GeneralInformation

Hostnames	hitv.ru www.hitv.ru
Domains	hitv.ru
Country	Russian Federation
City	Kazan
Organization	MTS OJSC
ISP	MTS PJSC
ASN	AS29194

WebTechnologies

Advertising

DoubleClick Ad Exchange (AdX)

Google AdSense

Analytics

Yandex.Metrika

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-20372	4.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.
CVE-2018-16845	5.8nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.
CVE-2017-7529	5.0Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request.
CVE-2017-20005	7.5NGINX before 1.13.6 has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in 1969 that causes an integer overflow (or a false modification date far in the future), when encountered by the autoindex module.
CVE-2016-1247	7.2The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS, and before 1.10.1-0ubuntu1.1 on Ubuntu 16.10, and the nginx ebuild before 1.10.2-r3 on Gentoo allow local users with access to the web server user account to gain root privileges via a symlink attack on the error log.
CVE-2016-0747	5.0The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution, which allows remote attackers to cause a denial of service (worker process resource consumption) via vectors related to arbitrary name resolution.
CVE-2016-0746	7.5Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (worker process crash) or possibly have unspecified other impact via a crafted DNS response related to CNAME response processing.
CVE-2016-0742	5.0The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (invalid pointer dereference and worker process crash) via a crafted UDP DNS response.
CVE-2015-4000	4.3The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.
CVE-2015-0204	4.3The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the "FREAK" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations.
CVE-2014-3616	4.3nginx 0.5.6 through 1.7.4, when using the same shared ssl_session_cache or ssl_session_ticket_key for multiple servers, can reuse a cached SSL session for an unrelated context, which allows remote attackers with certain privileges to conduct "virtual host confusion" attacks.
CVE-2013-4547	7.5nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI.
CVE-2013-2070	5.8http/modules/ngx_http_proxy_module.c in nginx 1.1.4 through 1.2.8 and 1.3.0 through 1.4.0, when proxy_pass is used with untrusted HTTP servers, allows remote attackers to cause a denial of service (crash) and obtain sensitive information from worker process memory via a crafted proxy response, a similar vulnerability to CVE-2013-2028.
CVE-2013-0337	7.5The default configuration of nginx, possibly 1.3.13 and earlier, uses world-readable permissions for the (1) access.log and (2) error.log files, which allows local users to obtain sensitive information by reading the files.
CVE-2012-2089	6.8Buffer overflow in ngx_http_mp4_module.c in the ngx_http_mp4_module module in nginx 1.0.7 through 1.0.14 and 1.1.3 through 1.1.18, when the mp4 directive is used, allows remote attackers to cause a denial of service (memory overwrite) or possibly execute arbitrary code via a crafted MP4 file.
CVE-2012-1180	5.0Use-after-free vulnerability in nginx before 1.0.14 and 1.1.x before 1.1.17 allows remote HTTP servers to obtain sensitive information from process memory via a crafted backend response, in conjunction with a client request.
CVE-2011-4963	5.0nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via (1) a trailing . (dot) or (2) certain "$index_allocation" sequences in a request.
CVE-2011-4315	6.8Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long response.

OpenPorts

80 443

2022647020 | 2024-05-12T07:24:53.169307

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.1.4
Date: Sun, 12 May 2024 08:11:34 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: hitvboardsession_id=e76851152ad7b1576a20ecf5d1263d94; path=/; domain=.hitv.ru
Set-Cookie: hitvboardwwo_filter=0; expires=Mon, 12-May-2025 08:11:34 GMT; path=/; domain=.hitv.ru

-628912930 | 2024-05-12T07:24:47.457039

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.1.4
Date: Sun, 12 May 2024 08:11:29 GMT
Content-Type: text/html
Content-Length: 184
Connection: keep-alive
Keep-Alive: timeout=20
Location: http://www.hitv.ru/hitvboard/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a2:f9:1d:65:c3:8b:c4:39:d7:76:70:7f:20:af:55:6a
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO High-Assurance Secure Server CA
        Validity
            Not Before: Nov 29 00:00:00 2011 GMT
            Not After : Nov 28 23:59:59 2013 GMT
        Subject: C=RU/postalCode=420100, ST=Tatarstan, L=Kazan/street=Zakieva street 14, O=Open Joint Stock Company "TeleVision and Radio Company " TVT ", OU=Hosted by Rusonyx OOO, OU=PremiumSSL Wildcard, CN=*.hitv.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b1:c3:bb:6e:ff:39:a9:b0:7b:ff:f8:c9:4b:39:
                    39:ac:4d:5c:36:43:23:14:dd:14:21:7a:87:23:c2:
                    63:64:33:02:7d:4e:e5:56:70:41:a5:8c:4f:91:66:
                    59:33:01:6c:46:6d:39:ef:b1:71:6d:bc:69:76:31:
                    f6:6f:e0:35:d9:0a:56:1f:71:b2:d4:3e:3c:f0:48:
                    f1:5d:a4:f7:12:cd:99:c6:3e:08:20:de:5a:2f:c0:
                    82:b9:05:ab:4a:4f:26:26:5b:c2:d4:15:57:83:c1:
                    e1:f0:0b:70:23:95:a3:43:80:70:e3:36:52:6b:3a:
                    4c:a6:23:e2:b7:9d:64:9f:d0:bd:cb:c1:0b:93:31:
                    63:3f:8d:4e:23:ca:9e:64:8c:f3:aa:74:28:07:59:
                    99:23:f0:0d:2d:0d:29:c0:ff:42:6a:70:5c:64:c9:
                    49:2f:ec:4d:15:fb:49:ae:a9:9b:44:ed:29:d3:5f:
                    c9:01:7b:5d:c6:9a:71:42:9e:a4:7f:bc:fe:ca:5b:
                    4b:18:72:51:04:8a:97:84:5e:ff:11:f2:e7:12:bc:
                    c1:b5:ce:f5:80:57:26:45:53:17:f0:c9:c2:2f:2c:
                    08:e9:3d:4a:71:88:e4:c7:e8:64:ed:8c:87:a8:63:
                    41:fa:2b:f1:d5:d5:00:67:9a:a1:47:7d:0a:c4:5c:
                    62:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                3F:D5:B5:D0:D6:44:79:50:4A:17:A3:9B:8C:4A:DC:B8:B0:22:64:6B
            X509v3 Subject Key Identifier: 
                8B:95:B9:B8:48:45:3A:4E:58:8C:18:96:91:56:A8:B3:1C:E7:FA:85
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
                  CPS: https://secure.comodo.com/CPS
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/COMODOHigh-AssuranceSecureServerCA.crt
                OCSP - URI:http://ocsp.comodoca.com
            X509v3 Subject Alternative Name: 
                DNS:*.hitv.ru, DNS:hitv.ru
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        0d:e7:9a:0b:5e:33:71:1e:ac:63:df:ae:43:9e:63:6b:05:e0:
        54:3e:b9:d6:cf:06:4f:d9:d9:7e:20:c0:84:cf:62:ae:23:e8:
        ee:20:e0:0f:e5:10:83:e0:e5:c2:fb:90:91:02:e1:59:0c:5a:
        65:6c:99:37:eb:86:5b:ec:4f:ae:f7:16:05:d4:5e:05:f3:16:
        d8:3d:16:f3:45:c1:17:57:de:c1:ec:e6:53:dc:67:d4:de:7c:
        01:d7:71:c2:20:8d:38:7b:01:15:83:8b:65:50:93:38:0a:5f:
        bd:9e:47:32:7b:db:42:f0:58:6d:00:b4:ba:63:1b:74:8a:10:
        97:27:9d:2f:0c:e9:01:35:ab:59:af:f1:7e:2e:28:4b:55:45:
        ac:a7:8d:93:89:89:d9:9a:62:a5:74:1e:e0:1e:cf:b2:cc:3c:
        db:4c:66:64:f8:a9:99:cf:99:be:d7:fc:1c:64:89:bf:56:82:
        ae:af:f6:29:2b:ed:1a:a2:1b:2e:23:75:9f:04:59:e4:7a:64:
        d1:13:9e:57:4a:57:cd:7e:12:fd:43:35:fb:b9:52:f6:eb:7a:
        e9:d5:0b:70:71:76:61:5b:a1:d8:89:c9:2a:08:e6:63:eb:59:
        50:85:83:64:75:9b:52:a8:bd:69:23:7f:46:31:24:20:aa:72:
        81:2c:c0:d4

217.66.16.46

Last Seen: 2024-05-12

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2022647020 | 2024-05-12T07:24:53.169307
80 / tcp

nginx1.1.4

-628912930 | 2024-05-12T07:24:47.457039
443 / tcp

nginx1.1.4

Products

Pricing

Contact Us

217.66.16.46

Last Seen: 2024-05-12

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2022647020 | 2024-05-12T07:24:53.169307 80 / tcp

nginx1.1.4

-628912930 | 2024-05-12T07:24:47.457039 443 / tcp

nginx1.1.4

Products

Pricing

Contact Us

2022647020 | 2024-05-12T07:24:53.169307
80 / tcp

-628912930 | 2024-05-12T07:24:47.457039
443 / tcp