GeneralInformation

Hostnames	elbeo.de www.elbeo.de
Domains	elbeo.de
Country	Germany
City	Kassel
Organization	Mittwald CM Service GmbH und Co.KG
ISP	Robert Meyer trading as "Mittwald CM Service GmbH & Co. KG"
ASN	AS15817

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51767	7.0OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.
CVE-2008-3844	Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.
CVE-2007-2768	OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

21 22 80 443 3306

1740734134 | 2024-04-17T01:25:48.679948

21 / tcp

220 FTP-Server
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    HOST    CLNT    AUTH*   CCC*    CONF*   
 ENC*    MIC*    PBSZ*   PROT*   TYPE    STRU    MODE    RETR    
 STOR    STOU    APPE    REST    ABOR    USER    PASS    ACCT*   
 REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@172.20.135.88
211-Features:
 CLNT
 EPRT
 EPSV
 HOST
 LANG en-US*
 MDTM
 MFF modify;UNIX.group;UNIX.mode;
 MFMT
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
 REST STREAM
 SIZE
 TVFS
 UTF8
211 End

287423176 | 2024-04-17T01:36:00.258600

22 / tcp

SSH-2.0-OpenSSH_9.6
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQCt6yUknKkwDAefRMvSTH2SEDHt5ibyD/qBjUYvUQC9qk49
10NwgD3LHX6LAfhQ/G0/PZ8z1s44nejHXBORdSjl4DELHVK5f4VNNN/KbcIzjpL/KD0Dl7gPsrpM
WSNJx4cyUYXNXC74bujMxVGyTdrHWwZAvb1ttydo0PrlvZt6qmf8hhMOmY62VgMl9l5Z0OT1gS9B
TTs8BAHCLpyjjzzr/5EwP0co1EkntjfeQlOO5agUX7HVY60FQUJoQzLrc54ldC5GBKZHPT/84Co8
9x/BIFSZ9xVDNJZRtql5o3VdksVFjeqJpAnyCAM4ZRGdYaxu46D6Ki6kYmWeaPgctG1/
Fingerprint: 94:2e:ae:08:a3:30:89:8d:aa:aa:7c:67:1e:74:b9:a9

Kex Algorithms:
	sntrup761x25519-sha512@openssh.com
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	ext-info-s
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

166621347 | 2024-04-17T23:45:07.133924

80 / tcp

HTTP/1.1 410 Gone
Date: Wed, 17 Apr 2024 23:45:06 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Set-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/; domain=www.elbeo.de
Upgrade: h2,h2c
Connection: Upgrade
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

166621347 | 2024-04-18T00:00:51.471959

443 / tcp

HTTP/1.1 410 Gone
Date: Thu, 18 Apr 2024 00:00:50 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Set-Cookie: wordpress_test_cookie=WP%20Cookie%20check; path=/; domain=www.elbeo.de
Upgrade: h2,h2c
Connection: Upgrade
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0e:ab:30:91:3a:71:e4:d6:e5:5e:41:54:1d:65:78:39
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1
        Validity
            Not Before: Mar 15 00:00:00 2024 GMT
            Not After : Apr 15 23:59:59 2025 GMT
        Subject: CN=elbeo.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c8:2a:c9:dc:31:c9:b7:cc:7d:00:c1:b0:7a:7d:
                    d6:0e:5c:87:42:cd:91:52:b0:74:7e:26:9b:27:92:
                    b4:6e:d0:bd:ec:a6:4a:03:cb:56:d4:0a:15:02:d2:
                    8d:e2:33:01:f0:52:c9:1b:dc:9c:8b:83:dd:9f:00:
                    c6:df:01:24:bc:d6:61:e4:96:dc:76:00:10:56:cc:
                    66:68:f8:22:45:e5:f4:9b:29:bc:e7:3d:58:a3:e0:
                    9a:9b:c7:ae:7a:93:47:54:e9:e1:88:08:1d:73:4d:
                    93:f0:a4:0a:e6:74:ec:6b:58:95:86:e5:c5:4b:f6:
                    1d:33:7a:e7:af:4c:e5:cd:5c:39:31:33:f3:a1:7e:
                    b4:23:ec:08:0e:03:11:14:46:d4:01:3e:30:f8:b3:
                    83:3f:a1:dd:fa:ed:32:fc:9d:e3:d2:b0:47:69:b3:
                    cc:4a:11:28:c0:85:6f:c2:e8:89:71:bd:83:29:c8:
                    4c:f7:2e:0d:45:37:e3:48:2d:26:0f:3b:49:7d:03:
                    7c:13:b6:2b:4d:b5:93:76:6b:21:dd:8e:ab:65:18:
                    25:a7:31:3a:e3:f6:3f:73:52:b1:a9:8d:fe:c5:1e:
                    cf:0f:8a:bc:e7:9f:3e:bf:8c:b2:27:c5:76:18:cf:
                    2a:66:ae:b5:db:ce:c4:cb:07:9c:4a:53:80:fc:fb:
                    3a:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                0C:DB:6C:82:49:0F:4A:67:0A:B8:14:EE:7A:C4:48:52:88:EB:56:38
            X509v3 Subject Key Identifier: 
                31:84:4D:93:95:25:75:E8:9C:6C:98:A5:E6:10:FD:38:A8:D7:E8:DD
            X509v3 Subject Alternative Name: 
                DNS:elbeo.de, DNS:www.elbeo.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://cdp.rapidssl.com/RapidSSLTLSRSACAG1.crl
            Authority Information Access: 
                OCSP - URI:http://status.rapidssl.com
                CA Issuers - URI:http://cacerts.rapidssl.com/RapidSSLTLSRSACAG1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar 15 00:12:20.643 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6E:78:70:63:E9:5C:21:83:15:14:78:C6:
                                E3:2E:49:96:5E:4A:4D:61:A9:AE:B6:D5:72:70:8E:A3:
                                3A:02:4E:EE:02:20:6A:02:CB:EB:F2:C5:37:9B:79:C8:
                                10:BD:96:1E:8D:F4:00:D1:12:09:EC:3B:CC:F6:1E:69:
                                C7:73:23:66:38:9D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Mar 15 00:12:20.640 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:03:EB:85:39:1E:3F:A0:DD:C4:B1:94:C5:
                                68:51:51:88:CA:E6:EE:B0:8C:80:58:55:15:79:DC:8E:
                                13:5A:7C:11:02:20:41:1C:CB:0E:9D:EB:DC:65:70:25:
                                89:7B:61:87:2D:6E:4D:E0:AE:67:AE:D2:9B:B5:B1:12:
                                F5:D2:46:A9:BE:58
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Mar 15 00:12:20.658 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A9:FF:E9:03:75:84:EB:95:EF:44:63:
                                54:48:0D:D4:6F:76:28:08:DF:3A:7A:84:18:97:D1:08:
                                82:7D:F1:B1:D8:02:21:00:E4:5A:19:D7:15:76:2A:7E:
                                88:61:01:1F:A5:0D:F9:E2:C0:6D:7C:6E:2F:D5:FD:73:
                                D7:6C:2D:7A:94:11:0F:22
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1e:46:a1:5d:b9:ed:11:0f:18:66:bb:27:2c:77:c7:56:ac:eb:
        1a:bb:c6:1b:d8:1c:d0:39:82:0f:12:35:ec:57:04:da:93:10:
        4a:97:37:5e:0d:b2:73:09:a8:4d:79:7b:ac:e6:c3:a3:66:d2:
        e4:4f:81:74:09:45:4f:aa:00:1d:d2:08:a1:b2:25:b8:d9:b8:
        d3:77:a2:51:00:44:17:69:55:bd:8d:3b:dd:28:66:40:2f:35:
        7e:c0:11:63:7c:46:e0:43:0f:15:4b:f3:c4:20:5e:09:77:5b:
        d7:f9:e4:5c:de:ef:27:9e:b1:88:21:01:b2:57:28:40:66:2f:
        59:8a:c9:be:73:a7:96:3e:a8:ac:11:31:fb:76:57:46:d4:af:
        cf:73:cc:99:ce:ad:07:92:73:40:04:c1:20:f4:37:c0:34:ac:
        82:78:25:f5:6f:cc:50:e0:24:b2:2b:1f:9f:1a:86:be:17:4a:
        18:eb:68:d8:ab:2b:cc:fa:67:1c:67:ac:78:fc:b9:03:ce:71:
        f4:9c:95:38:3e:d0:e6:62:78:47:ab:d6:f9:71:47:28:be:c0:
        5f:89:8b:b8:4c:4c:5b:a0:3e:ba:e8:4d:ee:50:26:34:7e:bb:
        87:30:08:32:38:e1:dd:11:3b:2d:36:8a:a9:34:a0:1e:c2:3e:
        56:40:b7:72

-1262069741 | 2024-04-17T01:23:39.290154

3306 / tcp

MySQL:
  Error Message: Host '224.227.158.118' is not allowed to connect to this MySQL server
  Error Code: 1130

37.202.2.13

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1740734134 | 2024-04-17T01:25:48.679948
21 / tcp

287423176 | 2024-04-17T01:36:00.258600
22 / tcp

OpenSSH9.6

166621347 | 2024-04-17T23:45:07.133924
80 / tcp

Apache httpd

166621347 | 2024-04-18T00:00:51.471959
443 / tcp

Apache httpd

-1262069741 | 2024-04-17T01:23:39.290154
3306 / tcp

MySQL

Products

Pricing

Contact Us

37.202.2.13

Last Seen: 2024-04-18

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1740734134 | 2024-04-17T01:25:48.679948 21 / tcp

287423176 | 2024-04-17T01:36:00.258600 22 / tcp

OpenSSH9.6

166621347 | 2024-04-17T23:45:07.133924 80 / tcp

Apache httpd

166621347 | 2024-04-18T00:00:51.471959 443 / tcp

Apache httpd

-1262069741 | 2024-04-17T01:23:39.290154 3306 / tcp

MySQL

Products

Pricing

Contact Us

1740734134 | 2024-04-17T01:25:48.679948
21 / tcp

287423176 | 2024-04-17T01:36:00.258600
22 / tcp

166621347 | 2024-04-17T23:45:07.133924
80 / tcp

166621347 | 2024-04-18T00:00:51.471959
443 / tcp

-1262069741 | 2024-04-17T01:23:39.290154
3306 / tcp