GeneralInformation

Hostnames	ns3362585.ip-37-187-73.eu api.sebanguey.com
Domains	ip-37-187-73.eu sebanguey.com
Country	France
City	Calais
Organization	OVH SAS
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 137 443 445 5005 5010 5432

-367696012 | 2024-05-21T09:14:58.934443

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPEo2KTOVPCP/7DAkzCFILAq
p7+GQp+SCu5HTqG6RbyPBPLUIvEo+dLfbh41Y0TKAOiD2CzFk/aQyGhqJvX+lUA=
Fingerprint: bf:43:51:3f:e8:64:b4:b2:a5:6d:6a:ca:b2:f5:8e:1a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-19T12:32:04.061690

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 19 May 2024 12:32:04 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 11 Sep 2023 21:26:14 GMT
Connection: keep-alive
ETag: "64ff85f6-264"
Accept-Ranges: bytes

-319297491 | 2024-05-15T11:48:54.006454

137 / udp

NetBIOS Response:
  Server Name: NS3362585
  MAC Address: 00:00:00:00:00:00
  Names:
    NS3362585 <0x0>
    NS3362585 <0x3>
    NS3362585 <0x20>
    \x01\x02__MSBROWSE__\x02 <0x1>
    WORKGROUP <0x0>
    WORKGROUP <0x1d>
    WORKGROUP <0x1e>
  Additional Interfaces:
    192.168.122.1
    172.17.0.1

-311114462 | 2024-05-19T16:06:44.013758

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 19 May 2024 16:06:43 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 12
Connection: keep-alive
Vary: Origin
Access-Control-Allow-Origin: *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d3:bb:fc:bf:1a:68:73:34:fe:fe:da:88:a6:8a:ee:87:d4
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May 12 20:30:56 2024 GMT
            Not After : Aug 10 20:30:55 2024 GMT
        Subject: CN=api.sebanguey.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:8d:38:85:8c:ca:4f:41:c7:f8:d4:62:5a:c4:05:
                    16:4a:c4:83:d3:e1:9d:60:49:d5:96:1b:72:82:d0:
                    c2:21:2a:7d:65:2b:2a:cb:87:22:30:bb:57:10:a7:
                    f2:6e:fb:d9:54:3c:fb:8f:b0:e6:9a:8f:d4:8d:5b:
                    4e:e0:27:7d:72
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                7E:64:84:4A:47:7D:67:D8:62:E2:A4:5A:C8:E6:38:2C:87:0E:0B:A0
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.sebanguey.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May 12 21:30:56.889 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FB:DF:56:ED:3B:55:AD:58:DC:44:6D:
                                84:E5:16:CD:F1:46:B3:1E:15:AF:D5:C9:FA:7E:AD:DE:
                                F9:9F:1E:CA:2D:02:20:37:81:74:4E:80:E7:C3:DB:31:
                                EA:64:F8:BD:9D:58:B1:AB:B1:EF:8F:15:91:E3:8B:9B:
                                3D:35:30:86:06:2D:5C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : May 12 21:30:57.076 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:46:34:99:3A:5C:29:54:52:A5:68:F8:FC:
                                80:16:02:3B:EF:C6:5B:85:48:40:60:9D:C1:16:37:3A:
                                04:F6:B3:73:02:21:00:A7:80:CE:DB:4C:DA:30:AE:DB:
                                28:A7:4A:E8:E5:41:1A:55:90:CF:64:61:66:3F:2B:3C:
                                E2:41:CB:1D:1C:35:CE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        50:5d:7f:94:5d:b7:c0:bd:b6:da:48:16:95:8f:71:3e:11:14:
        70:f2:f9:16:02:96:7b:33:ae:00:ff:92:ee:4c:54:91:14:0a:
        11:c8:08:b7:1e:3d:e7:68:e3:78:bf:c3:7c:1b:a8:a0:7e:ee:
        14:c2:64:39:da:ba:b2:29:42:b2:56:1d:f6:1c:1d:fe:d3:3d:
        eb:17:a7:84:32:6a:32:d9:81:3d:e0:35:78:41:17:f4:bf:cd:
        16:b0:ca:77:2d:14:cd:e8:89:fd:8a:a0:bd:b4:8f:81:26:db:
        2f:8a:78:50:d6:73:d5:17:d5:35:bd:b4:c6:eb:2d:bd:33:a2:
        6a:2f:e7:e5:07:46:62:c2:a2:51:9a:58:9e:f9:23:04:a0:5b:
        ac:fe:77:43:ba:48:27:e3:5f:85:d6:c1:a0:74:85:4f:fb:09:
        90:59:17:65:d2:b0:69:a6:cd:34:17:5d:a4:db:19:1a:66:9a:
        fd:bb:09:7b:96:d0:0c:4c:92:7d:13:36:f3:33:30:b7:d3:bf:
        f0:d2:9f:78:d5:86:ad:2a:d4:97:58:98:a4:43:c2:1f:c9:55:
        ac:1b:38:7e:5e:72:5e:3f:42:b0:7e:a2:7b:0a:aa:e0:14:bf:
        cb:37:14:61:fe:a6:88:b3:94:65:5d:42:22:ef:85:82:92:34:
        f1:bf:84:01

393385564 | 2024-05-14T14:51:15.971646

445 / tcp

SMB Status:
  Authentication: disabled
  SMB Version: 2
  Capabilities: raw-mode

Shares
Name                 Type       Comments
------------------------------------------------------------------------
print$               Disk       Printer Drivers
IPC$                 IPC        IPC Service (ns3362585 server (Samba, Ubuntu))
PDF                  Printer    PDF

-311114462 | 2024-05-14T07:00:14.980753

5005 / tcp

HTTP/1.1 404 Not Found
Date: Tue, 14 May 2024 07:00:14 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 12
Vary: Origin
Access-Control-Allow-Origin: *

-311114462 | 2024-04-24T04:41:38.495989

5010 / tcp

HTTP/1.1 404 Not Found
Date: Wed, 24 Apr 2024 04:41:37 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 12
Vary: Origin
Access-Control-Allow-Origin: *

1860407089 | 2024-05-18T06:59:30.897320

5432 / tcp

PostgreSQL
FATAL:  no pg_hba.conf entry for host "224.202.85.29", user "postgres", database "template0", SSL encryption
FATAL:  no pg_hba.conf entry for host "224.202.85.29", user "postgres", database "template0", no encryption

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4f:72:14:67:b5:d9:7c:cb:a1:cd:7b:38:5d:77:cc:46:5b:70:21:97
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ns3362585.ip-37-187-73.eu
        Validity
            Not Before: Sep 11 20:07:45 2023 GMT
            Not After : Sep  8 20:07:45 2033 GMT
        Subject: CN=ns3362585.ip-37-187-73.eu
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ac:49:5d:e7:c2:c2:71:fb:6e:66:a8:fb:61:44:
                    81:c4:21:32:81:2b:92:52:f1:44:cd:8a:9c:4a:6c:
                    53:80:7f:c6:ad:1c:0d:d0:06:4a:3d:5f:44:82:dc:
                    47:31:ea:ba:40:be:ba:90:68:89:8e:7c:0a:84:00:
                    b9:a8:db:d5:58:06:49:6e:68:f9:28:14:1b:9b:0b:
                    e1:5d:d4:8d:9d:12:73:37:14:c3:30:43:16:a5:27:
                    94:6d:80:08:58:87:f3:b2:fb:5f:9b:83:f9:ff:68:
                    30:d4:4f:1d:56:ea:71:ae:38:b6:ed:f1:a4:0e:c3:
                    fe:84:07:0b:83:7a:97:b7:ed:45:5a:12:81:71:7f:
                    7a:e7:fe:1b:19:53:2e:a4:9b:96:00:99:48:98:21:
                    6f:cf:2a:a4:9d:1b:ef:40:73:5b:0f:37:89:5f:76:
                    64:3c:e7:ab:ab:64:eb:95:58:30:77:cb:e3:c9:fa:
                    8a:df:c9:0b:2f:c1:6a:d6:38:9e:d2:ef:91:d6:18:
                    18:cb:ca:6d:1d:03:b3:d1:68:bb:8e:9a:8d:f5:0f:
                    47:0c:df:f3:41:ac:aa:35:5c:43:52:4f:aa:96:ce:
                    1b:6f:45:ac:5f:07:92:44:46:73:9e:93:20:06:49:
                    c1:2c:13:fe:14:ee:2d:43:e9:74:f4:a1:b4:5d:f4:
                    3c:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:ns3362585.ip-37-187-73.eu
            X509v3 Subject Key Identifier: 
                E6:63:3D:DC:20:45:16:FE:4D:EB:4C:50:4C:5C:DC:9C:41:4C:8B:4C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        69:5e:c1:65:2e:b5:9f:78:08:49:d4:5f:d6:90:ba:66:9d:6f:
        46:9e:7d:d5:e2:96:c4:ee:22:d3:cc:8e:bf:92:45:dc:61:bb:
        ae:b7:49:38:81:fe:31:11:b6:32:49:33:5b:43:a7:03:d1:f4:
        05:ab:bb:91:74:c7:3d:6e:f0:d8:bd:de:b1:b4:ef:d2:41:76:
        22:82:26:10:76:0c:8a:25:88:d0:00:22:c4:5a:71:d1:5a:cb:
        8c:68:b6:db:44:97:10:b3:5a:8b:84:f7:df:84:5c:78:c3:ed:
        06:a1:8c:f2:7a:a8:ea:8d:84:d3:91:82:59:50:0d:82:cb:7a:
        e2:ce:80:52:25:21:e1:86:e5:65:8e:1d:ea:4a:b5:ac:9c:09:
        a8:1b:ae:44:c1:75:24:30:3e:4d:a4:5d:ff:b1:00:4a:26:83:
        6d:05:c6:d4:7e:c1:20:48:16:35:51:38:aa:35:29:9f:67:3d:
        94:ca:4d:a6:b3:65:63:ed:71:a2:df:73:13:2d:8b:bf:3d:76:
        e8:22:cc:dc:0c:e7:2c:8b:3c:68:64:a5:a6:ae:63:09:48:14:
        f1:4f:a9:ac:92:35:2a:81:e3:67:8d:09:7b:b0:b4:7d:a4:06:
        ca:73:2f:14:36:ef:7f:eb:43:e6:c9:94:4e:9c:83:47:99:83:
        19:1d:b5:fe

37.187.73.85

Last Seen: 2024-05-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-367696012 | 2024-05-21T09:14:58.934443
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-05-19T12:32:04.061690
80 / tcp

nginx1.18.0

-319297491 | 2024-05-15T11:48:54.006454
137 / udp

-311114462 | 2024-05-19T16:06:44.013758
443 / tcp

nginx1.18.0

393385564 | 2024-05-14T14:51:15.971646
445 / tcp

-311114462 | 2024-05-14T07:00:14.980753
5005 / tcp

-311114462 | 2024-04-24T04:41:38.495989
5010 / tcp

1860407089 | 2024-05-18T06:59:30.897320
5432 / tcp

PostgreSQL14.10 - 14.11

Products

Pricing

Contact Us

37.187.73.85

Last Seen: 2024-05-21

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-367696012 | 2024-05-21T09:14:58.934443 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1651973090 | 2024-05-19T12:32:04.061690 80 / tcp

nginx1.18.0

-319297491 | 2024-05-15T11:48:54.006454 137 / udp

-311114462 | 2024-05-19T16:06:44.013758 443 / tcp

nginx1.18.0

393385564 | 2024-05-14T14:51:15.971646 445 / tcp

-311114462 | 2024-05-14T07:00:14.980753 5005 / tcp

-311114462 | 2024-04-24T04:41:38.495989 5010 / tcp

1860407089 | 2024-05-18T06:59:30.897320 5432 / tcp

PostgreSQL14.10 - 14.11

Products

Pricing

Contact Us

-367696012 | 2024-05-21T09:14:58.934443
22 / tcp

1651973090 | 2024-05-19T12:32:04.061690
80 / tcp

-319297491 | 2024-05-15T11:48:54.006454
137 / udp

-311114462 | 2024-05-19T16:06:44.013758
443 / tcp

393385564 | 2024-05-14T14:51:15.971646
445 / tcp

-311114462 | 2024-05-14T07:00:14.980753
5005 / tcp

-311114462 | 2024-04-24T04:41:38.495989
5010 / tcp

1860407089 | 2024-05-18T06:59:30.897320
5432 / tcp