GeneralInformation

Hostnames	ec2-34-250-0-22.eu-west-1.compute.amazonaws.com travelhook.com
Domains	amazonaws.com travelhook.com
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Windows

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2009-2521

5.0Stack consumption vulnerability in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows remote authenticated users to cause a denial of service (daemon crash) via a list (ls) -R command containing a wildcard that references a subdirectory, followed by a .. (dot dot), aka "IIS FTP Service DoS Vulnerability."

CVE-2008-1446

9.0Integer overflow in the Internet Printing Protocol (IPP) ISAPI extension in Microsoft Internet Information Services (IIS) 5.0 through 7.0 on Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, and Server 2008 allows remote authenticated users to execute arbitrary code via an HTTP POST request that triggers an outbound IPP connection from a web server to a machine operated by the attacker, aka "Integer Overflow in IPP Service Vulnerability."

OpenPorts

80 443

-689296527 | 2024-04-02T23:04:09.238519

80 / tcp

HTTP/1.1 301 Moved Permanently
Content-length: 0
Location: https://34.250.0.22/
Connection: close

-2106594172 | 2024-04-05T10:16:46.656118

443 / tcp

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Server: Microsoft-IIS/7.0
Date: Thu, 06 Jun 2013 03:51:16 GMT
Connection: close
Content-Length: 0

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a1:0e:dd:34:9e:48:5f:0f:51:59:b4:70:5c:07:0f:d9
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Organization Validation Secure Server CA
        Validity
            Not Before: Mar 24 00:00:00 2015 GMT
            Not After : Mar 23 23:59:59 2020 GMT
        Subject: C=US/postalCode=10013, ST=NY, L=NEW YORK/street=99 HUDSON ST., 9TH FLOOR, O=HOOKLOGIC, OU=HOOKLOGIC, OU=Hosted by INetU, Inc., OU=PremiumSSL Wildcard, CN=*.travelhook.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bb:d9:ae:70:aa:aa:29:d9:d3:df:dd:cc:ed:53:
                    ae:46:b5:7f:28:eb:fa:ba:6f:30:32:f3:51:73:2a:
                    12:d8:7e:5c:b3:fb:6e:0e:a8:d3:5c:bb:25:e2:d7:
                    e9:3c:39:5d:71:18:2a:07:eb:ea:c6:12:10:8b:5c:
                    ae:90:f2:f5:8c:e0:fb:07:a0:dc:0b:d1:25:57:39:
                    3c:09:93:dc:76:d0:b9:fd:dc:3c:e6:e7:01:4b:3f:
                    bd:9c:a0:89:b8:49:66:ea:71:1c:ed:45:91:b7:13:
                    36:f2:31:6e:30:e0:3d:9f:00:ad:92:87:df:c8:32:
                    77:57:26:6a:e5:54:96:7c:ba:52:49:d6:53:10:83:
                    4f:42:91:95:8c:19:b2:48:3c:e4:54:59:d1:d0:2e:
                    d7:6f:a5:7d:f7:50:5a:8e:02:38:4f:0c:3e:ea:65:
                    bf:88:a8:8e:fa:61:82:7f:c1:96:1d:2f:11:c4:41:
                    19:ef:5b:1c:d2:c1:b1:96:8e:d0:95:af:ef:08:a8:
                    ea:17:49:92:72:cc:d1:ea:76:fa:94:8c:17:7b:33:
                    80:13:c3:da:72:cb:23:24:aa:be:c0:18:8a:58:69:
                    13:d2:7b:fa:0e:01:d8:f2:c5:04:49:e5:40:7a:de:
                    16:cf:0f:a8:5f:10:b8:7b:b8:f8:29:b0:5d:64:17:
                    1c:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                9A:F3:2B:DA:CF:AD:4F:B6:2F:BB:2A:48:48:2A:12:B7:1B:42:C1:24
            X509v3 Subject Key Identifier: 
                F3:52:92:BF:1F:BE:FC:18:0D:4D:7C:74:95:24:19:90:7B:26:A6:0D
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
                  CPS: https://secure.comodo.com/CPS
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/COMODORSAOrganizationValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.comodoca.com
            X509v3 Subject Alternative Name: 
                DNS:*.travelhook.com, DNS:travelhook.com
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        95:9b:48:c0:ef:99:04:57:09:2b:dd:a4:d5:35:06:d9:db:f1:
        2a:91:90:20:d9:cd:a3:d4:3f:19:ce:70:c3:0c:3c:2d:9a:a6:
        a9:ce:27:5f:78:aa:db:16:05:22:75:02:30:d2:32:d6:79:69:
        a4:ea:1d:f3:b0:70:e1:bd:71:80:11:94:cf:49:53:36:41:40:
        80:14:dd:46:a7:f9:66:cb:eb:cc:c8:43:ed:6d:27:f6:ef:ab:
        63:c8:f5:75:d4:b8:cd:b4:76:8c:3f:da:cf:ec:a1:26:53:1d:
        b4:ae:e0:bd:f0:a5:ff:31:48:9f:73:db:4c:0a:a4:55:f1:f6:
        d3:af:ad:6e:13:1c:5c:2d:93:51:05:e4:3a:db:e5:94:2e:e5:
        46:4f:e4:cd:7b:0d:99:45:72:60:69:fa:36:ad:0b:72:a4:e1:
        66:bc:4c:31:be:21:6b:e1:a5:7f:6e:f5:3c:11:a5:cb:b2:51:
        42:53:2e:a5:8a:25:d5:cb:43:a7:de:f0:3b:1f:f8:4c:2c:72:
        e1:9b:c1:23:6a:b3:3f:6c:bf:60:8b:25:c7:ed:f3:cb:06:a4:
        06:01:51:65:22:45:f2:2a:c1:59:29:2c:63:e1:db:99:13:2f:
        26:b2:de:16:96:8a:8c:1b:b3:ec:99:1b:9a:dd:94:64:82:a7:
        02:68:93:08

34.250.0.22

Last Seen: 2024-04-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-689296527 | 2024-04-02T23:04:09.238519
80 / tcp

-2106594172 | 2024-04-05T10:16:46.656118
443 / tcp

Microsoft IIS httpd7.0

Products

Pricing

Contact Us

34.250.0.22

Last Seen: 2024-04-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-689296527 | 2024-04-02T23:04:09.238519 80 / tcp

-2106594172 | 2024-04-05T10:16:46.656118 443 / tcp

Microsoft IIS httpd7.0

Products

Pricing

Contact Us

-689296527 | 2024-04-02T23:04:09.238519
80 / tcp

-2106594172 | 2024-04-05T10:16:46.656118
443 / tcp