GeneralInformation

Hostnames	www.eprice.com.cn www.eprice.com.hk
Domains	eprice.com.cn eprice.com.hk
Country	Taiwan
City	Taipei
Organization	So-net Entertainment Taiwan Limited
ISP	Sony Network Taiwan Limited
ASN	AS18182

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443 50000

772258679 | 2024-04-28T10:09:11.765051

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Sun, 28 Apr 2024 10:09:10 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://www.eprice.com.cn/

0 | 2024-05-09T11:00:22.953120

443 / tcp

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:5a:7a:df:8d:87:09:2c:93:0e:18:c1:8e:0c:0d:28:9d:57
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 30 17:07:54 2024 GMT
            Not After : Jul 29 17:07:53 2024 GMT
        Subject: CN=www.eprice.com.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b7:3e:48:0f:d2:33:f8:b5:92:71:04:09:a9:e5:
                    e4:07:81:c0:5f:80:94:22:2f:e4:aa:0c:77:0c:a4:
                    5a:18:04:28:15:20:3a:4a:ed:62:dc:4f:95:74:3d:
                    e0:b6:b5:d5:31:b0:01:52:c6:f1:42:2d:66:f3:9b:
                    df:cf:06:2d:e3:cb:d3:43:53:d0:3f:ac:0a:ae:ac:
                    fd:45:d2:a2:06:08:e8:cd:66:c2:eb:e2:a7:21:59:
                    5c:da:67:87:8c:80:01:c0:fe:9b:85:3e:3b:72:d0:
                    eb:ef:66:6e:af:17:29:7e:9d:9a:30:a1:47:6a:0a:
                    eb:f0:36:80:a1:9d:6d:f0:10:7d:0d:e9:51:14:4f:
                    ae:76:24:68:7f:f1:3e:f9:c6:e0:85:37:df:27:27:
                    90:4e:5b:f7:6a:34:d8:fe:4b:3f:7c:c6:44:c8:f7:
                    27:72:8d:be:11:aa:39:23:9b:81:c3:d0:aa:38:db:
                    99:a1:51:fa:3d:cb:1b:c3:01:ee:05:84:7c:0c:6a:
                    02:a7:7b:74:a1:af:04:9d:a2:06:35:e5:71:ed:3a:
                    3f:ac:4f:99:8b:da:a1:93:65:c5:27:08:e0:cd:02:
                    08:49:d2:0d:96:ea:fa:79:af:38:1e:d2:11:0b:89:
                    3c:5f:d7:e6:c3:35:60:83:0d:31:63:f6:4d:75:71:
                    af:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                06:B9:C8:92:53:FA:AA:E4:9E:B5:E8:04:08:0A:36:38:A0:7D:3B:F5
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:www.eprice.com.cn
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 30 18:07:54.836 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:31:32:11:60:44:AC:D2:22:81:DC:88:33:
                                42:7F:BB:E5:61:E8:97:A4:0B:A1:A8:89:98:21:21:B0:
                                35:80:22:79:02:21:00:AE:7D:31:D3:89:A4:5B:BB:B0:
                                1F:A3:A8:31:F8:F4:EF:B7:75:14:FA:04:6B:82:AB:6D:
                                1E:E8:06:50:D7:E9:3B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 30 18:07:54.877 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:38:07:85:DB:6C:9D:4A:34:DF:A9:B6:B4:
                                11:F8:1E:BB:D3:C3:9D:EC:92:85:D6:39:99:E5:A4:72:
                                73:64:26:BC:02:21:00:8A:A3:AC:B1:F4:CC:7B:CE:51:
                                4E:0D:8B:BE:F7:A6:A7:11:98:7D:3C:54:EF:BA:62:3F:
                                5B:58:CC:2B:E1:EF:20
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        13:5e:28:ee:41:9f:36:1d:8e:cd:09:4f:ca:54:b3:12:15:fd:
        38:fb:76:7b:3d:b1:c9:a7:0c:e8:99:e5:5c:11:b0:60:ae:f1:
        cb:ba:8f:be:29:dd:fa:cf:53:0c:08:4b:63:34:01:34:b9:48:
        f7:e8:82:20:54:d7:55:1e:b8:71:49:a2:db:f7:23:bd:11:34:
        cf:37:d5:13:a8:20:9a:54:60:14:b3:e6:6b:9f:3c:38:33:c8:
        3f:fc:51:d1:ee:3a:d9:e5:da:fc:8b:41:1f:a6:d4:b0:7f:75:
        55:0a:dd:08:eb:0f:94:50:54:99:40:03:f1:8d:8e:84:4a:fb:
        f1:12:8c:93:d0:26:ef:02:b3:98:79:98:35:f1:6e:38:a7:d0:
        1c:f1:54:53:53:a5:0c:f1:7f:d3:c4:05:16:e8:62:a5:91:2b:
        fb:aa:68:c1:80:db:d4:d4:76:dc:cd:b4:ed:25:66:b8:7f:a2:
        d3:ab:74:b7:66:dc:4e:47:2e:52:aa:46:43:1d:f9:d4:74:50:
        87:9f:c7:9c:43:1b:2e:50:ac:45:bf:a7:7c:95:86:c7:28:26:
        68:f6:93:c0:80:b9:bc:38:84:5f:e2:49:3f:67:a1:23:f1:e6:
        de:5c:cf:2f:0e:20:fd:6f:f2:0e:12:8e:40:7a:2a:0d:e7:a1:
        63:34:a2:bb

1010062498 | 2024-05-11T00:52:25.618941

50000 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.20.1
Date: Sat, 11 May 2024 00:52:25 GMT
Content-Type: text/html
Content-Length: 157
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.20.1</center>
</body>
</html>

219.84.168.188

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

772258679 | 2024-04-28T10:09:11.765051
80 / tcp

nginx1.20.1

0 | 2024-05-09T11:00:22.953120
443 / tcp

1010062498 | 2024-05-11T00:52:25.618941
50000 / tcp

nginx1.20.1

Products

Pricing

Contact Us

219.84.168.188

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

772258679 | 2024-04-28T10:09:11.765051 80 / tcp

nginx1.20.1

0 | 2024-05-09T11:00:22.953120 443 / tcp

1010062498 | 2024-05-11T00:52:25.618941 50000 / tcp

nginx1.20.1

Products

Pricing

Contact Us

772258679 | 2024-04-28T10:09:11.765051
80 / tcp

0 | 2024-05-09T11:00:22.953120
443 / tcp

1010062498 | 2024-05-11T00:52:25.618941
50000 / tcp