Hostnames |
45-89-239-226.faraso.org horsana.club www.horsana.club |
Domains | faraso.org horsana.club |
Country | Iran, Islamic Republic of |
City | Shiraz |
Organization | Faraso Samaneh Pasargad Ltd. |
ISP | Faraso Samaneh Pasargad Ltd. |
ASN | AS57497 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-44487 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
CVE-2021-3618 | 5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-23017 | 6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact. |
-1396193518 | 2024-05-14T17:29:14.60886522 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBBscce/97fkSXBltNQmfDpVh /wf1T6Hw1kf9BXwnXYQYLjN51n3aBrcg5tWr0J4eJ6+BttKWdfcJBThbLIOPDtM= Fingerprint: 76:72:38:78:ee:83:ec:97:3f:90:41:63:db:aa:72:b3 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
1651973090 | 2024-05-03T21:48:29.24347880 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Fri, 03 May 2024 21:48:29 GMT Content-Type: text/html Content-Length: 612 Last-Modified: Mon, 09 Oct 2023 07:58:35 GMT Connection: keep-alive ETag: "6523b2ab-264" Accept-Ranges: bytes
-1663454490 | 2024-05-01T11:03:56.108177443 / tcp
HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Wed, 01 May 2024 11:03:55 GMT Content-Type: text/html; charset=utf-8; charset=utf-8 Content-Length: 21109 Connection: keep-alive Set-Cookie: frontend_lang=en_US; Path=/ Set-Cookie: visitor_uuid=40883ccf4c534215abf95f70213ff561; Expires=Thu, 01-May-2025 11:03:55 GMT; Path=/ Set-Cookie: session_id=d6e0316c5bd3234828ae4af565dfe1991cc5b848; Expires=Tue, 30-Jul-2024 11:03:55 GMT; Max-Age=7776000; HttpOnly; Path=/
Certificate: Data: Version: 3 (0x2) Serial Number: 46:99:18:5f:9e:39:01:81:4e:d7:e9:90:08:e5:9a:15 Signature Algorithm: sha256WithRSAEncryption Issuer: C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Domain Validation CA SHA2 Validity Not Before: Dec 7 07:37:23 2023 GMT Not After : Dec 6 07:37:22 2024 GMT Subject: CN=horsana.club Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (4096 bit) Modulus: 00:ad:53:1c:32:6d:cd:e6:b9:3d:d8:b5:df:f8:36: f5:b9:77:bf:7a:a2:5f:c1:8d:1e:f6:eb:ed:03:f3: 36:6e:f5:59:0b:f9:24:e2:42:63:cd:d6:61:f2:03: 40:c3:60:d9:5a:07:52:16:e2:ea:8b:c0:c0:db:10: 58:ca:bd:24:cb:5f:22:d7:12:5e:7a:59:ab:a4:01: cd:7b:57:fb:c3:43:20:0e:43:1e:17:a5:a8:52:2d: 0f:af:40:e7:aa:7c:4a:eb:75:ca:e1:bd:0b:20:d0: b2:c3:47:54:73:cc:1a:39:06:10:1f:be:ce:cd:8d: d4:38:13:f8:27:ae:22:81:1d:e9:a4:95:d4:ec:49: 9f:c7:0e:b6:8d:d1:f3:92:e8:14:60:ab:b1:86:94: e8:26:2a:2c:c0:2e:71:7b:f2:55:8f:f4:26:29:ee: cb:cc:5a:c7:17:a5:ea:57:21:bd:9b:35:15:85:b6: cd:81:53:68:19:6d:bb:8a:24:40:ec:7a:78:c1:af: c2:16:49:79:55:6c:e3:f0:f4:2c:05:07:2d:94:2d: 2a:7c:d8:73:6f:33:ee:75:46:0b:14:83:95:46:64: 79:f9:1e:c7:8c:64:cf:5a:1e:47:74:de:4e:83:e9: 6e:4e:af:bb:c9:c1:ac:1a:79:9a:40:1f:09:54:ad: 40:46:25:1c:1a:dd:b2:6c:b0:fd:1f:ed:7e:b8:97: fa:cb:e4:cf:ce:39:fd:dd:a0:21:86:b0:02:e1:b1: 3b:09:37:b9:97:aa:ac:0e:c2:81:c4:fc:a7:24:5b: 0e:fc:69:5a:4a:b4:bb:03:eb:57:e1:7f:f3:36:b3: 83:30:9a:c6:59:81:fc:cc:c6:c7:90:67:23:77:92: 63:de:21:36:ef:bd:94:09:10:f2:64:fc:ff:79:f9: e6:80:7c:0e:f4:96:23:b4:78:91:eb:5a:cc:f5:ab: 93:43:c8:0b:5d:35:ff:6c:d8:55:05:93:51:08:71: 04:65:3f:d3:7f:61:e0:b0:08:d7:0d:a7:cc:22:bd: 1e:c5:e7:ea:e7:fc:27:65:92:91:b1:07:de:05:de: 05:b0:ff:51:f9:46:4b:9c:45:2a:84:01:41:6f:22: d1:fb:8b:1b:c0:e9:4c:3c:93:60:3b:4f:98:fd:9c: e6:45:21:b6:cd:34:8b:f7:61:ac:2f:15:ac:c2:90: c1:88:7e:ee:10:a6:d9:60:5a:c7:7a:c2:76:82:85: fb:21:5f:35:d0:8d:9d:20:8a:3d:fd:db:1e:b6:b0: 2b:4a:38:b3:6d:30:fd:2f:66:a8:fe:eb:11:58:91: 72:fe:2c:30:33:8e:7f:61:2c:e0:04:ef:74:31:24: 61:d6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:FALSE X509v3 CRL Distribution Points: Full Name: URI:http://crl.certum.pl/dvcasha2.crl Authority Information Access: OCSP - URI:http://dvcasha2.ocsp-certum.com CA Issuers - URI:http://repository.certum.pl/dvcasha2.cer X509v3 Authority Key Identifier: E5:31:AD:BF:3A:11:96:F4:83:BC:50:3C:D4:B7:90:9B:90:EE:DE:25 X509v3 Subject Key Identifier: 8B:84:24:70:FA:6A:98:99:ED:96:37:FA:66:D8:18:81:59:7E:AD:30 X509v3 Issuer Alternative Name: email:dvcasha2@certum.pl X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 Policy: 1.2.616.1.113527.2.5.1.3 CPS: https://www.certum.pl/CPS X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Subject Alternative Name: DNS:horsana.club, DNS:www.horsana.club CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Dec 7 07:37:23.647 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:71:47:A0:14:46:24:13:4C:CF:4D:3D:64: 5E:A1:11:48:11:3D:B8:35:68:87:8B:7A:FC:88:0A:58: 81:79:BD:F4:02:20:75:86:49:3E:D4:B6:91:1B:AE:52: 11:08:D4:96:27:B7:65:F6:AA:BA:98:BD:8E:89:81:23: 6A:FD:81:23:95:C8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Dec 7 07:37:23.650 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:29:44:E5:F5:1D:D2:C4:E1:1B:BC:90:69: AC:68:4A:DF:B1:73:F1:ED:B0:A0:5C:2D:5C:85:1A:0E: 54:73:AE:EA:02:21:00:A6:6E:71:94:7D:60:D3:E9:45: 11:7E:E8:32:C4:86:BB:BC:EC:DE:FE:43:31:FD:48:DA: 57:B1:7A:48:8E:27:DB Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Dec 7 07:37:23.776 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:D3:71:89:64:2B:67:02:B3:11:66:7A: 6F:E5:34:51:83:46:A9:7C:53:42:B5:3A:41:64:DD:BF: A1:44:C2:7F:0D:02:21:00:8A:A5:5D:ED:07:09:D4:D9: 75:D2:1E:3C:D9:9A:B8:7A:4C:73:DB:A5:98:73:BF:BC: 13:2F:AF:70:E1:EB:CF:A2 Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:27:d2:35:bf:37:d1:d3:b4:9a:2f:f0:7a:ec:02:47:b2:e4: ed:49:00:f1:ee:ac:3f:71:1c:3b:8e:2e:ea:fd:92:03:b0:4c: ee:aa:10:37:59:3d:b2:ea:47:28:64:a7:93:6d:c9:f0:0d:e0: 62:99:36:36:27:fe:9e:4c:26:1f:cd:1e:17:20:66:00:05:8e: b0:85:d2:2e:aa:1c:b3:1b:6a:24:bf:c8:dc:16:5e:d7:aa:26: ea:19:1a:23:29:a4:a9:da:07:34:ac:74:60:c7:a7:0b:89:b0: bd:73:ed:bd:e9:84:fd:0f:27:ce:67:8d:cc:2a:71:6b:28:ef: d6:ee:6f:5c:09:8c:1e:5b:41:00:a6:ae:57:90:e5:3d:88:47: 82:56:4c:8f:be:40:66:29:78:1b:f3:80:87:f5:12:96:b7:00: 76:0c:79:22:6e:95:76:1e:77:a7:e9:12:93:e2:72:9f:79:57: e5:0b:dc:2b:89:d4:bb:23:ac:a7:90:6d:39:1e:11:db:bc:92: 1a:af:75:d2:42:cd:b9:3a:b0:b8:95:ec:c0:7a:48:04:a4:af: 9f:b4:a1:ff:ec:cd:84:ef:35:1b:e3:47:95:45:13:92:f6:65: 17:a5:85:b1:b1:35:8a:a2:75:fc:7a:2c:73:de:1d:cb:fa:6a: ba:b8:48:b6
2004604219 | 2024-05-02T07:48:29.95899810000 / tcp
HTTP/1.0 200 Document follows Date: Thu, 2 May 2024 07:48:29 GMT Server: MiniServ Connection: close Auth-type: auth-required=1 Set-Cookie: redirect=1; path=/; secure; httpOnly Set-Cookie: testing=1; path=/; secure; httpOnly X-Frame-Options: SAMEORIGIN Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval'; frame-src 'self'; child-src 'self' X-Content-Type-Options: nosniff X-no-links: 1 Content-type: text/html; Charset=UTF-8
Certificate: Data: Version: 3 (0x2) Serial Number: 66:e2:6b:db:24:63:fa:24:81:66:07:58:80:3f:4e:c4:af:70:3a:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ubuntu, C=US, L=Santa Clara Validity Not Before: Oct 9 07:12:58 2023 GMT Not After : Oct 7 07:12:58 2028 GMT Subject: CN=ubuntu, C=US, L=Santa Clara Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:eb:88:70:54:c1:ed:3b:46:b0:b4:29:c2:8c:e2: 0c:9b:4f:ff:03:41:47:32:b4:f0:37:c4:75:84:24: 70:14:9f:d7:7f:40:78:59:dd:c4:74:63:85:26:5e: df:b6:99:e0:5b:87:b5:a3:d2:a8:eb:0b:5a:90:9e: 85:51:7a:f4:ee:fd:a3:05:d1:7b:b6:ca:9f:8b:bb: 37:21:9d:fa:0d:9a:a2:32:9c:e7:72:6c:14:4b:f5: 3d:e6:a5:92:47:03:63:3f:73:27:f6:4b:4a:f6:c0: c7:31:cc:a6:f4:ee:77:93:12:2c:6e:af:72:c5:ac: b3:92:e7:08:e6:80:1d:87:5f:5f:5a:b4:cf:41:d1: 6d:af:aa:b2:94:f5:28:1e:97:60:d6:6f:3b:cf:d0: a6:fa:d0:db:04:fc:77:48:ae:32:2c:99:71:3e:95: 8f:0d:83:2b:6f:e8:8c:23:9e:79:51:be:0c:bf:55: b8:ae:63:bf:23:9a:d0:52:d1:81:cb:95:7b:2c:ad: b5:48:72:b4:5e:a0:d5:79:06:0a:b4:8d:15:ca:d6: 3d:cd:06:26:51:9e:88:a8:9b:02:a6:59:19:d5:25: 00:64:e4:90:e6:12:15:8e:bd:99:c4:a2:90:c6:7f: 21:c1:5b:9d:63:8b:e7:b4:01:52:83:42:b0:7a:a1: 0a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:00:B3:D6:73:F4:9E:1F:62:D2:23:03:22:85:1A:A0:EA:3F:65:1E X509v3 Authority Key Identifier: 80:00:B3:D6:73:F4:9E:1F:62:D2:23:03:22:85:1A:A0:EA:3F:65:1E X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Alternative Name: DNS:ubuntu, DNS:localhost X509v3 Extended Key Usage: TLS Web Server Authentication Signature Algorithm: sha256WithRSAEncryption Signature Value: d6:d7:11:58:99:f6:c2:33:15:3e:d1:8c:9d:18:93:0a:bd:31: e6:04:42:7f:42:00:bc:38:b8:42:29:04:05:b3:5e:86:48:76: 18:f5:e9:fd:d5:ea:68:d5:ab:95:64:94:a4:d8:d4:88:f6:10: e5:d6:cf:31:a5:40:b9:3f:6e:8c:54:c3:98:7c:0f:b8:80:a0: ed:a1:04:9c:97:e0:c0:90:20:d6:ff:6b:45:85:62:29:df:21: 1e:ea:6f:3d:d7:9c:96:61:6d:6d:39:28:1c:8b:71:dc:fb:3f: 71:b0:c0:fd:13:b6:c2:50:16:1b:2a:05:25:24:d4:5d:9b:00: 67:be:4d:1b:24:f8:83:95:ce:1c:d4:4b:3b:ee:8c:ea:49:cc: 81:1d:28:3c:ad:bc:f7:c0:0b:b3:9e:79:2f:ab:85:4b:85:a4: df:e8:6b:f6:e0:da:cc:8c:48:3b:5d:69:a0:4a:89:a7:83:d9: dc:bc:7d:b9:62:cd:38:9c:54:04:88:ae:6d:52:13:5e:7a:80: 13:e8:c6:36:28:1a:20:7d:32:b0:0e:60:87:e9:30:55:81:cc: 87:bd:a7:6c:a7:59:28:6d:94:90:3f:6d:d2:0f:4a:70:1c:e1: 0b:e4:da:ee:d5:15:a2:b9:d6:d9:fa:59:b4:5a:34:52:84:9b: d8:3b:87:5d