GeneralInformation

Hostnames	lsr.birtum.sh www.lsr.birtum.sh
Domains	birtum.sh
Country	United States
City	Kansas City
Organization	NGCS Net
ISP	IONOS SE
ASN	AS8560
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

677579724 | 2024-05-08T19:42:35.140103

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 08 May 2024 19:42:34 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

2002515398 | 2024-05-05T09:16:27.041002

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 May 2024 09:16:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 5236
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: DENY
Set-Cookie: session_id=e1ac24b5b1581b8e3d406b6e385fd1be3d4f6588; Expires=Sat, 03 Aug 2024 09:16:25 GMT; Max-Age=7776000; HttpOnly; Path=/
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:20:32:93:73:2b:27:16:0b:18:17:04:9c:27:a7:7a:15:8c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 18 21:45:38 2024 GMT
            Not After : Jul 17 21:45:37 2024 GMT
        Subject: CN=www.lsr.birtum.sh
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:2b:4e:1c:9a:58:ca:1c:4e:35:97:90:c2:86:
                    ef:ea:7c:00:3c:32:0f:84:c5:da:97:a3:46:3c:e8:
                    42:46:b2:9c:d9:98:7c:c3:9c:eb:51:ed:f4:bd:cd:
                    ce:7b:01:7d:9c:93:f1:01:86:ab:57:80:ba:93:9f:
                    56:f6:9a:58:9c:b6:f6:93:dd:63:1c:d9:7a:eb:11:
                    47:a3:8d:65:b1:98:d8:29:d9:ec:4c:de:69:8b:f7:
                    74:64:32:d0:cd:50:7c:5c:e2:02:43:b7:f7:e7:d9:
                    8c:4e:f6:77:37:ef:59:e3:6f:45:40:89:0c:ca:36:
                    ff:f2:2e:b4:52:84:ae:34:e3:3c:1e:49:7f:2f:66:
                    57:5c:37:db:69:f0:14:ee:b6:1a:40:5c:40:50:ae:
                    ce:5c:5c:a2:13:c4:88:07:27:63:3c:4f:2d:b5:89:
                    05:49:af:19:3a:15:86:6f:50:47:5e:c7:f9:4d:6c:
                    c7:c7:8c:e3:e6:a6:95:e4:22:bd:95:43:e2:c1:12:
                    10:bb:ee:e4:7b:86:74:57:3e:f4:38:78:4a:40:31:
                    b8:d8:3e:b4:5a:8f:3f:e5:65:24:e5:dc:5d:82:86:
                    f8:da:79:41:c0:55:c5:55:c8:44:56:84:8c:cb:87:
                    0d:47:61:dd:ca:5e:6a:ad:a3:6b:67:cc:9b:19:b0:
                    c0:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B2:29:AA:F8:43:6C:93:D3:9E:83:57:06:F2:15:80:ED:66:D0:75:B5
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:lsr.birtum.sh, DNS:www.lsr.birtum.sh
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Apr 18 22:45:38.814 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FC:C8:63:41:27:47:F1:43:6B:9C:B6:
                                54:83:9A:36:D8:B4:3C:A2:DE:44:25:28:5D:76:49:5A:
                                34:AC:30:25:B0:02:21:00:D6:8D:9A:E6:E0:94:A5:C0:
                                3E:8A:88:13:13:39:58:EF:45:7B:50:CE:0E:DD:59:AE:
                                F1:77:39:08:EB:19:6F:E0
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 18 22:45:38.805 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CF:5F:BB:10:63:4A:7C:21:9B:13:54:
                                FF:10:50:0E:2B:85:DC:90:BD:81:D5:50:DC:ED:BB:F5:
                                EB:D5:9F:30:A1:02:21:00:B3:88:76:1D:EB:4B:37:AE:
                                FA:A8:5E:67:82:B0:77:56:DA:2E:E3:7A:A3:F9:CF:4B:
                                57:35:80:12:D3:64:DE:C8
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:4f:a3:83:b9:36:f9:56:67:07:48:97:21:9a:e9:f3:e5:5a:
        76:3c:0b:0e:2e:1e:ee:6d:08:60:57:27:0c:0e:10:5f:a1:e9:
        c7:8d:f3:d3:aa:e9:99:c2:aa:6d:23:ae:50:ca:df:63:57:84:
        f2:5f:58:dc:39:aa:63:ce:8c:1c:a5:42:77:9d:c9:bf:02:e2:
        a3:8b:c4:3a:ae:68:d0:1e:71:fb:06:c8:91:e2:53:ae:06:25:
        fc:77:df:55:ed:0a:f0:4d:60:50:8c:ad:ca:1b:46:c4:f9:20:
        2a:2c:15:2a:6c:4e:42:c3:77:0e:d4:b6:30:6f:7a:61:42:58:
        68:5f:71:8d:7c:ed:37:7e:d6:86:64:bb:70:c7:28:ff:c9:67:
        2b:aa:9e:df:72:49:61:8d:3a:ae:bc:e5:7a:c1:7f:dd:f9:15:
        38:be:32:48:39:37:d3:06:d4:c7:ba:3c:de:08:fa:5e:06:c5:
        bf:f6:04:93:2b:da:3c:ca:90:b1:d7:bd:40:c4:31:95:df:ed:
        8d:bb:f4:90:39:52:74:60:1d:4b:3e:fc:f8:1b:95:f8:39:ba:
        0b:75:c5:79:7a:29:a3:23:85:27:b5:6e:8b:2c:3e:a5:cb:22:
        22:7b:46:08:44:e6:6d:6c:bb:97:5a:51:4d:cf:c0:68:dc:84:
        ee:2f:d6:ce

62.151.182.138

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-05-08T19:42:35.140103
80 / tcp

nginx1.18.0

2002515398 | 2024-05-05T09:16:27.041002
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

62.151.182.138

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

677579724 | 2024-05-08T19:42:35.140103 80 / tcp

nginx1.18.0

2002515398 | 2024-05-05T09:16:27.041002 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

677579724 | 2024-05-08T19:42:35.140103
80 / tcp

2002515398 | 2024-05-05T09:16:27.041002
443 / tcp