GeneralInformation

Hostnames	host120-36-61-217.serverdedicati.aruba.it static.open.online
Domains	aruba.it open.online
Country	Italy
City	Ponte San Pietro
Organization	Aruba S.p.A. - Dedicated servers
ISP	Aruba S.p.A.
ASN	AS31034

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

772258679 | 2024-05-08T10:27:15.690501

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Wed, 08 May 2024 10:27:14 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://static.open.online/

-1712486968 | 2024-05-15T03:26:31.372901

443 / tcp

HTTP/1.1 404 Page not Found
Server: nginx
Date: Wed, 15 May 2024 03:26:31 GMT
Content-Length: 0
Connection: keep-alive
X-Varnish: 1006404048
Access-Control-Allow-Origin: *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:4a:27:68:1a:ef:c2:76:dc:a5:74:e4:12:c8:e9:8d:87:ab
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 19 16:28:16 2024 GMT
            Not After : Jul 18 16:28:15 2024 GMT
        Subject: CN=static.open.online
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b3:d1:98:c0:7d:0f:9d:9f:cb:d4:02:65:cd:67:
                    67:4a:a2:6d:f6:c5:52:0d:28:cd:a9:7c:71:9f:45:
                    6c:46:7b:a2:1a:34:75:a5:6a:86:c0:f0:a8:53:13:
                    18:e4:18:b0:a0:84:e5:13:ea:3f:93:87:e4:93:e0:
                    21:06:86:b7:bf:4d:ad:45:da:cf:fb:e5:ca:12:6b:
                    5c:0d:8b:52:21:59:ca:32:b2:ee:41:67:40:58:57:
                    27:46:da:bc:92:2c:00:30:c3:70:89:1b:bd:32:eb:
                    19:fc:ee:30:fc:63:06:a9:ff:a7:f2:5d:1d:a2:d7:
                    19:b3:23:00:e7:af:db:70:5a:ed:62:e0:2b:39:e3:
                    75:cb:9d:b9:aa:1d:5e:f9:43:f6:03:39:cc:6e:18:
                    ed:8a:ec:03:21:0e:80:0c:a2:6e:f2:69:66:3d:ba:
                    d6:99:e4:75:35:b5:13:a2:8d:d3:ca:c9:1a:97:df:
                    04:97:93:5b:2f:33:2c:3c:b7:33:d8:07:f7:01:f6:
                    4d:05:17:69:86:6a:bf:7b:a5:ad:be:6d:fb:59:40:
                    74:7a:e4:58:9e:e2:56:d6:23:23:72:72:53:93:ec:
                    8a:59:ef:68:57:ef:d4:ac:9e:28:ca:93:45:2f:fa:
                    1e:24:84:42:a7:58:43:61:37:af:9d:80:4f:5f:96:
                    92:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BE:08:68:C2:9F:2F:98:C2:F9:9B:D3:9D:10:49:20:E3:76:7C:52:5C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:static.open.online
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 19 17:28:16.677 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:66:4C:54:E5:6E:96:21:58:3C:A3:B5:C6:
                                5C:C7:16:B1:43:C0:E6:1F:52:53:22:13:1B:F5:D1:4D:
                                D9:60:77:7B:02:20:11:9D:DC:94:B5:81:43:F5:7C:92:
                                0D:15:94:BC:E8:B2:5B:24:D2:B2:8B:73:CD:27:55:59:
                                5A:40:91:05:03:40
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 19 17:28:16.666 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E7:DA:CD:EA:7C:F1:94:64:E1:FD:A5:
                                F6:B3:4B:C6:C6:9C:52:7D:9E:0A:9C:AA:EF:E1:55:11:
                                5B:99:B4:77:4D:02:20:4D:0E:3C:8F:91:0D:C4:6B:C9:
                                67:97:6F:F8:BF:DC:CA:92:9B:8A:88:BD:AD:BC:A5:D6:
                                C9:AF:66:5B:06:27:FD
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a5:3d:68:60:c9:47:6d:46:af:85:88:9e:32:79:45:79:c1:32:
        6c:f8:67:72:9f:c5:ac:c6:d0:2d:e5:e5:34:6b:1d:59:1b:24:
        ff:7e:95:2f:1d:c6:ea:66:77:86:36:9f:e3:30:7b:8e:bd:89:
        3a:13:b7:3c:4d:f1:dc:8a:f3:c6:5a:e6:4e:9e:87:81:a5:ab:
        82:9e:d2:de:f0:1f:4f:35:57:09:6b:a9:bf:9d:ce:47:76:08:
        c5:e9:c1:95:af:1a:dd:5f:fd:ea:12:4a:57:41:46:28:e0:93:
        7d:0c:56:9f:40:d9:ae:15:d8:26:6d:a1:7d:39:02:5d:1b:48:
        ef:4e:d6:de:a0:7f:4c:68:97:82:34:65:f6:c5:18:93:b0:0d:
        a4:c8:ce:07:b5:77:4b:c1:48:ad:4b:a6:e7:84:a6:b9:21:69:
        6a:96:85:4c:04:61:62:5a:18:a2:7b:f1:c2:d9:f5:77:19:0c:
        d4:ab:12:d1:f4:49:dd:aa:54:21:89:21:a1:94:1b:9b:61:92:
        d1:53:2d:ce:0c:b3:fd:69:ef:99:57:92:98:6c:ff:ac:22:9b:
        75:94:b8:7c:c4:57:b2:28:85:47:1a:a1:95:be:2e:c5:1d:f7:
        82:cc:ae:83:64:00:74:c7:6a:7c:63:b5:16:b7:eb:7a:b8:18:
        72:5d:28:b6

217.61.36.120

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

772258679 | 2024-05-08T10:27:15.690501
80 / tcp

nginx1.20.1

-1712486968 | 2024-05-15T03:26:31.372901
443 / tcp

nginx

Products

Pricing

Contact Us

217.61.36.120

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

772258679 | 2024-05-08T10:27:15.690501 80 / tcp

nginx1.20.1

-1712486968 | 2024-05-15T03:26:31.372901 443 / tcp

nginx

Products

Pricing

Contact Us

772258679 | 2024-05-08T10:27:15.690501
80 / tcp

-1712486968 | 2024-05-15T03:26:31.372901
443 / tcp