GeneralInformation

Hostnames	domainrecover.com
Domains	domainrecover.com
Country	United States
City	New York City
Organization	Interserver, Inc
ISP	Interserver, Inc
ASN	AS19318

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

487918987 | 2024-04-23T05:28:10.323428

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 23 Apr 2024 06:28:00 GMT
Content-Type: application/octet-stream
Content-Length: 0
Connection: keep-alive
Content-Type: text/plain

40402372 | 2024-04-20T00:38:54.514669

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 20 Apr 2024 01:38:44 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 21
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:05:11:09:89:f0:65:dc:a6:bf:a4:f8:be:34:4c:07:6f:d2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 18 17:44:35 2024 GMT
            Not After : May 18 17:44:34 2024 GMT
        Subject: CN=*.domainrecover.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c7:c6:4b:cf:32:06:85:b5:16:56:07:e5:4f:99:
                    0a:9d:31:ae:bd:37:86:57:0e:44:08:2d:8a:b2:8f:
                    4f:4d:bb:37:15:9f:b5:5a:b8:1b:0a:18:73:d1:18:
                    6a:af:68:41:6b:8f:06:46:fa:86:2c:57:8a:58:2f:
                    97:07:24:59:6b:7a:46:9a:94:24:8c:06:4c:89:40:
                    d1:97:79:39:2e:00:70:30:d1:ea:0e:c2:cc:f9:18:
                    20:81:e2:11:2c:de:a2:0c:c5:f1:22:cd:25:28:ee:
                    1e:de:28:c5:57:e5:dc:63:0c:69:12:ed:0e:96:89:
                    e7:cf:d0:e9:08:e3:6f:e4:76:fd:a0:34:af:02:e5:
                    15:9b:74:a2:81:0d:aa:ba:ad:5d:26:7d:92:f8:a0:
                    a3:01:a8:63:92:a1:dc:23:0a:4a:bc:6c:65:35:33:
                    ac:cb:ca:9f:ca:92:35:2e:29:d3:5c:3a:fb:70:c8:
                    18:7f:e4:2d:0c:bf:f7:b5:8c:50:71:51:05:3b:a2:
                    a5:5b:b9:a8:4d:d8:4e:92:a9:7f:17:1f:e4:26:87:
                    7d:62:07:09:a4:4d:e6:89:8c:e9:b3:bf:99:2e:56:
                    74:d9:96:c5:c1:96:57:42:00:91:36:37:d9:14:6f:
                    30:42:c3:58:3b:f0:bc:6e:fe:8f:34:dc:72:32:fd:
                    f8:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8A:BF:70:61:78:9F:AF:36:89:3C:24:B2:49:0D:42:B2:17:F4:D9:BF
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.domainrecover.com, DNS:domainrecover.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Feb 18 18:44:35.859 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:33:36:BF:CA:10:38:A5:52:9E:57:31:4C:
                                BA:21:89:E7:9F:FC:A5:6B:FC:2C:BB:D2:C6:7F:32:77:
                                B3:0B:32:A9:02:20:4D:24:C4:B7:D0:22:E5:BC:5E:0E:
                                50:70:8E:65:EA:08:1F:6C:A1:25:13:59:8B:5D:F8:F5:
                                70:E8:23:20:3E:FB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb 18 18:44:35.901 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:29:99:6E:F5:FA:39:BE:D1:13:6E:4D:A1:
                                D8:2F:34:00:B0:3E:8D:B0:79:83:69:19:CD:71:54:F6:
                                1E:CB:5B:6C:02:21:00:D6:45:17:E6:33:28:A8:DE:D1:
                                13:B5:96:48:B1:5C:D9:23:8B:E0:09:04:A0:DB:8C:70:
                                21:E4:F7:51:03:74:C8
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        97:63:1a:ca:88:76:0e:4a:f9:c8:13:fc:98:23:3f:aa:9e:52:
        5d:09:65:e6:66:51:8a:d2:bd:e9:6d:70:7f:28:98:27:ea:77:
        7f:b9:42:4f:f6:b8:eb:5c:a8:29:3b:da:f6:98:b9:71:22:86:
        9b:d2:8f:36:47:3b:09:24:92:19:f7:97:f4:60:ca:df:d7:0a:
        39:43:d0:36:36:7e:c1:37:ec:80:f2:c9:08:22:ae:3a:53:39:
        11:f4:ed:69:63:fb:7a:7a:0a:7e:1e:61:55:6a:f7:1e:bb:d2:
        58:4e:38:98:16:e8:42:7b:26:22:6a:7e:71:d5:d2:12:8a:6a:
        d9:8e:fe:d3:6f:e1:d7:9c:e3:df:bd:f0:6b:0d:a9:a4:09:14:
        22:c2:0e:e5:a3:a0:6b:c8:8a:25:30:90:1c:a8:63:3a:50:fa:
        3f:35:d4:ca:76:b0:99:4f:b6:04:d0:bf:58:ff:51:dc:91:8d:
        6f:48:cd:e6:ce:18:00:fc:cc:8e:27:9d:66:7d:db:01:f7:0c:
        04:37:8c:39:99:f3:30:3b:b5:9d:2a:52:99:e9:f1:7c:8c:c8:
        4a:8c:e4:ec:4e:71:41:1c:20:6c:6e:48:35:4b:f7:5e:e0:6d:
        12:82:95:e4:32:3c:f5:26:76:78:18:55:2c:a6:2a:77:92:eb:
        6f:59:cc:56

66.45.246.138

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

487918987 | 2024-04-23T05:28:10.323428
80 / tcp

nginx1.19.5

40402372 | 2024-04-20T00:38:54.514669
443 / tcp

nginx1.19.5

Products

Pricing

Contact Us

66.45.246.138

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

487918987 | 2024-04-23T05:28:10.323428 80 / tcp

nginx1.19.5

40402372 | 2024-04-20T00:38:54.514669 443 / tcp

nginx1.19.5

Products

Pricing

Contact Us

487918987 | 2024-04-23T05:28:10.323428
80 / tcp

40402372 | 2024-04-20T00:38:54.514669
443 / tcp