GeneralInformation

Hostnames	ch.mp-track.com
Domains	mp-track.com
Country	Switzerland
City	Herrliberg
Organization	MAXONY Suisse SA
ISP	MAXONY Suisse SA
ASN	AS207395

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2010-3972	Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) 7.0, and IIS 7.5, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted FTP command, aka "IIS FTP Service Heap Buffer Overrun Vulnerability." NOTE: some of these details are obtained from third party information.
CVE-2010-2730	Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability."
CVE-2010-1899	Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) via a crafted request, related to asp.dll, aka "IIS Repeated Parameter Request Denial of Service Vulnerability."

OpenPorts

80 443

-450095009 | 2024-04-16T15:26:55.141594

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 16 Apr 2024 15:26:55 GMT
Content-Type: text/html
Content-Length: 77
Last-Modified: Sat, 30 Sep 2023 15:50:43 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "651843d3-4d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

1700713701 | 2024-04-13T12:12:44.839166

443 / tcp

HTTP/1.1 302 Object moved
Date: Sat, 13 Apr 2024 12:12:44 GMT
Content-Type: text/html
Content-Length: 153
Connection: keep-alive
Keep-Alive: timeout=60
Cache-Control: private
Location: https://www.mailpro.com/pricing/
Server: Microsoft-IIS/7.5
Set-Cookie: ASPSESSIONIDCSASSRAD=JFGDAMCBIHOICLMEOGAOOFFJ; path=/
X-Powered-By: ASP.NET

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:7a:e1:6d:ab:ef:8f:9d:70:e5:a4:16:d2:c8:b6:b2:92:cd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 31 03:08:35 2024 GMT
            Not After : Jun 29 03:08:34 2024 GMT
        Subject: CN=ch.mp-track.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:5c:3f:24:c4:8e:a0:bc:04:5d:8c:85:bd:7d:
                    73:db:60:80:ac:ff:47:eb:4d:23:d9:51:76:8e:6d:
                    95:43:2f:8b:63:fc:3d:e5:b3:2a:45:ad:bc:6c:6e:
                    ed:95:9f:ae:fa:ac:f9:a8:f4:05:67:e8:02:40:53:
                    43:f5:dc:49:2a:8f:f4:00:80:88:df:4a:be:d3:33:
                    fc:f0:06:1f:16:58:c6:34:e8:02:55:df:44:cf:a6:
                    f5:56:07:91:eb:38:50:ce:21:64:55:0a:85:dc:51:
                    f4:b3:5a:17:f3:e3:62:3d:c0:fb:15:5c:c8:6d:60:
                    c7:58:78:20:07:ac:68:c1:3f:94:88:73:a9:91:a9:
                    12:48:d2:6a:de:b4:a8:37:77:7d:5c:2e:18:7b:2f:
                    b9:5d:d8:3b:1a:31:3d:7f:0d:8b:5e:11:7a:aa:31:
                    6c:4d:ee:03:66:3c:06:13:f1:1f:5e:64:a4:43:c6:
                    3f:20:b9:5d:bc:43:21:f1:04:90:c5:0c:14:8c:8f:
                    64:82:c3:37:f0:cd:3c:d3:01:af:96:83:fe:4c:8a:
                    75:8c:81:6d:ee:9f:9e:01:42:42:48:b9:2c:6e:09:
                    b7:ff:c8:7b:34:61:97:61:32:0e:2d:7a:ee:dd:bf:
                    e3:f0:a4:f4:5a:4c:de:1c:c1:9e:34:ba:3f:9f:b3:
                    9a:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                18:28:C5:8B:39:19:85:8E:43:5C:33:79:93:93:4A:85:EB:C0:90:91
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.ch.mp-track.com, DNS:ch.mp-track.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 31 04:08:35.377 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F4:8B:83:74:B6:9A:24:99:1C:76:B3:
                                92:DC:0E:CA:DE:17:FC:49:E2:0E:69:A9:CD:F9:2A:07:
                                B9:20:1D:84:5F:02:21:00:94:BB:94:0F:36:96:EF:38:
                                2E:1F:A7:18:85:A2:31:05:45:47:2F:D5:EB:27:D8:BA:
                                08:64:43:33:09:4F:63:89
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar 31 04:08:35.581 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:87:32:39:C3:B0:A1:A1:B0:30:97:AA:
                                8A:24:31:5E:26:A0:48:E8:DC:B0:DC:AA:86:6F:FA:20:
                                7C:0F:50:01:6E:02:20:76:B2:DC:7A:76:FF:A8:FA:83:
                                A5:3B:0C:0F:06:05:D2:80:7F:A8:2E:95:84:A8:94:3A:
                                63:29:D6:31:76:32:87
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        02:0c:41:e9:3b:39:27:5b:63:8d:4c:67:f5:7e:53:9a:33:fa:
        0c:28:e0:92:72:43:00:6b:79:9b:d6:00:57:01:cd:4e:cc:4e:
        74:99:00:45:34:6b:db:52:30:c9:22:b1:f3:49:9c:90:70:57:
        86:2c:c1:c7:b0:aa:e8:e9:93:8a:9e:29:00:23:99:b3:e2:4f:
        33:a4:43:d3:ce:4f:c5:4b:9b:d8:0a:89:60:e6:3c:21:56:6d:
        40:52:32:d1:6b:89:15:8c:f6:de:eb:cb:25:47:ea:b5:d8:cb:
        bb:c5:3c:10:fa:3d:c6:df:97:5b:65:4b:a9:5a:c0:1f:36:5f:
        ae:59:12:ab:ea:05:3a:2d:10:db:dd:cc:7d:29:45:d1:16:27:
        25:a5:e2:85:14:35:9f:59:82:71:86:f8:f3:5b:9d:6e:0e:1e:
        24:12:24:4a:c1:e7:32:73:76:b2:26:15:d6:4b:8c:3c:2e:d3:
        3a:9b:00:6d:6b:dd:e6:ff:52:fb:6a:0b:00:ea:37:b2:7a:43:
        d0:60:de:f4:81:24:04:b2:e9:ff:c9:a6:f2:7d:e2:83:9c:e8:
        68:5d:6e:14:3d:b4:81:88:9d:83:8e:88:e0:29:b9:4e:b7:fa:
        43:30:cd:d2:aa:08:7a:ff:60:1a:c7:c5:d0:7f:c9:cd:3f:8b:
        fb:c8:01:aa

62.133.56.99

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-450095009 | 2024-04-16T15:26:55.141594
80 / tcp

nginx1.20.2

1700713701 | 2024-04-13T12:12:44.839166
443 / tcp

Microsoft IIS httpd7.5

Products

Pricing

Contact Us

62.133.56.99

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-450095009 | 2024-04-16T15:26:55.141594 80 / tcp

nginx1.20.2

1700713701 | 2024-04-13T12:12:44.839166 443 / tcp

Microsoft IIS httpd7.5

Products

Pricing

Contact Us

-450095009 | 2024-04-16T15:26:55.141594
80 / tcp

1700713701 | 2024-04-13T12:12:44.839166
443 / tcp