GeneralInformation

Hostnames	ec2-34-250-114-134.eu-west-1.compute.amazonaws.com jasper.escp.eu
Domains	amazonaws.com escp.eu
Cloud Provider	Amazon
Cloud Region	eu-west-1
Cloud Service	EC2
Country	Ireland
City	Dublin
Organization	Amazon Data Services Ireland Limited
ISP	Amazon.com, Inc.
ASN	AS16509

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

1949896279 | 2024-04-15T05:28:58.116376

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Mon, 15 Apr 2024 05:28:58 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://34.250.114.134:443/

-823233189 | 2024-04-15T12:45:00.600044

443 / tcp

HTTP/1.1 302 
Date: Mon, 15 Apr 2024 12:45:00 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx/1.20.1
Cache-Control: private
P3P: CP="ALL"
Set-Cookie: JSESSIONID=9B60571F4EF0825A638990A3A8C0B466; Path=/; HttpOnly;SameSite=None;Secure
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
X-XSS-Protection: 1; mode=block
Set-Cookie: userLocale=en_US;Expires=Tue, 16-Apr-2024 12:45:00 GMT;Path=/;HttpOnly;SameSite=None;Secure
Location: https://cas.escp.eu/cas/login?service=https%3A%2F%2Fjasper.escp.eu%2Fj_spring_security_check

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            08:ef:25:27:c3:5f:18:ff:55:f1:de:e7:a7:47:ec:45
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Feb 11 00:00:00 2024 GMT
            Not After : Mar 12 23:59:59 2025 GMT
        Subject: CN=jasper.escp.eu
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c1:3e:24:55:04:09:65:8a:14:f5:14:87:6d:d5:
                    84:d1:43:35:08:13:d8:8a:a0:e5:47:ec:9a:0d:06:
                    cf:e6:8a:3e:23:b6:b9:1d:af:d4:3f:44:d1:a6:22:
                    9a:6b:b2:cf:b5:e0:55:a4:05:c2:60:09:ee:af:42:
                    f3:f1:78:c2:c9:f5:49:9a:81:79:63:84:4f:de:ac:
                    64:30:fd:19:e2:ed:bc:b8:b9:70:f4:ab:57:8a:69:
                    3d:27:2b:52:12:9a:53:2d:54:a7:94:5b:7d:2f:3f:
                    ed:09:d9:3e:ff:30:cd:72:3c:10:af:78:be:89:3e:
                    8e:ff:9f:d2:be:7c:bb:06:93:91:17:8a:2e:4f:ca:
                    de:71:be:21:04:c9:1c:75:52:b3:30:99:a6:38:04:
                    6d:1b:1a:59:31:9d:9a:50:c7:c6:30:4e:48:06:fc:
                    f9:31:c4:95:ce:ce:49:75:11:d8:aa:01:26:07:e6:
                    18:1f:b9:3a:73:84:a7:33:6d:27:c8:b0:e3:74:33:
                    b7:be:6e:ce:81:e9:b0:42:ae:ae:ee:5e:2a:42:c7:
                    16:a2:87:a7:d5:15:6b:ab:f8:3e:b5:ce:ad:bd:f8:
                    bb:3d:45:58:d1:7d:19:78:b4:ac:24:10:d0:29:ff:
                    ae:47:c9:e5:27:e1:58:b5:a3:af:5b:6e:97:4b:bb:
                    d5:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                73:81:B5:DE:F7:06:4E:20:26:5F:D2:B2:68:08:83:C9:B1:14:1D:8D
            X509v3 Subject Alternative Name: 
                DNS:jasper.escp.eu
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 11 01:01:01.711 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:12:94:44:63:85:73:58:64:24:D8:42:0F:
                                BA:F2:F6:20:03:1D:A7:AF:22:96:7C:CB:5E:E6:84:2E:
                                0B:3B:11:00:02:21:00:82:7C:3B:66:D5:F0:8A:21:4B:
                                23:06:1C:A4:13:BA:13:6A:B4:B4:AC:CA:54:22:D4:5D:
                                AC:B7:13:27:1C:63:B0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Feb 11 01:01:01.692 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8A:D4:24:D7:4A:04:D9:D2:6F:69:27:
                                AC:B6:B4:6C:19:42:F3:7C:6B:82:3B:9B:10:4E:5D:8B:
                                0A:5E:17:38:D9:02:20:5B:DF:D5:D0:1B:C7:1D:A7:FF:
                                B4:91:30:73:79:F5:90:53:63:22:43:10:05:EC:05:DA:
                                34:70:69:42:4A:4B:1C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Feb 11 01:01:01.640 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:85:2E:A5:CA:D7:76:29:C3:CF:B5:72:
                                D3:CE:CE:AF:BC:7C:AC:72:0F:4F:E5:A0:3B:BE:04:9F:
                                F5:9B:16:18:00:02:20:0F:A3:81:70:FA:B9:67:8D:AF:
                                BA:80:B8:BD:FE:48:35:6D:80:01:75:F6:5F:3D:8D:8F:
                                FD:49:17:13:9F:DA:21
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        55:51:5b:25:20:6e:36:e2:3e:92:d8:38:e7:b1:7d:89:77:be:
        64:0b:86:dc:79:c3:9d:30:e9:a0:80:87:33:a0:4f:45:c2:ba:
        64:b2:6d:9b:f4:2d:d2:a5:e7:33:3d:3e:03:a7:e4:15:04:e6:
        45:98:7a:98:30:7e:f0:50:8a:65:99:2d:48:99:7e:99:db:3b:
        46:15:61:d4:64:5b:94:3d:c1:11:a7:d3:81:da:e2:53:cf:30:
        59:96:7e:da:9c:d6:63:6e:54:66:cc:22:5d:4c:fe:cb:e1:c9:
        1c:f2:35:e2:dd:da:90:3f:06:ee:45:5f:b7:db:26:82:42:7d:
        e3:e1:95:d2:e7:2c:a8:62:63:a1:10:e2:3a:49:7e:a4:69:7c:
        ac:a9:f9:ce:42:49:5d:a6:78:4e:66:09:84:93:2f:2d:a8:59:
        cd:d8:0e:d1:73:99:e0:a2:4b:54:46:ca:13:f1:1a:49:ac:57:
        5d:cb:41:ce:77:92:0d:e3:8e:88:9d:18:1a:b7:e9:9c:fb:ea:
        31:f7:23:19:37:cc:36:b4:ce:a5:62:89:90:86:9d:54:40:55:
        06:d5:28:04:e6:d2:6d:a3:fb:18:55:5c:4d:c9:7a:6f:de:d9:
        0c:9c:bc:84:f0:5b:5d:c3:5e:4e:42:7b:ab:cb:47:25:8b:bc:
        e2:88:9d:ef

34.250.114.134

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1949896279 | 2024-04-15T05:28:58.116376
80 / tcp

AWS ELB2.0

-823233189 | 2024-04-15T12:45:00.600044
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

34.250.114.134

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1949896279 | 2024-04-15T05:28:58.116376 80 / tcp

AWS ELB2.0

-823233189 | 2024-04-15T12:45:00.600044 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

1949896279 | 2024-04-15T05:28:58.116376
80 / tcp

-823233189 | 2024-04-15T12:45:00.600044
443 / tcp