GeneralInformation

Hostnames	ec2-52-32-164-86.us-west-2.compute.amazonaws.com abm-tracking.demandscience.com
Domains	amazonaws.com demandscience.com
Cloud Provider	Amazon
Cloud Region	us-west-2
Cloud Service	EC2
Country	United States
City	Boardman
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS16509
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

677579724 | 2024-04-15T22:01:57.984974

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 22:01:57 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-1060095501 | 2024-04-14T17:02:16.478323

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 14 Apr 2024 17:02:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS, PUT, PATCH, DELETE
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:ee:5c:52:08:c2:4e:f4:f3:99:5a:e8:b8:37:57:06:bb:5e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 15 06:50:07 2024 GMT
            Not After : May 15 06:50:06 2024 GMT
        Subject: CN=abm-tracking.demandscience.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e5:96:fe:6c:ac:6e:f2:a8:75:10:0e:70:c3:60:
                    27:c2:08:04:f4:43:c5:26:93:30:34:13:8d:11:88:
                    45:f5:04:86:19:9a:28:c5:2d:99:9d:69:42:34:dc:
                    61:ff:6b:35:17:ea:ed:dd:f1:67:54:9f:5d:85:67:
                    7a:e6:23:ed:c3:d4:f9:f3:f9:88:69:a9:6f:82:a7:
                    4a:cc:09:13:72:c2:ff:fe:56:01:c5:27:eb:90:d1:
                    71:01:3f:ea:0a:20:f9:ba:f4:9a:5e:5a:8a:f9:fb:
                    df:85:9a:28:d8:a3:98:a4:0e:c1:94:50:cc:37:94:
                    83:6d:35:6b:3a:01:d3:53:d7:03:d7:13:a1:98:93:
                    ae:6a:1c:c4:9c:b2:de:1a:15:5c:43:f2:00:e6:ae:
                    e0:39:e3:c8:36:db:bb:f0:31:1c:9c:4e:ac:bc:08:
                    35:f5:d3:15:96:c6:48:33:a2:80:23:ac:40:48:5e:
                    03:a3:48:a9:fc:06:b5:ca:53:ee:b3:c6:69:f8:7a:
                    a8:ac:87:16:08:48:8d:cb:71:1c:92:16:3a:a3:32:
                    52:41:1e:dc:17:65:88:aa:3d:18:e3:bb:1b:f8:53:
                    af:83:f4:38:b1:1b:25:9e:f3:a5:77:5b:4e:b3:0c:
                    83:4d:3c:49:4e:0d:a6:36:32:12:ff:e9:e0:19:70:
                    da:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                64:1B:94:C3:19:8A:3F:78:65:ED:0A:F5:DD:92:C1:13:4E:33:78:50
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:abm-tracking.demandscience.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 15 07:50:07.661 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:EB:44:57:04:4D:62:50:8A:F3:EA:21:
                                95:73:AC:8A:19:DC:4C:E7:FD:8D:CF:1C:12:FA:AF:04:
                                B1:5A:DE:1E:9E:02:20:53:D0:43:B1:03:05:B6:7C:FA:
                                85:E1:5B:14:F1:50:1C:C9:8A:1D:93:4B:10:20:2C:3A:
                                C0:D9:AF:04:FB:59:23
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 15 07:50:07.729 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8E:ED:BE:78:A7:F7:70:77:1D:A2:46:
                                6F:A1:07:3B:2C:CB:8A:8A:7A:23:53:EC:8F:94:B2:93:
                                CB:29:C9:01:6A:02:20:60:15:C6:95:D8:B6:08:27:CA:
                                E1:46:B1:8C:6C:E7:F9:86:A1:77:62:7A:11:19:EF:75:
                                C8:C5:6C:43:35:80:67
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        2c:eb:05:d2:67:cb:ef:b9:e9:9e:84:05:ca:c6:96:2d:3b:ad:
        59:d9:cd:3c:a1:4b:12:db:2e:4d:d3:48:b6:0f:e1:01:fd:80:
        67:b9:b6:26:7d:4b:b8:96:3f:fb:c4:16:5d:ba:ad:23:27:98:
        96:bb:b0:a8:2a:a8:88:c9:d9:c4:c0:5b:1a:8f:cd:07:e5:24:
        49:a2:6d:f0:e2:ff:09:c2:1c:e5:f6:38:8f:fc:c0:2f:93:51:
        50:26:31:a6:3e:45:ff:91:6c:e7:2e:d7:ca:75:4c:54:a8:49:
        7e:a7:58:16:fe:f9:00:07:05:1c:86:65:3f:c0:61:8e:f5:65:
        35:06:6a:7f:de:5c:be:0b:36:3c:49:6b:c8:4a:e7:f5:14:63:
        7d:50:a9:53:b6:53:8b:73:53:d8:8a:0c:32:04:73:49:a0:39:
        11:63:f0:64:b9:bb:a0:26:fb:8c:87:97:11:a3:0b:9d:92:25:
        90:56:b6:3c:a8:1b:17:f8:46:d8:c7:e8:78:ee:16:f2:33:5a:
        4a:1a:1d:90:80:15:95:af:a1:8a:dc:6e:74:ee:ce:15:fe:82:
        aa:c1:f8:4c:01:55:d8:43:0d:d5:98:a6:3a:be:f6:d1:e9:c6:
        47:48:69:07:2e:ea:d9:c3:f6:bd:2d:f6:b8:e7:4f:aa:b7:98:
        44:ad:e5:51

52.32.164.86

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-04-15T22:01:57.984974
80 / tcp

nginx1.18.0

-1060095501 | 2024-04-14T17:02:16.478323
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

52.32.164.86

Last Seen: 2024-04-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-04-15T22:01:57.984974 80 / tcp

nginx1.18.0

-1060095501 | 2024-04-14T17:02:16.478323 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

677579724 | 2024-04-15T22:01:57.984974
80 / tcp

-1060095501 | 2024-04-14T17:02:16.478323
443 / tcp