GeneralInformation

Hostnames	yaklass.ru
Domains	yaklass.ru
Country	Russian Federation
City	Moscow
Organization	Selectel Network
ISP	OOO "Network of data-centers "Selectel"
ASN	AS50340
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2021-23017	A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2021-3618	ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

CVE-2021-23017

A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

1651973090 | 2023-05-30T11:08:21.567465

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 30 May 2023 11:08:21 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

1651973090 | 2023-06-06T13:43:50.256159

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Jun 2023 13:43:50 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:46:a4:84:4f:2d:58:b0:4c:d6:19:a2:55:6e:8c:42:7f:70
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 17 07:00:06 2023 GMT
            Not After : Jul 16 07:00:05 2023 GMT
        Subject: CN=yaklass.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e6:24:a4:c5:83:b7:5c:11:5a:a4:ea:09:b7:a8:
                    f4:1d:f2:b3:91:58:ae:7a:17:12:03:38:bf:b2:60:
                    c3:33:7b:8f:a3:e7:09:7f:e8:8a:a3:ce:0b:12:bf:
                    6f:e9:dc:7a:89:ff:45:3e:06:1d:eb:dd:e0:13:d0:
                    6a:37:93:fa:75:02:c2:c8:94:70:71:21:5e:31:0c:
                    86:fc:49:94:4d:a9:ed:e8:0b:36:47:3d:18:67:32:
                    f1:bd:6d:be:6d:6b:9a:52:39:1c:44:39:d4:b3:84:
                    dd:a7:08:79:17:d7:20:71:f6:65:a6:f6:fb:54:9e:
                    8d:ef:b1:7a:0f:f6:1a:a1:c0:be:2c:28:d2:8d:85:
                    16:d8:7e:fc:a5:4f:9a:78:d6:da:46:7e:da:4d:36:
                    e5:d2:62:dd:3e:d3:5f:cc:b9:8c:ef:d6:e4:82:9b:
                    38:35:e1:31:a9:b6:0a:40:56:ef:e7:f6:ef:f1:41:
                    ee:02:0d:3b:ba:52:61:a9:69:ad:56:35:48:68:59:
                    e8:2c:b7:e4:59:98:cc:5b:fa:9b:3c:b4:a9:2e:a9:
                    03:91:1c:23:1d:22:cd:23:9a:5a:f3:45:c5:28:12:
                    ac:83:a1:ac:a4:fa:47:a6:22:96:fe:23:2e:fa:31:
                    ad:76:12:66:0d:15:df:7b:9a:f1:cf:37:ac:f1:ef:
                    f0:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                9E:F8:99:71:EC:39:79:95:3E:84:6B:D7:64:7A:8F:B3:3D:1A:3B:11
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:yaklass.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
                                16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
                    Timestamp : Apr 17 08:00:06.528 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:A6:D2:1D:81:5C:50:80:63:34:91:4E:
                                2E:80:DC:D1:80:0C:83:A4:4C:57:ED:17:F1:A1:02:D3:
                                C0:A4:50:38:37:02:21:00:C8:EA:C1:0F:59:C3:50:E9:
                                78:6E:F8:1B:72:B5:77:87:8C:A3:38:E3:A5:4F:16:5C:
                                65:F1:C5:CF:80:15:4D:8B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
                                03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
                    Timestamp : Apr 17 08:00:06.669 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B7:2A:F3:64:F5:5F:B6:9B:89:C5:A4:
                                27:6A:70:D1:5E:AD:FF:AC:3F:99:F2:0F:5E:99:B3:CE:
                                C4:3C:21:3A:28:02:21:00:86:7B:73:AF:68:FB:18:19:
                                6B:B4:59:00:E5:4F:BB:BC:AA:76:5F:D2:F3:2D:DA:9F:
                                28:79:9E:D6:C1:87:EE:DD
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b3:0f:41:37:c0:38:b6:d0:d5:11:59:00:ec:67:e3:b9:16:45:
        9e:5f:69:58:e6:63:ee:51:f9:77:60:dd:f9:2a:86:80:e7:6a:
        55:cc:d4:19:8f:e9:27:10:0b:42:83:00:33:b9:d0:49:57:52:
        58:17:b5:d5:72:49:49:ea:7d:56:87:ca:84:cb:ef:43:f8:87:
        fb:f5:f5:0a:02:ea:b0:fa:38:07:6b:20:17:8d:ea:2c:19:66:
        af:47:df:e6:95:1d:f9:2a:6e:4d:09:9c:b4:1e:92:06:12:5b:
        22:01:d3:69:d2:a2:7f:df:7c:a2:69:94:ef:28:4f:99:bf:c5:
        9c:16:6e:9b:44:69:78:a9:f3:99:b8:7d:d6:52:c4:16:42:fc:
        61:d7:8e:9e:ed:a8:d8:bb:9c:a6:fa:e6:55:8e:35:92:79:3d:
        f9:03:78:20:9a:1d:0b:58:2d:ba:e7:76:4d:e8:89:77:6d:86:
        44:3c:02:ce:f4:9a:dc:ff:ae:c6:a7:66:03:43:cd:06:c0:c2:
        97:46:18:63:63:24:6a:c7:08:43:e1:16:46:e6:f4:67:ee:14:
        ee:71:a0:76:da:e4:70:6b:24:8b:f3:c8:b0:18:42:91:b6:eb:
        40:be:78:45:30:9f:8a:07:20:bb:64:91:1c:13:49:d3:05:eb:
        7c:53:bc:e1

5.188.138.206

Last Seen: 2023-06-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2023-05-30T11:08:21.567465
80 / tcp

nginx1.18.0

1651973090 | 2023-06-06T13:43:50.256159
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

5.188.138.206

Last Seen: 2023-06-06

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1651973090 | 2023-05-30T11:08:21.567465 80 / tcp

nginx1.18.0

1651973090 | 2023-06-06T13:43:50.256159 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1651973090 | 2023-05-30T11:08:21.567465
80 / tcp

1651973090 | 2023-06-06T13:43:50.256159
443 / tcp