GeneralInformation

Hostnames	ec2-52-72-179-7.compute-1.amazonaws.com lwns.co
Domains	amazonaws.com lwns.co
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

WebTechnologies

JavaScript frameworks

AngularJS

JavaScript libraries

jQuery1.11.3

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2022-31629	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.
CVE-2022-31628	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2020-11579	5.0An issue was discovered in Chadha PHPKB 9.0 Enterprise Edition. installer/test-connection.php (part of the installation process) allows a remote unauthenticated attacker to disclose local files on hosts running PHP before 7.2.16, or on hosts where the MySQL ALLOW LOCAL DATA INFILE option is enabled.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2017-8923	7.5The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

80 443

752157291 | 2024-05-07T14:50:09.710480

80 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: text/html; charset=UTF-8
Date: Tue, 07 May 2024 14:50:09 GMT
Server: nginx/1.20.0
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjJBbjdoXC9aMGxmVWRHNnVGcENtSkVRPT0iLCJ2YWx1ZSI6Ilh2V0twT0phUDUxRFc4VStyTWtkVkJIZm56KytUZE1ZTHBNeEZkbWNlbldJWlkyQ3A0SSt6eXplOE10NjJOcURjR0ZQK1pJeWI3THJhc2JyWHpBV3dBPT0iLCJtYWMiOiJhYzZjMGQ4Y2YxYjM0NDJjNTczY2QwNTg2YzE4MzNiMzQwMGRmZWJhYjVhOTgyMzhhNzgzMDMzYTAyODc3YmMwIn0%3D; expires=Tue, 07-May-2024 16:50:09 GMT; Max-Age=7200; path=/
Set-Cookie: laravel_session=eyJpdiI6IktDZVVsU3ZcL2ZwemdlNEpJR3plSStBPT0iLCJ2YWx1ZSI6IkdxQkhQQm5yUDBSa2dwRmJvUlozcXdoQ3ljWGJLYUJxVlNaNG0ydmtpNVVmRFhaTDYyanBuZG0xaDN3cGhVMXZFVEZjbzB6WFVmT1U4NXFuMjliOXh3PT0iLCJtYWMiOiI2YzcyYjNkZjM0ODE1MTBkNTg4N2M1ZDA5MDdlYjBlYzJlNzRlZTk2YTY1MmMwODhmNGUwMjljN2M2NzViMTI1In0%3D; expires=Tue, 07-May-2024 16:50:09 GMT; Max-Age=7200; path=/; HttpOnly
Vary: Accept-Encoding
X-Powered-By: PHP/7.1.33
Content-Length: 5755
Connection: keep-alive

1530891451 | 2024-05-09T21:49:15.050864

443 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: text/html; charset=UTF-8
Date: Thu, 09 May 2024 21:49:14 GMT
Server: nginx/1.20.0
Set-Cookie: XSRF-TOKEN=eyJpdiI6InN0VGsrVmYrQ2lpMWNrczVEXC9HVjRnPT0iLCJ2YWx1ZSI6ImVHQTNGTnJ2ZlAzNVBxT1BySDh0Rk1wRkZBNlwvOXhkNE0ydFlTc2FvbVp3K0FKUzMrWnpEalJ4dndVZk9HbXhQTzlCRE5Ic0ROZWJ4Vnk4VFJ1eGFKdz09IiwibWFjIjoiMTA5YzliMDQyMzRmNTk4NGM3MTI5NTljN2JkNTJlMzY5YmFlMzY3YWE5ZWUyMjg0NjQ4YmI2OTBjMjAxYWNlYiJ9; expires=Thu, 09-May-2024 23:49:14 GMT; Max-Age=7200; path=/
Set-Cookie: laravel_session=eyJpdiI6InM1bEZhNnJZSUhRUGVpY0kwQ2tmbWc9PSIsInZhbHVlIjoia1BUUzlYUlJuM1RMVXl0SlAzclZ1T0NweXJGUVpPUnRtYUF4U21sb1MwZkdBSlNtYzF6WitNZFQ5OGpMWGZYc1FTMDMzb2xTXC9rdTBcL01teWliMUNsZz09IiwibWFjIjoiOTYyMmNmOTllM2U4OWZmM2I0MGFkNjJiZDdlNGMxZWVhNzQ4M2ViZGM5OTEyNWExNDNlNWU0NGFlOTFkYzMwZiJ9; expires=Thu, 09-May-2024 23:49:14 GMT; Max-Age=7200; path=/; HttpOnly
Vary: Accept-Encoding
X-Powered-By: PHP/7.1.33
Content-Length: 5755
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:8e:4e:2e:5b:0a:93:a2:c9:3d:e5:17:ea:8f:4d:39
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Amazon, CN=Amazon RSA 2048 M02
        Validity
            Not Before: Apr  9 00:00:00 2024 GMT
            Not After : May  8 23:59:59 2025 GMT
        Subject: CN=lwns.co
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d4:9e:7a:98:de:ac:1a:2d:1d:8a:97:f1:38:94:
                    bf:30:3d:8f:6c:8a:2e:da:22:d7:72:89:75:ad:20:
                    e8:88:1a:48:b4:f5:83:ad:cd:7a:6e:cf:ad:b1:0b:
                    80:e4:c7:9e:51:0e:dc:47:4b:32:cd:77:bc:09:08:
                    9a:b0:2b:df:55:15:28:28:4f:d5:c1:0e:e5:23:03:
                    ca:3e:f0:1c:82:1b:26:6b:2b:7d:cd:ea:10:d0:29:
                    9a:fb:46:13:9d:52:5f:35:ea:db:88:f4:da:4d:60:
                    ad:21:8a:58:d0:44:41:33:8f:f1:7d:61:db:18:94:
                    55:ca:77:49:b8:2a:28:83:98:3a:de:d3:f6:86:f7:
                    47:42:bf:90:d0:f2:c2:47:a8:94:22:60:30:8b:cd:
                    55:ea:e4:5b:26:49:1d:ab:fa:ee:e8:4e:cb:d0:5d:
                    f7:d5:8e:a5:b1:f4:63:4b:dd:da:fe:22:a8:da:65:
                    bb:8a:4e:42:18:4f:9f:2e:56:a6:e0:9a:98:f9:9b:
                    00:a6:11:51:d2:48:a8:41:d6:ab:a7:f6:af:a3:f8:
                    c2:b6:42:61:e0:cd:12:d7:a6:91:08:65:e3:e7:5a:
                    8b:4c:51:0e:b7:ba:a5:b2:f2:67:91:9a:29:41:65:
                    13:e4:79:e7:33:a5:be:44:5a:74:4f:e1:e9:0f:62:
                    7e:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                C0:31:52:CD:5A:50:C3:82:7C:74:71:CE:CB:E9:9C:F9:7A:EB:82:E2
            X509v3 Subject Key Identifier: 
                F6:D5:D9:95:7D:74:A4:6E:C6:8E:7C:C2:11:CF:65:5C:8D:9E:20:AB
            X509v3 Subject Alternative Name: 
                DNS:lwns.co, DNS:*.lwns.co
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.r2m02.amazontrust.com/r2m02.crl
            Authority Information Access: 
                OCSP - URI:http://ocsp.r2m02.amazontrust.com
                CA Issuers - URI:http://crt.r2m02.amazontrust.com/r2m02.cer
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Apr  9 08:55:48.650 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D1:80:98:59:DA:B7:7E:AF:83:81:CC:
                                71:6E:39:03:AD:B2:88:D3:80:3B:35:E4:9B:65:E1:3E:
                                5C:8C:84:C9:D9:02:20:41:6D:7F:7F:10:A0:6E:51:68:
                                C8:AB:6B:D3:79:F5:08:78:01:94:5F:1C:DF:EE:D9:CD:
                                9B:15:DA:45:F4:61:C1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Apr  9 08:55:48.704 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:31:69:43:7D:CD:9C:72:27:58:15:06:57:
                                27:BD:95:C6:61:07:E1:C8:F6:7A:E3:22:DE:CC:2A:B1:
                                DD:EE:83:45:02:20:15:C2:1B:EE:44:4A:23:B3:2A:FE:
                                95:10:AF:4F:60:1E:E5:87:61:C3:64:D1:A6:FE:2A:78:
                                8C:23:39:68:90:82
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Apr  9 08:55:48.753 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:E8:F7:2F:23:D3:08:41:9B:92:00:77:
                                1E:E3:CA:3D:82:80:00:91:21:2B:A7:7E:4E:42:61:D3:
                                AB:E7:AF:89:59:02:20:42:DB:A1:E5:45:6D:BF:EF:7E:
                                40:D4:00:42:95:B4:79:A2:1A:76:8F:F1:13:1E:1D:72:
                                8D:66:DB:C1:4A:68:13
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        19:3e:37:65:38:09:a3:6c:19:a2:6c:a0:49:0f:26:e0:d8:4a:
        4d:4c:72:10:ac:be:33:50:d9:ac:f8:d3:f0:68:4f:e9:88:1d:
        31:68:5b:48:cd:be:a6:17:94:bf:bb:13:21:3f:25:3a:c2:a2:
        db:14:72:05:fc:3a:81:c2:19:3b:27:a4:74:95:4d:b8:00:e5:
        98:6b:d7:a4:75:5e:b9:3b:7c:1a:d8:9f:be:51:4a:b3:e3:98:
        38:38:47:0d:fd:3b:76:be:30:25:4d:59:88:b8:7d:4d:a8:e2:
        20:e2:e8:5e:47:cb:3b:62:8e:9a:8d:02:b7:b2:a5:b2:68:41:
        bf:a6:34:e3:4d:9f:14:ba:22:99:0f:a5:29:29:73:5e:3f:96:
        1a:89:0e:e9:b7:7b:fe:48:27:7d:98:11:3b:4c:ee:b5:18:c0:
        6b:34:b5:18:ce:ee:ea:76:f2:07:cd:04:aa:90:9f:8b:24:97:
        de:09:94:ba:6f:ae:a2:cb:47:92:31:3d:07:72:5f:6f:b6:10:
        bc:a0:7e:72:f2:60:46:0c:37:c2:b4:eb:45:34:ad:c4:ea:ba:
        32:e9:0c:ff:25:51:84:45:7a:c5:84:86:ee:a2:c5:e0:84:e7:
        91:32:85:fe:c0:3d:4e:07:60:ee:29:6d:2e:67:91:36:08:56:
        a2:56:f5:4b

52.72.179.7

Last Seen: 2024-05-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

752157291 | 2024-05-07T14:50:09.710480
80 / tcp

nginx1.20.0

1530891451 | 2024-05-09T21:49:15.050864
443 / tcp

nginx1.20.0

Products

Pricing

Contact Us

52.72.179.7

Last Seen: 2024-05-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

752157291 | 2024-05-07T14:50:09.710480 80 / tcp

nginx1.20.0

1530891451 | 2024-05-09T21:49:15.050864 443 / tcp

nginx1.20.0

Products

Pricing

Contact Us

752157291 | 2024-05-07T14:50:09.710480
80 / tcp

1530891451 | 2024-05-09T21:49:15.050864
443 / tcp