wss: blob: 'unsafe-inline' 'unsafe-eval'; worker-src 'self' blob:; frame-ancestors 'self'; X-XSS-Protection: 1; mode=block Content-Type: text/html;charset=utf-8 Expires: Wed, 31 Dec 1969 23:59:59 GMT Cache-Control: no-cache Pragma: no-cache Content-Length: 28318 Set-Cookie: JSESSIONID=1951tov5khqgh1s8vkf4ugfz7m4722; Path=/userportal; Secure; HttpOnly Connection: close
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
8f:64:35:b1:bc:19:96:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
Validity
Not Before: Apr 26 14:12:22 2023 GMT
Not After : May 24 07:03:22 2024 GMT
Subject: CN=utm.aabb.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c4:9d:c2:fc:7d:71:d6:55:62:b1:db:1e:a5:32:
9c:a4:28:1f:b6:34:11:11:82:97:63:e9:dd:bf:da:
4e:54:14:0e:5c:cb:80:c3:41:6c:8b:c8:77:f5:7d:
a3:98:6b:c9:3f:ab:85:31:aa:e1:89:17:0c:c2:75:
cb:a8:3a:2e:0b:27:bd:93:ff:1a:75:75:2e:17:de:
5d:fc:29:2d:f9:6c:5c:e9:14:0f:2d:81:44:f9:8b:
18:fb:3b:bc:65:7a:7f:ea:c5:c6:22:58:3d:bb:3e:
43:23:19:cb:b3:11:f2:c3:85:5e:b4:e8:a5:f3:a2:
b0:3e:78:37:6e:7d:8a:63:d5:e0:24:0b:20:af:86:
bb:0f:26:b3:bb:91:45:8e:c6:61:42:2f:b0:d6:fa:
01:95:d2:aa:4b:bb:bd:3b:be:4c:b9:80:12:be:07:
07:11:8f:df:62:fa:32:72:f9:5d:7a:85:ba:f8:cc:
7c:83:0c:31:19:50:df:4c:8c:76:2a:bf:19:86:b6:
db:4c:4e:a3:09:4d:30:32:4a:af:32:95:18:42:aa:
78:f9:75:60:10:ef:bf:c4:2e:a6:b5:8e:9d:1b:9b:
fc:e5:bf:9c:50:69:e0:3a:f0:21:62:f6:18:df:b1:
6c:8e:18:50:ca:0d:b0:0e:66:4c:d8:b5:ea:26:ac:
f1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.godaddy.com/gdig2s1-5558.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114413.1.7.23.1
CPS: http://certificates.godaddy.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.godaddy.com/
CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
X509v3 Authority Key Identifier:
40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
X509v3 Subject Alternative Name:
DNS:utm.aabb.org, DNS:www.utm.aabb.org
X509v3 Subject Key Identifier:
C6:D3:A0:54:5D:A0:4D:DF:B3:3D:BE:D2:0B:A9:DA:53:2C:F2:8E:D4
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Apr 26 14:12:23.346 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:0E:FD:FA:27:86:1E:B1:1F:79:5B:E0:52:
5C:7C:2E:3B:92:8F:A0:71:99:BE:7F:17:17:30:35:D7:
68:85:05:98:02:20:31:24:F0:EE:D2:E3:78:BC:60:A4:
C8:1D:42:C7:9D:89:8A:3F:7E:27:8B:07:04:E8:64:03:
4B:EB:48:96:DC:54
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Apr 26 14:12:23.558 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:93:DF:75:8E:EB:33:5C:BE:39:24:B4:
BD:4C:5D:0F:57:9F:DE:D7:08:76:46:A5:8C:15:4D:AF:
68:C0:D8:0A:76:02:21:00:E4:01:64:47:EE:9D:21:FD:
01:6E:CE:C9:39:04:F7:37:7D:BA:69:09:31:8B:25:E1:
E9:11:4C:EF:43:E5:B8:D4
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Apr 26 14:12:23.670 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:07:0F:C0:66:67:08:1F:BB:FA:1A:EA:A5:
15:52:BA:61:F9:D0:75:7D:23:4D:E6:E6:96:51:2D:55:
2E:84:C6:82:02:20:22:87:97:61:25:33:DF:C1:A5:59:
BE:69:24:9F:2B:CF:E4:01:3C:E5:72:0A:18:CB:A8:48:
9E:42:09:0A:F1:70
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
9d:63:68:60:dd:6d:28:f0:40:db:12:81:fd:6d:b0:1e:65:54:
16:60:85:c2:44:3f:67:a4:ec:b4:29:fa:9c:73:81:28:05:c0:
6a:55:f7:ef:a7:45:19:17:68:2f:18:c2:91:83:79:b0:71:c5:
91:67:a0:2b:5c:43:97:1e:46:c3:26:ef:4f:e0:f4:12:52:5a:
4b:eb:ac:f5:14:1d:07:23:ab:07:db:05:b4:47:5c:57:23:d3:
81:de:9b:7c:29:fa:51:90:69:ab:19:d6:58:2f:f3:57:c7:1f:
54:1f:99:81:98:bd:1b:b8:c6:fe:47:51:27:f9:a0:3d:32:56:
01:1b:02:9e:9f:4e:e9:ca:53:31:a8:43:ed:69:e0:92:a2:2b:
63:52:04:4c:30:15:97:5c:75:86:3d:b6:03:65:fc:cf:54:37:
9e:dc:c5:44:3b:56:a8:b5:fc:38:6a:d0:81:66:5d:72:95:1a:
fb:3d:38:01:f5:3c:f6:97:d7:aa:2a:79:ec:f8:d4:ae:de:d6:
67:e7:ac:33:bb:98:27:b9:35:37:19:24:53:47:24:5c:b0:ac:
45:ac:a2:d7:ef:53:e2:82:5c:cb:64:d4:be:52:89:24:4b:8e:
a7:0c:c2:73:81:e0:ff:8f:b9:bd:a9:ea:63:57:60:15:d3:12:
5d:8b:7e:11
1298793639 | 2024-04-25T12:34:58.2389758080 / tcp
HTTP/1.1 400 Bad Request Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Thu, 25 Apr 2024 12:34:57 GMT Connection: close Content-Length: 334