Hostnames |
utm.aabb.org www.utm.aabb.org |
Domains | aabb.org |
Country | United States |
City | Gaithersburg |
Organization | Design Data Systems, Inc. |
ISP | Design Data Systems, Inc. |
ASN | AS14011 |
Operating System | Windows |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2014-4078 | 5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability." |
1138219898 | 2024-04-28T03:46:59.78794980 / tcp
HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Tue, 02 Aug 2016 20:41:55 GMT Accept-Ranges: bytes ETag: "856aa04efeecd11:0" Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET Date: Sun, 28 Apr 2024 03:46:58 GMT Content-Length: 701
-286260405 | 2024-04-24T23:15:00.618622161 / udp
SNMP: Versions: 3 Engine Boots: 14 Engineid Data: 80001f888092dfea60aad0b560 Enterprise: 8072 Engine Time: 42 days, 16:52:08
1489525118 | 2024-04-04T21:10:50.931634443 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Thu, 04 Apr 2024 21:10:50 GMT Connection: close Content-Length: 315
Certificate: Data: Version: 3 (0x2) Serial Number: 01:19:16:f1:6c:41:43:0d:89:ad:38:9b:79:23:bd:34 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1 Validity Not Before: Jan 9 00:00:00 2024 GMT Not After : Feb 2 23:59:59 2025 GMT Subject: C=US, ST=Maryland, L=Bethesda, O=American Association of Blood Banks, Corporation, CN=*.aabb.org Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:e6:06:ed:77:db:17:51:d8:46:a4:c6:ca:04:32: 40:80:75:9b:4f:37:ae:a3:2c:bb:cf:76:f5:39:7b: 7b:06:e6:d7:8b:e2:f4:a7:d7:0d:91:45:8e:da:c5: 73:4d:99:cd:e8:d4:41:d7:8b:c8:50:86:e8:90:ff: dd:90:ae:d7:67:13:70:43:8f:64:f5:f9:b8:21:a4: 27:56:b9:cb:19:b5:48:c0:07:81:56:ef:6c:40:97: 66:83:ef:94:c3:53:b6:14:6a:c4:e4:cb:62:08:a8: bd:04:8f:33:07:be:66:06:6c:5c:39:7a:75:4f:9f: fb:0d:ef:23:c1:6b:d1:74:6e:db:dc:9a:b5:80:99: d1:36:ab:ad:c2:ea:8a:f3:49:37:df:0e:22:b5:14: 6b:83:da:bb:56:c7:e5:e4:a6:f7:53:99:66:a0:3e: 61:6c:32:2a:66:5b:63:b5:f1:bd:e6:ac:29:ee:d5: 07:0f:ed:a5:ae:0c:06:d6:45:12:1f:6f:d9:b0:ca: 42:b8:6f:36:4f:db:08:44:61:dc:a9:14:7e:79:dc: dc:02:33:f9:4a:60:b6:b6:6d:88:e6:d4:5c:4d:f2: 0e:b6:93:45:38:30:f6:7c:af:3c:54:51:2d:72:f8: a2:b1:33:31:44:07:8f:ec:97:2a:6e:80:c8:86:ec: 0a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 74:85:80:C0:66:C7:DF:37:DE:CF:BD:29:37:AA:03:1D:BE:ED:CD:17 X509v3 Subject Key Identifier: 07:9F:B1:27:48:C0:1B:89:18:D3:D9:FF:00:87:6B:C2:79:91:4A:05 X509v3 Subject Alternative Name: DNS:*.aabb.org X509v3 Certificate Policies: Policy: 2.23.140.1.2.2 CPS: http://www.digicert.com/CPS X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 CRL Distribution Points: Full Name: URI:http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl Full Name: URI:http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl Authority Information Access: OCSP - URI:http://ocsp.digicert.com CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt X509v3 Basic Constraints: critical CA:FALSE CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Jan 9 07:43:26.261 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:38:2E:BC:E9:65:FE:28:FA:22:6F:64:32: 46:0D:23:AF:87:4A:2C:CC:C3:7B:BF:FC:C2:63:E0:80: 3D:1E:34:AE:02:20:7F:EA:2B:9C:2C:E4:74:BB:57:F1: 65:C1:63:A2:9A:B9:B0:DD:F6:E1:06:BB:17:46:3D:4F: 80:79:1B:5E:FD:2B Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0: 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8 Timestamp : Jan 9 07:43:26.323 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:8A:60:56:17:94:BE:87:27:EC:BE:25: 10:D4:79:84:DE:8B:ED:8D:FB:A2:69:A4:38:4D:11:0F: AD:C4:DB:00:59:02:20:4C:D9:C0:AB:0B:17:B1:27:DC: 6B:8F:2D:52:52:7B:AF:4A:66:A7:3F:10:48:68:09:2F: 54:4E:3D:C3:13:AC:AE Signed Certificate Timestamp: Version : v1 (0x0) Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1: D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50 Timestamp : Jan 9 07:43:26.351 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:31:F9:B2:3C:CE:A3:26:DC:D3:F2:05:06: FF:52:9A:7A:2A:AB:44:1A:05:56:84:7E:06:5C:8F:C7: 79:B2:59:EC:02:20:39:5F:57:C7:49:43:95:53:5C:FC: C4:30:5E:1D:6C:89:5A:50:D4:74:0F:EB:CE:86:9D:4A: 4B:99:06:52:5C:6A Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:10:96:5e:26:ea:22:3e:ee:9d:65:72:32:12:f7:81:99:e1: b6:0a:f5:a9:17:2c:68:8b:b9:ed:50:ac:da:d3:02:de:f5:64: 15:fd:3b:09:3b:fa:f9:4f:6f:52:95:83:51:b0:10:60:f7:08: 98:e4:cd:0c:e4:af:16:68:ac:ea:ef:2b:2b:01:c9:65:e1:9c: 99:12:6e:a9:f9:c0:fa:2b:3e:24:b1:b1:20:4d:8a:66:a9:8a: fc:ae:1b:58:dc:3c:3d:fc:ba:bc:bd:52:de:52:23:74:e8:31: b7:ea:a3:50:7c:09:96:6d:99:f2:d3:fc:35:cc:b2:e7:91:55: 4d:da:dc:61:37:0c:0e:4a:2e:62:be:bf:0a:c1:4a:69:79:7b: 03:be:d2:85:d2:31:67:e9:c5:92:94:38:1f:a3:58:5e:6c:ba: c6:2b:5f:eb:1e:e7:ee:f0:7f:cf:9b:fc:ce:42:ba:89:07:66: e2:6a:7b:c5:67:50:fe:5c:80:48:a6:d0:64:ad:ce:3a:4e:3a: 83:8b:1c:27:6f:b9:22:1d:8f:4a:62:36:5b:71:f3:aa:cd:69: 32:c8:3f:65:10:40:ea:09:0a:d9:21:32:d6:f3:4d:01:4f:63: 20:aa:5c:5a:f5:a9:9f:45:41:b7:4c:7d:74:e4:fb:0a:e4:2d: e5:eb:20:e6
1421698988 | 2024-04-21T23:53:44.886562500 / udp
VPN (IKE) Initiator SPI: 7a786e6273793436 Responder SPI: 693067686d756963 Next Payload: RESERVED Version: 2.0 Exchange Type: DOI Specific Use Flags: Encryption: False Commit: False Authentication: False Message ID: 00000000 Length: 36
1684664771 | 2024-04-26T18:14:23.3915434443 / tcp
HTTP/1.1 200 OK Date: Fri, 26 Apr 2024 18:13:25 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Content-Security-Policy: default-src https: data: ws: wss: blob: 'unsafe-inline' 'unsafe-eval'; worker-src 'self' blob:; frame-ancestors 'self'; X-XSS-Protection: 1; mode=block Content-Type: text/html;charset=utf-8 Expires: Wed, 31 Dec 1969 23:59:59 GMT Cache-Control: no-cache Pragma: no-cache Content-Length: 28318 Set-Cookie: JSESSIONID=1951tov5khqgh1s8vkf4ugfz7m4722; Path=/userportal; Secure; HttpOnly Connection: close
Certificate: Data: Version: 3 (0x2) Serial Number: 8f:64:35:b1:bc:19:96:7b Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2 Validity Not Before: Apr 26 14:12:22 2023 GMT Not After : May 24 07:03:22 2024 GMT Subject: CN=utm.aabb.org Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c4:9d:c2:fc:7d:71:d6:55:62:b1:db:1e:a5:32: 9c:a4:28:1f:b6:34:11:11:82:97:63:e9:dd:bf:da: 4e:54:14:0e:5c:cb:80:c3:41:6c:8b:c8:77:f5:7d: a3:98:6b:c9:3f:ab:85:31:aa:e1:89:17:0c:c2:75: cb:a8:3a:2e:0b:27:bd:93:ff:1a:75:75:2e:17:de: 5d:fc:29:2d:f9:6c:5c:e9:14:0f:2d:81:44:f9:8b: 18:fb:3b:bc:65:7a:7f:ea:c5:c6:22:58:3d:bb:3e: 43:23:19:cb:b3:11:f2:c3:85:5e:b4:e8:a5:f3:a2: b0:3e:78:37:6e:7d:8a:63:d5:e0:24:0b:20:af:86: bb:0f:26:b3:bb:91:45:8e:c6:61:42:2f:b0:d6:fa: 01:95:d2:aa:4b:bb:bd:3b:be:4c:b9:80:12:be:07: 07:11:8f:df:62:fa:32:72:f9:5d:7a:85:ba:f8:cc: 7c:83:0c:31:19:50:df:4c:8c:76:2a:bf:19:86:b6: db:4c:4e:a3:09:4d:30:32:4a:af:32:95:18:42:aa: 78:f9:75:60:10:ef:bf:c4:2e:a6:b5:8e:9d:1b:9b: fc:e5:bf:9c:50:69:e0:3a:f0:21:62:f6:18:df:b1: 6c:8e:18:50:ca:0d:b0:0e:66:4c:d8:b5:ea:26:ac: f1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 CRL Distribution Points: Full Name: URI:http://crl.godaddy.com/gdig2s1-5558.crl X509v3 Certificate Policies: Policy: 2.16.840.1.114413.1.7.23.1 CPS: http://certificates.godaddy.com/repository/ Policy: 2.23.140.1.2.1 Authority Information Access: OCSP - URI:http://ocsp.godaddy.com/ CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt X509v3 Authority Key Identifier: 40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE X509v3 Subject Alternative Name: DNS:utm.aabb.org, DNS:www.utm.aabb.org X509v3 Subject Key Identifier: C6:D3:A0:54:5D:A0:4D:DF:B3:3D:BE:D2:0B:A9:DA:53:2C:F2:8E:D4 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Apr 26 14:12:23.346 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:0E:FD:FA:27:86:1E:B1:1F:79:5B:E0:52: 5C:7C:2E:3B:92:8F:A0:71:99:BE:7F:17:17:30:35:D7: 68:85:05:98:02:20:31:24:F0:EE:D2:E3:78:BC:60:A4: C8:1D:42:C7:9D:89:8A:3F:7E:27:8B:07:04:E8:64:03: 4B:EB:48:96:DC:54 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Apr 26 14:12:23.558 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:93:DF:75:8E:EB:33:5C:BE:39:24:B4: BD:4C:5D:0F:57:9F:DE:D7:08:76:46:A5:8C:15:4D:AF: 68:C0:D8:0A:76:02:21:00:E4:01:64:47:EE:9D:21:FD: 01:6E:CE:C9:39:04:F7:37:7D:BA:69:09:31:8B:25:E1: E9:11:4C:EF:43:E5:B8:D4 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Apr 26 14:12:23.670 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:07:0F:C0:66:67:08:1F:BB:FA:1A:EA:A5: 15:52:BA:61:F9:D0:75:7D:23:4D:E6:E6:96:51:2D:55: 2E:84:C6:82:02:20:22:87:97:61:25:33:DF:C1:A5:59: BE:69:24:9F:2B:CF:E4:01:3C:E5:72:0A:18:CB:A8:48: 9E:42:09:0A:F1:70 Signature Algorithm: sha256WithRSAEncryption Signature Value: 9d:63:68:60:dd:6d:28:f0:40:db:12:81:fd:6d:b0:1e:65:54: 16:60:85:c2:44:3f:67:a4:ec:b4:29:fa:9c:73:81:28:05:c0: 6a:55:f7:ef:a7:45:19:17:68:2f:18:c2:91:83:79:b0:71:c5: 91:67:a0:2b:5c:43:97:1e:46:c3:26:ef:4f:e0:f4:12:52:5a: 4b:eb:ac:f5:14:1d:07:23:ab:07:db:05:b4:47:5c:57:23:d3: 81:de:9b:7c:29:fa:51:90:69:ab:19:d6:58:2f:f3:57:c7:1f: 54:1f:99:81:98:bd:1b:b8:c6:fe:47:51:27:f9:a0:3d:32:56: 01:1b:02:9e:9f:4e:e9:ca:53:31:a8:43:ed:69:e0:92:a2:2b: 63:52:04:4c:30:15:97:5c:75:86:3d:b6:03:65:fc:cf:54:37: 9e:dc:c5:44:3b:56:a8:b5:fc:38:6a:d0:81:66:5d:72:95:1a: fb:3d:38:01:f5:3c:f6:97:d7:aa:2a:79:ec:f8:d4:ae:de:d6: 67:e7:ac:33:bb:98:27:b9:35:37:19:24:53:47:24:5c:b0:ac: 45:ac:a2:d7:ef:53:e2:82:5c:cb:64:d4:be:52:89:24:4b:8e: a7:0c:c2:73:81:e0:ff:8f:b9:bd:a9:ea:63:57:60:15:d3:12: 5d:8b:7e:11
1298793639 | 2024-04-25T12:34:58.2389758080 / tcp
HTTP/1.1 400 Bad Request Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Thu, 25 Apr 2024 12:34:57 GMT Connection: close Content-Length: 334