GeneralInformation

Hostnames	ec2-52-4-253-151.compute-1.amazonaws.com login.mariner-re.com
Domains	amazonaws.com mariner-re.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

80 443

707850298 | 2024-04-17T15:11:08.437304

80 / tcp

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Type: text/html; charset=utf-8
Date: Wed, 17 Apr 2024 15:11:08 GMT
Location: http://wwws.realtyclub.com
Server: nginx/1.20.2 + Phusion Passenger(R) 6.0.14
Status: 302 Found
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Phusion Passenger(R) 6.0.14
X-Request-Id: 8914f153-8bd6-47ce-a457-81d5a85496b2
X-Runtime: 0.010664
X-XSS-Protection: 1; mode=block
Content-Length: 92
Connection: keep-alive

707850298 | 2024-04-19T18:42:04.746251

443 / tcp

HTTP/1.1 302 Found
Cache-Control: no-cache
Content-Type: text/html; charset=utf-8
Date: Fri, 19 Apr 2024 18:42:04 GMT
Location: http://wwws.realtyclub.com
Server: nginx/1.20.2 + Phusion Passenger(R) 6.0.14
Status: 302 Found
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Phusion Passenger(R) 6.0.14
X-Request-Id: a826ce52-2a05-4bd1-a5be-42e1b24978a3
X-Runtime: 0.010164
X-XSS-Protection: 1; mode=block
transfer-encoding: chunked
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:c9:bc:38:8b:e9:17:ad:7c:20:d1:6e:6c:9b:56:76
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, OU=Server CA 1B, CN=Amazon
        Validity
            Not Before: Nov  2 00:00:00 2018 GMT
            Not After : Dec  2 12:00:00 2019 GMT
        Subject: CN=*.realtyclub.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b9:5b:a0:85:b4:c5:77:a6:50:be:4d:a1:65:99:
                    97:d7:d7:97:1a:94:51:ab:61:0c:00:56:2c:9f:ea:
                    f1:8f:fe:42:49:55:ad:47:3d:c5:8b:dd:9d:35:15:
                    c7:1f:c8:57:f6:5b:ea:24:2e:e7:70:21:2e:90:b6:
                    57:b2:34:c9:d7:c9:fc:85:b3:b1:1b:9f:16:74:d2:
                    84:97:3c:2b:29:94:9b:dd:d7:58:68:81:3d:9e:73:
                    6e:d7:cb:7c:23:52:e1:d6:8c:c0:df:9b:76:06:51:
                    0a:b1:eb:e2:9c:0f:0e:37:b1:ea:7c:a0:5e:2d:c3:
                    aa:d3:36:73:be:4b:a4:6d:e9:28:5f:1c:8e:83:33:
                    39:39:aa:00:f6:81:93:ac:eb:67:61:89:42:4f:38:
                    7e:83:77:e1:a3:c1:0c:5d:58:be:25:01:25:54:cb:
                    ed:91:74:bd:db:ba:c7:16:a1:62:db:83:31:61:52:
                    60:a3:06:cc:cf:08:37:1f:9e:d6:78:9e:c7:68:d0:
                    2f:43:db:64:19:41:10:8f:fd:fd:f3:a4:d1:23:e7:
                    64:89:d1:b9:35:e1:4a:8d:70:b7:cd:97:40:ec:f7:
                    8e:33:48:52:19:c9:de:58:2a:a2:7e:37:92:5a:cc:
                    51:f0:e3:22:68:f6:0f:61:c4:f8:a0:3c:6c:15:80:
                    fe:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                59:A4:66:06:52:A0:7B:95:92:3C:A3:94:07:27:96:74:5B:F9:3D:D0
            X509v3 Subject Key Identifier: 
                FE:9B:5F:A3:3C:FA:E9:41:85:0F:BC:21:49:E5:C7:D2:0D:32:C9:9F
            X509v3 Subject Alternative Name: 
                DNS:*.realtyclub.com, DNS:login.mariner-re.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.sca1b.amazontrust.com/sca1b.crl
            X509v3 Certificate Policies: 
                Policy: 2.16.840.1.114412.1.2
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                OCSP - URI:http://ocsp.sca1b.amazontrust.com
                CA Issuers - URI:http://crt.sca1b.amazontrust.com/sca1b.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
                                38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
                    Timestamp : Nov  2 16:08:04.959 2018 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6B:19:06:93:36:03:37:61:06:D1:19:8D:
                                B2:F1:FB:3E:71:2C:0A:AF:FC:BC:43:2A:DB:93:73:A5:
                                F9:1C:05:86:02:20:79:84:20:F8:EE:8E:6B:5E:A9:18:
                                DB:F2:F9:F5:92:47:77:0D:56:75:31:4F:15:09:2F:E3:
                                3E:73:95:53:30:C9
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
                                8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
                    Timestamp : Nov  2 16:08:04.908 2018 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:02:00:0C:20:53:AC:F7:8E:50:94:FB:27:
                                B2:71:63:9C:28:B9:6C:86:09:C0:1C:D4:4D:53:9D:53:
                                12:35:F1:B3:02:20:64:6C:CC:FE:8B:D2:44:EA:8F:6A:
                                E5:66:D5:4E:55:D1:6C:85:34:95:24:1D:15:04:31:7C:
                                90:F3:15:59:B0:2A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        47:e1:4f:f1:77:8e:b9:e6:13:b4:2e:90:6a:ea:f2:40:0f:22:
        37:ac:2f:21:10:fd:0a:57:c8:6e:da:c8:2a:68:52:1c:61:df:
        7d:34:e7:4c:e3:d4:e9:66:5b:65:2d:ba:fe:36:78:b4:91:98:
        b5:69:c5:3c:4d:e1:a8:eb:33:2d:f1:76:b3:1f:cd:af:22:e3:
        f1:48:0b:63:6b:f5:26:8a:3a:24:6b:2c:ce:19:95:d4:da:2e:
        30:25:6a:a5:29:a4:8e:21:41:94:c2:57:1b:cb:e4:37:b0:1c:
        c7:3c:61:8f:ac:f0:16:56:9e:d7:f0:8a:18:57:ba:75:50:59:
        11:ec:05:47:f3:35:13:aa:8d:c5:5b:24:40:e6:ba:bd:eb:9f:
        06:84:94:97:01:0b:86:9e:80:bd:32:02:8d:5a:d3:13:4d:7c:
        29:b6:ff:46:5a:6d:b2:ba:61:e7:7d:ae:38:5c:1e:b0:b9:dc:
        07:10:70:48:1b:2c:2e:23:cc:d4:96:bc:50:6b:5a:e2:2d:c7:
        46:63:37:8c:32:c9:10:0e:70:03:98:da:50:90:6a:ed:04:50:
        b8:22:ae:7b:13:eb:3c:1a:a2:90:9c:4a:48:bd:e7:e9:98:9b:
        6c:03:26:00:17:87:c5:82:0e:81:a6:e6:a8:da:27:1a:d9:03:
        24:ee:6a:51

52.4.253.151

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

707850298 | 2024-04-17T15:11:08.437304
80 / tcp

nginx1.20.2

707850298 | 2024-04-19T18:42:04.746251
443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

52.4.253.151

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

707850298 | 2024-04-17T15:11:08.437304 80 / tcp

nginx1.20.2

707850298 | 2024-04-19T18:42:04.746251 443 / tcp

nginx1.20.2

Products

Pricing

Contact Us

707850298 | 2024-04-17T15:11:08.437304
80 / tcp

707850298 | 2024-04-19T18:42:04.746251
443 / tcp