GeneralInformation

Hostnames	ec2-52-194-13-225.ap-northeast-1.compute.amazonaws.com meeetu.jp
Domains	amazonaws.com meeetu.jp
Cloud Provider	Amazon
Cloud Region	ap-northeast-1
Cloud Service	EC2
Country	Japan
City	Tokyo
Organization	Amazon Data Services Japan
ISP	Amazon.com, Inc.
ASN	AS16509

WebTechnologies

Analytics

Google Analytics

JavaScript libraries

jQuery3.5.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-45802	When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection close. A client could send new requests and resets, keeping the connection busy and open and causing the memory footprint to keep on growing. On connection close, all resources were reclaimed, but the process might run out of memory before that. This was found by the reporter during testing of CVE-2023-44487 (HTTP/2 Rapid Reset Exploit) with their own test client. During "normal" HTTP/2 use, the probability to hit this bug is very low. The kept memory would not become noticeable before the connection closes or times out. Users are recommended to upgrade to version 2.4.58, which fixes the issue.
CVE-2023-31122	Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57.
CVE-2023-27522	HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client.
CVE-2023-25690	Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack. Configurations are affected when mod_proxy is enabled along with some form of RewriteRule or ProxyPassMatch in which a non-specific pattern matches some portion of the user-supplied request-target (URL) data and is then re-inserted into the proxied request-target using variable substitution. For example, something like: RewriteEngine on RewriteRule "^/here/(.*)" "http://example.com:8080/elsewhere?$1"; [P] ProxyPassReverse /here/ http://example.com:8080/ Request splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.
CVE-2022-37454	The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.
CVE-2022-37436	Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.
CVE-2022-36760	Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.54 and prior versions.
CVE-2022-31630	In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information.
CVE-2022-31629	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.
CVE-2022-31628	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.
CVE-2013-4365	7.5Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors.
CVE-2013-2765	5.0The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2013-0942	4.3Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-0941	2.1EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft Windows use an improper encryption algorithm and a weak key for maintaining the stored data of the node secret for the SecurID Authentication API, which allows local users to obtain sensitive information via cryptographic attacks on this data.
CVE-2012-4360	4.3Cross-site scripting (XSS) vulnerability in the mod_pagespeed module 0.10.19.1 through 0.10.22.4 for the Apache HTTP Server allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2012-4001	5.0The mod_pagespeed module before 0.10.22.6 for the Apache HTTP Server does not properly verify its host name, which allows remote attackers to trigger HTTP requests to arbitrary hosts via unspecified vectors, as demonstrated by requests to intranet servers.
CVE-2012-3526	5.0The reverse proxy add forward module (mod_rpaf) 0.5 and 0.6 for the Apache HTTP Server allows remote attackers to cause a denial of service (server or application crash) via multiple X-Forwarded-For headers in a request.
CVE-2011-2688	7.5SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field.
CVE-2011-1176	4.3The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileges by leveraging the root uid and root gid of an mpm-itk process.
CVE-2009-2299	5.0The Artofdefence Hyperguard Web Application Firewall (WAF) module before 2.5.5-11635, 3.0 before 3.0.3-11636, and 3.1 before 3.1.1-11637, a module for the Apache HTTP Server, allows remote attackers to cause a denial of service (memory consumption) via an HTTP request with a large Content-Length value but no POST data.
CVE-2009-0796	2.6Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the Apache HTTP Server, when /perl-status is accessible, allows remote attackers to inject arbitrary web script or HTML via the URI.
CVE-2007-4723	7.5Directory traversal vulnerability in Ragnarok Online Control Panel 4.3.4a, when the Apache HTTP Server is used, allows remote attackers to bypass authentication via directory traversal sequences in a URI that ends with the name of a publicly available page, as demonstrated by a "/...../" sequence and an account_manage.php/login.php final component for reaching the protected account_manage.php page.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.
CVE-2006-20001	A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

OpenPorts

443

1929481919 | 2024-04-20T23:25:13.752425

443 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 23:25:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache/2.4.54 ()
X-Powered-By: PHP/7.4.30
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Im5DeERpT1NMQ0g1WFZNMGpxSmVtZ1E9PSIsInZhbHVlIjoiRXhsbXpLN3ZweXc1SWFSYkkvQVFWelNtMnRneFJuQTZ2dWtnN1FvY2xkRVVlM3R6d3hrNFB3NStzLytZNU9EK2ZBcWlXTkdybEVzazFsbmhBWWQxc2x4MVIrazdPWjhqbDVaQmR4QW5EOUlaOVBoSWhmaitGQkFFbkZCOXd0YU0iLCJtYWMiOiJjNjg0ZDVhOTUwMmViZWMwMzdhM2NlYzZkYzYwYTAzNDI0ZWQ2Yjc0NWEyZGU2YTcxZTcwMzMyMmFkYjgzMzI2IiwidGFnIjoiIn0%3D; expires=Sun, 21-Apr-2024 01:25:13 GMT; Max-Age=7200; path=/; samesite=lax
Set-Cookie: meeetu_session=eyJpdiI6IkY0K0s3UEx0ZUZoY1hJL3BiaHJzeEE9PSIsInZhbHVlIjoiVERDS1dlV1UrdCthZjJYVGxud0ptTmhKTFhCdjJ4ZlJ2Y2xkREtlcU5mTXpzNmNjS0pGbXprZk02bnpndTk1Zit5R2xNVHplUjZGclNIODR2MkExVGl6d0ovRXRjNVhXekpQbUc1WkkrbUI2WlBRMlZrc01zY0hpYUdPRW1FM0QiLCJtYWMiOiI4ZjY4Mzg0ODQxN2NkOGI2ZWE0NTQzZTU3MTMzMjliYjMzZDUyNTkxYTRlMzdhYWIyNTY1MmE4NWY5ZjU0NDQ5IiwidGFnIjoiIn0%3D; expires=Sun, 21-Apr-2024 01:25:13 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Upgrade: h2,h2c

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:40:aa:5e:15:86:a0:f3:59:b9:b3:62:db:36:6f:1a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M03
        Validity
            Not Before: Aug 25 00:00:00 2023 GMT
            Not After : Sep 23 23:59:59 2024 GMT
        Subject: CN=meeetu.jp
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d4:ea:30:43:47:f4:e7:2f:4c:fe:f0:e6:02:51:
                    0e:02:9c:a8:95:ff:b9:a3:77:c8:92:3c:7c:f1:e3:
                    cb:f2:23:b9:fb:77:ed:5a:f2:5a:59:0e:9a:a2:93:
                    69:6d:01:de:63:f6:e4:fe:36:de:d0:f6:4b:79:9a:
                    3e:62:f6:85:e0:bd:d3:14:9b:90:c3:11:19:10:ae:
                    1c:ef:7e:cb:bd:ea:db:26:f7:35:aa:c2:7e:68:50:
                    b3:6c:8e:fa:9c:b2:c6:07:36:07:2b:aa:c7:b3:16:
                    02:6e:c8:d1:75:5c:ea:a8:f1:68:b5:e1:ae:63:f3:
                    54:e5:0f:f9:4f:a2:ec:82:2e:d8:77:6d:44:ec:8e:
                    e0:24:64:85:b3:8a:b1:6d:e3:85:47:7c:35:f7:2f:
                    e5:11:37:64:cc:59:e2:61:6a:86:3c:d4:c4:79:fc:
                    59:b7:dd:b2:a8:73:e7:d7:33:47:53:b3:b5:17:e9:
                    68:51:12:61:b3:8b:71:43:a8:08:f6:97:55:eb:c4:
                    44:f3:85:7f:6a:c0:af:7e:12:c4:bb:a6:e1:ca:81:
                    c4:8d:89:f3:47:95:07:cd:b9:63:5e:06:9c:de:85:
                    18:2d:f5:e3:7d:41:1b:c1:ad:e0:b4:75:c1:1a:99:
                    4b:7a:46:62:1b:27:56:82:f1:89:f0:07:cc:44:b7:
                    74:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                55:D9:18:5F:D2:1C:CC:01:E1:58:B4:BE:AB:D9:55:42:01:D7:2E:02
            X509v3 Subject Key Identifier: 
                ED:45:0C:4F:06:87:9A:23:70:A5:60:D5:CC:06:CB:80:03:61:A7:DB
            X509v3 Subject Alternative Name: 
                DNS:meeetu.jp
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m03.amazontrust.com/r2m03.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m03.amazontrust.com
                CA Issuers - URI:http://crt.r2m03.amazontrust.com/r2m03.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Aug 25 00:20:23.002 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:95:19:01:18:9D:63:57:8F:42:7A:B9:
                                BF:02:34:68:9D:CD:99:9C:7A:95:46:2C:52:4F:8C:0D:
                                80:29:96:C4:66:02:21:00:FE:ED:D8:7C:40:7F:8D:54:
                                B2:00:AB:86:39:EC:AF:44:3D:D4:34:93:78:7D:CA:60:
                                24:93:E6:60:F8:4B:C2:BE
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Aug 25 00:20:22.986 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B3:5C:4B:5E:28:1C:F4:9C:9C:56:5E:
                                D4:76:81:9F:CC:DD:FA:67:58:2D:A3:C7:5C:8A:16:A6:
                                E2:98:B2:48:AD:02:21:00:DD:28:70:E1:A2:28:EB:8A:
                                F2:07:F2:E5:BB:05:9B:60:9C:70:E9:76:33:56:7C:5C:
                                11:18:EB:34:6E:63:11:5C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Aug 25 00:20:22.891 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D4:C3:8A:FE:D1:FD:69:E5:FE:54:43:
                                BB:4C:71:32:3B:6E:87:70:21:5C:2A:73:C6:BD:C9:28:
                                60:3D:38:38:E3:02:20:79:49:A0:54:B1:62:68:D7:7D:
                                FD:F0:63:CF:28:01:76:B7:09:0E:A1:65:DA:02:82:1D:
                                92:30:51:BB:9B:F4:A5
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1a:94:a8:5a:37:de:ec:c2:4b:f4:ef:25:64:e6:5b:d9:9e:60:
        30:2e:ae:f3:5c:56:48:af:34:0b:b0:49:4d:89:09:31:7d:c6:
        b1:25:1c:53:2a:82:61:69:78:8c:3c:25:6e:ad:a7:a4:d3:79:
        d1:78:20:14:01:e9:4e:0a:7b:fc:cc:07:1f:bd:74:ee:62:1c:
        79:06:55:4b:e7:48:89:0b:e5:bc:1b:5c:5b:ef:5e:b9:e8:44:
        a1:d0:34:b3:00:ba:80:f1:44:18:02:18:e7:bc:41:14:fe:28:
        e8:0e:8f:fa:bd:9e:e6:29:6b:7a:d1:55:dc:25:9b:db:71:cd:
        7b:ae:be:21:ee:d6:45:e2:8a:04:ea:88:eb:ec:54:e7:09:ca:
        40:c8:9e:0c:a3:11:e1:86:d9:5a:cc:e8:bb:9e:c4:a9:8b:54:
        2d:79:c6:68:66:0d:e6:95:45:38:d0:b1:fd:e2:d1:0e:c2:b5:
        08:da:da:06:1c:84:43:1b:2c:8c:5b:99:0f:db:dd:fb:50:25:
        c3:1d:a6:49:0e:d1:01:3c:1c:e1:20:a1:c1:d9:47:50:8d:68:
        20:0e:a7:87:e0:56:df:2c:2c:d1:40:47:aa:f7:11:b2:4e:5f:
        02:83:75:5c:b4:cd:c4:a7:07:b1:ac:5b:a4:5f:45:09:ec:a6:
        32:03:16:81

52.194.13.225

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1929481919 | 2024-04-20T23:25:13.752425
443 / tcp

Apache httpd2.4.54

Products

Pricing

Contact Us

52.194.13.225

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1929481919 | 2024-04-20T23:25:13.752425 443 / tcp

Apache httpd2.4.54

Products

Pricing

Contact Us

1929481919 | 2024-04-20T23:25:13.752425
443 / tcp