GeneralInformation

Hostnames	45-125-222-98.dhaka.carnival.com.bd dotlines.com.sg
Domains	carnival.com.bd dotlines.com.sg
Country	Bangladesh
City	Dhaka
Organization	Carnival Internet
ISP	Systems Solutions & development Technologies Limited
ASN	AS63526

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443 3306 3388 33060

-617618899 | 2024-04-16T00:08:45.551149

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.1
Date: Tue, 16 Apr 2024 06:18:05 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-617618899 | 2024-04-17T21:53:19.045492

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.1
Date: Thu, 18 Apr 2024 04:02:40 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            36:57:15:d2:45:fe:a8:b5:1e:f7:4a:03:45:47:67:5f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Oct  3 00:00:00 2023 GMT
            Not After : Nov  2 23:59:59 2024 GMT
        Subject: CN=*.dotlines.com.sg
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c3:02:66:53:c8:57:a3:c3:8d:af:00:96:0b:ea:
                    c4:b3:69:7a:5d:b7:db:85:5c:0d:33:a5:37:49:76:
                    7b:97:8c:30:2b:74:1f:02:ae:5f:b6:5e:78:04:78:
                    f8:20:c7:5e:c9:73:1a:e2:37:92:c0:73:53:56:a1:
                    fc:72:5f:ec:00:aa:df:40:8b:0f:0b:fe:d3:4e:ab:
                    21:ea:78:9b:11:69:06:df:a9:fd:fa:52:61:5f:40:
                    0e:3d:52:e2:6a:c9:fa:ab:ad:d6:ef:46:a3:ce:aa:
                    89:c8:ff:ec:5d:70:4a:e2:4b:d9:28:9c:99:f8:7b:
                    06:92:5f:f3:23:eb:fc:2e:51:fc:e5:71:df:2d:03:
                    6e:8d:99:1a:68:41:69:cf:4d:bd:e4:91:85:5a:a4:
                    f5:b3:f5:ec:35:3e:f3:38:b8:e2:fc:c9:54:1c:ed:
                    5b:b6:fe:19:d4:5c:5f:d9:ee:0e:23:7b:ec:a8:66:
                    f9:47:0b:15:ac:2b:49:f6:8c:65:da:36:8b:10:36:
                    bb:fe:7b:e6:2f:72:2d:77:99:85:d7:b1:d0:7a:e2:
                    d0:23:e1:3b:f9:bc:a2:9b:44:42:31:5c:39:6e:c0:
                    3c:49:94:da:cb:ad:67:d9:d3:c6:ed:0a:82:e6:10:
                    43:9a:e1:ca:06:ec:5c:fe:ef:2b:b2:d8:c0:98:9c:
                    5f:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                1A:C6:42:86:83:33:DF:89:5A:75:E3:54:95:C3:E2:DB:F4:51:F5:8D
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.dotlines.com.sg, DNS:dotlines.com.sg
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct  3 08:35:50.450 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:00:AF:46:26:C5:56:50:B1:59:3D:1F:7A:
                                E3:34:44:4C:00:69:EF:7A:02:12:27:FF:A5:1D:D8:76:
                                4B:4C:56:DE:02:21:00:CB:25:00:E9:A1:A1:58:3A:2C:
                                C6:EF:68:07:D8:34:34:BE:12:AE:04:78:14:B0:D6:96:
                                87:E5:E0:B3:FB:73:8E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct  3 08:35:50.539 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:18:76:2A:B5:8B:CF:7A:36:31:9B:81:EE:
                                E9:F8:D6:45:AF:02:27:41:52:97:FD:3F:49:22:B3:D2:
                                BD:99:86:57:02:20:4C:F6:F0:AC:99:C4:3E:C1:26:7D:
                                16:D4:8C:14:76:3F:3A:5D:55:42:94:2F:3D:31:51:02:
                                DA:D1:F7:86:53:BB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct  3 08:35:50.534 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:2A:3F:33:16:8F:09:38:F3:A4:A9:39:DD:
                                F4:FA:44:C5:2C:F9:0E:60:FA:90:C6:82:15:D3:6C:3B:
                                82:22:EE:5F:02:21:00:CC:10:28:3D:B4:B7:36:6E:00:
                                87:71:A9:42:CD:43:2D:D1:45:AB:FA:00:CF:37:51:02:
                                34:07:07:3B:D6:F9:22
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        c1:29:a6:49:d9:01:32:d9:e5:f3:97:4b:01:22:af:12:b3:49:
        f5:ca:78:8a:d1:3d:b2:3f:f8:3b:75:08:fa:86:2a:4c:b2:53:
        73:11:6d:fb:c1:8d:ce:b7:6f:79:e8:fa:73:de:de:a5:d5:e7:
        e6:71:d3:ff:b0:53:66:e2:be:91:36:af:38:1a:9f:76:2f:31:
        89:fb:5d:13:1e:a9:04:91:2b:5c:6e:44:a3:31:e3:39:cd:17:
        78:49:22:54:fb:76:5e:dc:72:46:6d:15:2e:4a:8c:0c:ff:75:
        89:8a:f0:c0:5e:eb:eb:18:cd:8c:8d:9f:33:d8:9e:94:da:f0:
        8b:0d:50:70:88:69:e5:9e:e6:17:c7:b2:ee:5f:bc:09:be:cf:
        92:73:fe:49:89:99:cd:a1:66:26:c0:64:70:de:1f:54:f9:17:
        eb:2b:bd:50:e0:a8:c3:b0:38:3f:46:14:4f:dd:0e:7d:ac:02:
        c6:7c:f0:07:89:64:d0:8c:72:99:67:11:9b:e8:d3:be:44:41:
        9c:43:70:1d:83:17:7b:8d:71:9e:c3:ca:5e:18:98:1d:3d:65:
        d5:56:6b:ce:0e:14:a2:1f:d1:66:9e:2c:9f:4d:e1:f2:b0:01:
        63:3a:56:34:33:00:9e:7c:91:07:0d:60:a4:f3:bc:fa:77:73:
        5e:7d:13:f9

965328107 | 2024-04-13T02:19:46.288911

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.34
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: caching_sha2_password

-1246004407 | 2024-03-26T22:26:42.579526

3388 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-795948505 | 2024-04-01T22:05:35.713502

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

45.125.222.98

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-617618899 | 2024-04-16T00:08:45.551149
80 / tcp

nginx1.20.1

-617618899 | 2024-04-17T21:53:19.045492
443 / tcp

nginx1.20.1

965328107 | 2024-04-13T02:19:46.288911
3306 / tcp

MySQL8.0.34

-1246004407 | 2024-03-26T22:26:42.579526
3388 / tcp

-795948505 | 2024-04-01T22:05:35.713502
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

45.125.222.98

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-617618899 | 2024-04-16T00:08:45.551149 80 / tcp

nginx1.20.1

-617618899 | 2024-04-17T21:53:19.045492 443 / tcp

nginx1.20.1

965328107 | 2024-04-13T02:19:46.288911 3306 / tcp

MySQL8.0.34

-1246004407 | 2024-03-26T22:26:42.579526 3388 / tcp

-795948505 | 2024-04-01T22:05:35.713502 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

-617618899 | 2024-04-16T00:08:45.551149
80 / tcp

-617618899 | 2024-04-17T21:53:19.045492
443 / tcp

965328107 | 2024-04-13T02:19:46.288911
3306 / tcp

-1246004407 | 2024-03-26T22:26:42.579526
3388 / tcp

-795948505 | 2024-04-01T22:05:35.713502
33060 / tcp