GeneralInformation

Hostnames	ve191.cozyporn.com ns3119801.ip-51-38-57.eu
Domains	cozyporn.com ip-51-38-57.eu
Country	France
City	Roubaix
Organization	OVH SAS
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

21 80 111 443

-688817962 | 2024-04-09T01:05:05.536809

21 / tcp

220 (vsFTPd 3.0.5)
530 Login incorrect.
530 Please login with USER and PASS.
211-Features:
 EPRT
 EPSV
 MDTM
 PASV
 REST STREAM
 SIZE
 TVFS
 UTF8
211 End

-617618899 | 2024-04-18T17:13:51.817464

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.1
Date: Thu, 18 Apr 2024 17:13:51 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-1345205424 | 2024-04-23T05:08:08.142402

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-04-15T20:21:21.688169

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-617618899 | 2024-04-20T18:38:41.242379

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.20.1
Date: Sat, 20 Apr 2024 18:38:41 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:ac:79:c0:59:3e:1e:0c:13:13:2a:e7:04:cb:b2:be:5c:0f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  9 22:03:39 2024 GMT
            Not After : Jun  7 22:03:38 2024 GMT
        Subject: CN=ve191.cozyporn.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:9a:97:af:ca:65:59:22:8c:59:5a:c5:fe:81:05:
                    9e:66:12:7d:48:91:ac:1d:57:88:1e:cf:bb:8f:0d:
                    46:92:17:06:43:88:66:d4:ae:ca:df:1a:c7:5c:68:
                    a5:c1:74:21:2a:39:5e:6f:0f:54:bb:2c:74:08:80:
                    88:8f:8e:18:c4
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A4:20:7C:A8:95:3B:A0:F7:FB:F7:A4:80:2E:6F:A2:81:64:71:96:51
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:ve191.cozyporn.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar  9 23:03:39.656 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:46:14:B0:20:E4:B5:CD:91:EB:43:DB:45:
                                02:A9:46:14:D0:E7:EE:24:6F:58:C0:37:0F:1A:39:E1:
                                73:70:33:9A:02:21:00:B4:88:3A:A0:6F:CC:AB:D4:0F:
                                76:FA:8B:52:FF:C6:3D:0A:04:46:DF:86:BC:F7:52:B6:
                                16:8F:C1:0A:9F:3D:A7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar  9 23:03:39.665 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:B7:EC:CA:17:64:1C:06:40:FB:F8:6F:
                                4F:C4:39:04:94:50:C7:E5:F5:C0:C7:E8:7B:3B:C0:4B:
                                7C:40:F7:A1:A2:02:20:38:D6:AF:1F:E9:0C:5C:7B:6F:
                                89:99:66:0D:F7:75:AB:B8:96:BF:D6:50:B2:EE:5B:89:
                                34:E9:77:78:B0:C9:6C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        79:24:d7:fa:06:6f:e7:48:35:e5:cd:1c:e0:3d:57:5a:f1:1d:
        8f:2b:b2:c0:ce:a3:a3:0b:2b:ac:15:92:81:10:6d:7f:d1:4a:
        20:19:4b:b8:e5:3f:2a:76:dc:d9:f5:07:cd:33:e3:1e:0e:47:
        87:f8:57:5d:38:9d:89:da:06:f2:32:44:cd:87:e6:21:a6:30:
        fe:2c:43:61:c7:56:f6:68:80:5f:5d:cc:e5:0f:0f:3c:cc:ce:
        57:2f:54:62:de:9f:9b:75:5c:5c:1e:e5:58:a2:f6:c2:aa:ba:
        e6:48:c1:8d:bd:75:a2:14:29:cf:8e:60:d1:73:7c:84:00:00:
        bb:18:49:28:ba:e5:91:86:63:8e:e6:62:ea:5e:94:30:69:ac:
        24:cd:a5:3e:80:86:07:00:38:03:ea:a5:30:b9:df:ff:7f:cb:
        18:60:47:43:a0:f9:38:f9:3f:8f:d7:87:1f:02:b4:71:ae:3f:
        ae:c8:28:c6:35:b2:7b:0e:bd:ea:56:04:40:2b:42:e8:4e:51:
        8e:4a:7b:57:68:88:6c:9f:98:df:18:88:2e:21:4c:96:06:2c:
        cc:98:ec:8d:9f:32:2f:5b:49:d2:90:2b:8f:81:c0:85:da:f1:
        45:d0:e7:25:e8:4e:88:ef:50:e3:0a:55:8f:63:69:0e:2c:cf:
        19:b5:29:de

51.38.57.175

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-688817962 | 2024-04-09T01:05:05.536809
21 / tcp

-617618899 | 2024-04-18T17:13:51.817464
80 / tcp

nginx1.20.1

-1345205424 | 2024-04-23T05:08:08.142402
111 / tcp

-1345205424 | 2024-04-15T20:21:21.688169
111 / udp

-617618899 | 2024-04-20T18:38:41.242379
443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

51.38.57.175

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-688817962 | 2024-04-09T01:05:05.536809 21 / tcp

-617618899 | 2024-04-18T17:13:51.817464 80 / tcp

nginx1.20.1

-1345205424 | 2024-04-23T05:08:08.142402 111 / tcp

-1345205424 | 2024-04-15T20:21:21.688169 111 / udp

-617618899 | 2024-04-20T18:38:41.242379 443 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-688817962 | 2024-04-09T01:05:05.536809
21 / tcp

-617618899 | 2024-04-18T17:13:51.817464
80 / tcp

-1345205424 | 2024-04-23T05:08:08.142402
111 / tcp

-1345205424 | 2024-04-15T20:21:21.688169
111 / udp

-617618899 | 2024-04-20T18:38:41.242379
443 / tcp