GeneralInformation

Hostnames	obs.mts.ru infrastructure-184-45.mtsnet.ru
Domains	mts.ru mtsnet.ru
Country	Russian Federation
City	Moscow
Organization	Mobile Telesystems PJSC
ISP	MTS PJSC
ASN	AS13174

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

443

-1015052493 | 2024-06-02T07:57:46.328501

443 / tcp

HTTP/1.1 302 Found
Server: nginx/1.20.1
Date: Sun, 02 Jun 2024 07:57:46 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: /auth/login/
X-Robots-Tag: noindex, nofollow
Vary: Accept-Language, Cookie
Content-Language: en
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: sentrysid=eyJfbmV4dCI6Ii8vYXV0aC9sb2dpbi8ifQ:1sDg66:XlWV22VZydoAd0HicfIZzqSeFJk; expires=Sun, 16 Jun 2024 07:57:46 GMT; HttpOnly; Max-Age=1209600; Path=/
Strict-Transport-Security: max-age=15724800; includeSubDomains
Strict-Transport-Security: max-age=31536000; includeSubDomains

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            22:0b:75:07:12:2b:ad:02:95:3e:a2:ea
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign RSA OV SSL CA 2018
        Validity
            Not Before: Jan 25 07:28:31 2024 GMT
            Not After : Feb 25 07:28:30 2025 GMT
        Subject: C=RU, ST=Moscow, L=Moscow, O=Mobile TeleSystems Public joint-stock company, CN=*.obs.mts.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d7:8f:b4:a6:80:31:b9:f3:d9:dc:72:29:3b:cc:
                    93:82:09:27:57:a6:56:8a:e1:6e:37:de:94:74:93:
                    2e:55:d3:04:80:86:fb:8b:67:8c:1e:b4:01:db:4b:
                    1b:bf:1d:bd:f3:e1:40:71:54:d7:e0:c7:54:78:d0:
                    6d:4b:3f:36:49:50:9f:0f:6d:33:66:80:72:99:e1:
                    29:ca:c6:13:2d:53:e4:99:96:37:cd:7c:c5:48:4f:
                    13:34:59:7f:dd:67:98:24:b3:6e:23:b0:b3:4f:9b:
                    df:ee:48:f8:d7:9e:ad:db:5e:d4:23:e1:1f:81:73:
                    29:9f:0d:91:00:24:b0:37:6b:4a:2b:43:e8:49:34:
                    29:f5:9f:b8:ce:b6:e9:34:5b:63:a8:f2:e2:b8:1f:
                    0b:1b:a1:25:59:d1:03:33:71:2f:c9:79:f1:cc:66:
                    f1:12:a7:04:29:73:cc:f9:7e:7b:b6:a7:3a:67:2f:
                    91:c9:11:0a:1f:0a:d4:37:15:14:3e:e7:11:9f:f1:
                    ac:de:1d:5a:2e:dc:3d:da:97:fb:b8:05:d7:9e:d3:
                    05:6e:5f:02:4c:53:77:e9:77:93:29:f1:44:ca:b4:
                    c9:ee:28:a3:69:3d:89:10:b0:03:0e:1e:3e:b8:a1:
                    78:61:a1:d1:b7:1c:52:df:02:a4:35:7b:ea:3d:8a:
                    07:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt
                OCSP - URI:http://ocsp.globalsign.com/gsrsaovsslca2018
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.2
            X509v3 Subject Alternative Name: 
                DNS:*.obs.mts.ru, DNS:obs.mts.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                F8:EF:7F:F2:CD:78:67:A8:DE:6F:8F:24:8D:88:F1:87:03:02:B3:EB
            X509v3 Subject Key Identifier: 
                29:80:23:2C:9C:A3:31:87:FB:96:3D:0A:E8:C4:ED:98:5A:BB:0F:EE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Jan 25 07:28:35.216 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A6:06:AF:DE:C9:14:51:F9:35:27:3C:
                                1C:50:E4:D0:C9:04:87:69:34:09:5E:2E:C6:4E:D8:5F:
                                6C:96:55:EA:0B:02:20:12:97:F2:F7:1D:53:AE:A0:1D:
                                B2:8B:B5:66:0C:C1:C0:56:33:5E:9F:1F:EC:0F:06:F9:
                                A3:3E:0C:96:DD:B3:68
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Jan 25 07:28:35.391 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B4:C5:7C:2A:A4:F6:F7:B5:16:7A:67:
                                01:12:15:F6:2A:90:72:76:96:FA:7B:B8:34:C2:F7:B3:
                                F1:13:9D:10:46:02:21:00:94:72:72:4E:0A:25:CC:E1:
                                CB:96:28:90:19:D3:1E:4C:1A:88:60:B4:B1:EB:21:14:
                                BB:BE:EC:29:1C:2D:D1:27
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Jan 25 07:28:35.333 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:BD:76:C2:91:BD:CE:D0:F9:8A:C2:E0:
                                29:BD:A6:9F:7F:B3:B6:5E:4D:B9:E2:24:9C:D1:89:B0:
                                13:E9:46:A3:06:02:20:73:8F:D8:30:64:E0:C8:E7:0E:
                                0C:71:FD:CF:38:76:6B:49:01:CA:EF:30:1F:A0:7B:3B:
                                E4:82:3A:9D:63:21:78
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1b:36:f4:07:21:42:fc:49:86:fa:47:71:95:e7:28:df:cc:7f:
        21:c9:80:fd:99:7b:bf:60:f0:14:7d:0c:0c:46:ee:a7:c5:dc:
        a2:51:4b:45:c0:2c:14:0a:94:a4:99:29:57:75:b8:13:5d:27:
        36:4f:3f:b0:5f:d6:f7:a9:3d:00:de:4d:cc:02:34:65:00:8a:
        ac:ed:13:13:73:5f:da:aa:2d:93:03:70:51:0b:5b:93:5e:57:
        7d:d0:69:db:db:62:8c:31:02:95:dc:63:81:64:e4:ee:38:ba:
        30:d1:82:c5:e3:23:63:c3:da:c6:4b:60:78:23:f1:b2:71:6f:
        89:96:4e:27:ea:9f:83:5e:c2:be:d4:2a:16:12:b1:8d:8a:c9:
        9e:36:08:27:2f:37:06:62:83:15:d3:f5:7e:92:96:34:49:0a:
        a9:4c:18:37:ac:5f:20:67:17:86:5f:f6:22:1e:b8:1c:81:8d:
        b2:9d:64:d4:06:6f:42:57:c0:2c:5a:0a:83:f3:40:bc:de:c1:
        38:be:6b:dc:ce:11:e9:14:5f:64:50:c2:13:2c:46:22:76:32:
        27:ef:fa:be:fc:9e:30:69:a9:a2:77:89:73:5c:14:ee:cf:de:
        1d:17:d1:d4:63:b9:c5:a3:66:e2:b5:f0:4d:e4:e8:ba:92:34:
        84:71:6d:ab

213.87.45.184

Last Seen: 2024-06-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1015052493 | 2024-06-02T07:57:46.328501
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

213.87.45.184

Last Seen: 2024-06-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1015052493 | 2024-06-02T07:57:46.328501 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-1015052493 | 2024-06-02T07:57:46.328501
443 / tcp