GeneralInformation

Hostnames	moc.microsoftlabsonline.com
Domains	microsoftlabsonline.com
Country	United States
City	Redmond
Organization	Xtreme Consulting Group
ISP	CoreLink Data Centers
ASN	AS1616

WebTechnologies

JavaScript libraries

jQuery1.9.1

Security

reCAPTCHA

UI frameworks

Bootstrap3.3.7

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	6.1In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	6.1In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-8331	6.1In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.
CVE-2019-11358	6.1jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2018-20677	6.1In Bootstrap before 3.4.0, XSS is possible in the affix configuration target property.
CVE-2018-20676	6.1In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport attribute.
CVE-2018-14042	6.1In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip.
CVE-2018-14040	6.1In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute.
CVE-2016-10735	6.1In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041.
CVE-2015-9251	6.1jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2014-4078	The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability."

OpenPorts

80 443 500 4443

396138133 | 2024-04-20T07:38:30.203289

80 / tcp

HTTP/1.1 403 Forbidden
Date: Sat, 20 Apr 2024 07:38:30 GMT
Server: Apache
Content-Length: 199
Content-Type: text/html; charset=iso-8859-1

-268970010 | 2024-04-16T01:02:45.288259

443 / tcp

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Set-Cookie: ASP.NET_SessionId=qa11yqkexjn31w3n4dn1rpzn; path=/; HttpOnly; SameSite=Lax
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Tue, 16 Apr 2024 01:02:44 GMT
Content-Length: 14806

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            33:00:4a:2a:12:88:b6:9d:45:9a:d3:81:11:00:00:00:4a:2a:12
        Signature Algorithm: sha384WithRSAEncryption
        Issuer: C=US, O=Microsoft Corporation, CN=Microsoft Azure TLS Issuing CA 05
        Validity
            Not Before: Aug 10 05:51:56 2022 GMT
            Not After : Aug  5 05:51:56 2023 GMT
        Subject: C=US, ST=WA, L=Redmond, O=Microsoft Corporation, CN=moc.microsoftlabsonline.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d9:0e:a4:22:d2:b3:1c:b3:10:08:d2:d6:40:33:
                    fc:36:72:0c:e6:40:e0:5c:f7:48:85:eb:8d:8a:28:
                    ff:4a:6a:60:5a:b6:d9:31:4b:02:e7:31:18:08:98:
                    20:7e:de:aa:a1:2a:e8:7f:64:7c:7e:45:42:d6:5a:
                    b8:f5:c1:f7:1e:6d:9f:21:ab:45:20:6a:3e:43:a6:
                    fe:c3:f3:5e:5e:ef:c6:a1:dd:7c:65:a0:6e:7b:91:
                    66:00:ff:38:14:7a:0f:d6:91:5a:fd:cd:cd:6d:5f:
                    11:84:bb:d3:d9:fa:85:2a:d5:e2:20:49:f5:2c:34:
                    a5:35:47:db:23:85:4a:3d:bb:5e:ce:9b:fb:47:95:
                    47:19:e4:c8:63:96:ff:16:ef:21:40:32:93:7a:b8:
                    8d:60:9e:9e:d2:d1:17:98:d4:b9:8f:4f:ba:61:57:
                    26:a3:73:c8:4c:b2:ba:3b:d6:f1:08:94:05:0f:8c:
                    fe:99:a8:6b:6c:77:b7:32:90:76:f2:8f:c0:65:f0:
                    aa:78:0d:0f:c8:9d:58:be:a2:22:89:89:aa:8b:71:
                    e2:f7:5d:f9:01:54:d9:81:d3:5b:b3:f2:b0:0c:f9:
                    c3:ef:77:2e:3d:c0:4f:0d:01:ad:74:38:4c:c8:d8:
                    f5:68:82:ee:bb:55:78:79:65:10:3c:94:d6:2d:58:
                    bb:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
                                B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
                    Timestamp : Aug 10 06:01:57.414 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:13:16:BA:C0:DC:1A:C8:D9:CE:61:B3:FF:
                                FD:8E:60:31:D4:18:8F:21:7C:BD:54:40:28:D3:C4:2A:
                                0A:AE:A5:D0:02:20:0D:19:AA:5C:CD:76:69:D3:90:4F:
                                FC:8A:A3:F7:C6:22:E9:A3:A1:B3:D8:51:D4:AA:CA:7E:
                                12:EF:C9:26:7B:11
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : B3:73:77:07:E1:84:50:F8:63:86:D6:05:A9:DC:11:09:
                                4A:79:2D:B1:67:0C:0B:87:DC:F0:03:0E:79:36:A5:9A
                    Timestamp : Aug 10 06:01:57.527 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:39:72:FA:C2:82:37:26:21:69:C2:29:EF:
                                0E:4B:72:EB:80:78:18:16:9A:19:E6:89:44:C1:69:1B:
                                2E:8D:F7:82:02:20:52:E6:24:6A:97:FB:B1:55:0B:28:
                                DD:59:DB:A8:67:4D:6B:54:CF:C6:0C:FB:6A:13:9A:E3:
                                8A:B5:E4:4C:D9:A4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
                                16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
                    Timestamp : Aug 10 06:01:57.503 2022 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:55:E4:79:3E:7E:A3:4D:BB:1E:E3:74:2A:
                                29:44:2E:EB:85:2C:F6:52:36:73:98:06:D0:54:45:A0:
                                7D:2E:C7:0E:02:21:00:8B:25:E5:6C:C2:B9:0F:19:7B:
                                03:D0:61:F1:FD:BE:3F:D7:7D:8F:C9:77:61:A8:86:6E:
                                CF:0D:DC:0B:61:8E:FF
            Microsoft Application Policies Extension: 
                0.0
..+.......0
..+.......
            Microsoft certificate template: 
                0-.%+.....7.........F...........]...i...>..d..%
            Authority Information Access: 
                CA Issuers - URI:http://www.microsoft.com/pkiops/certs/Microsoft%20Azure%20TLS%20Issuing%20CA%2005%20-%20xsign.crt
                OCSP - URI:http://oneocsp.microsoft.com/ocsp
            X509v3 Subject Key Identifier: 
                DB:AB:27:F0:1C:00:3F:F1:0B:5B:70:4E:5A:92:BE:81:01:33:9E:C0
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment, Data Encipherment
            X509v3 Subject Alternative Name: 
                DNS:moc.microsoftlabsonline.com
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://www.microsoft.com/pkiops/crl/Microsoft%20Azure%20TLS%20Issuing%20CA%2005.crl
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.311.76.509.1.1
                  CPS: http://www.microsoft.com/pkiops/Docs/Repository.htm
                Policy: 2.23.140.1.2.2
            X509v3 Authority Key Identifier: 
                C7:B2:9C:7F:1C:E3:B8:5A:EF:E9:68:1A:A8:5D:94:C1:26:52:6A:68
            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, TLS Web Server Authentication
    Signature Algorithm: sha384WithRSAEncryption
    Signature Value:
        81:07:2a:b2:2b:58:2e:38:29:b1:d4:41:b8:b1:3e:46:2d:00:
        64:ec:c7:7a:1a:1d:51:19:4f:4f:bc:da:8b:0d:7a:d6:d7:c0:
        e3:0c:42:5e:59:3a:db:06:f0:9e:ac:9f:75:ec:32:3f:96:16:
        8b:63:45:70:40:d6:59:cf:95:48:62:8d:39:ec:f3:e2:82:00:
        69:ca:0f:f3:5c:b3:b2:05:b8:33:ce:52:03:3d:dd:09:81:16:
        e6:6a:6a:f2:49:78:c0:d9:49:c0:b8:40:62:e5:ac:cf:cc:ea:
        dd:ac:7e:e0:d7:69:56:7f:0f:60:d2:e6:f8:cc:08:6f:23:44:
        b5:c6:40:f9:5c:88:b7:b7:b9:a2:2d:dd:76:7d:ce:85:07:c7:
        0c:a8:ef:f7:94:f8:a1:96:36:62:a6:91:8f:f3:93:c1:62:1d:
        c8:2d:5c:f1:c0:87:b8:92:8c:27:ee:bb:67:d7:5f:ab:e1:0c:
        75:42:e7:f0:2c:1b:fa:e4:42:1f:01:7a:f9:4a:32:49:57:e8:
        c0:10:37:6f:e0:9a:e2:19:55:88:40:69:c7:5a:15:d9:64:5a:
        a9:75:2c:cc:57:86:c3:72:70:9f:86:3a:ac:31:16:c0:b1:20:
        0d:a5:55:ae:7e:3a:89:1d:7f:dd:5a:d4:bd:43:0f:0a:7b:4a:
        df:83:7e:50:f8:9a:27:df:9f:f7:e4:42:10:66:f2:a4:8f:94:
        f7:44:b5:2b:a2:64:a5:11:3c:4c:0a:cc:e1:b1:dd:54:3f:5d:
        a6:e0:e3:80:21:3c:ba:b9:f6:3b:56:0b:98:42:5b:b6:22:a0:
        8f:50:48:f3:4c:14:c7:4c:47:2a:37:8b:ba:2c:fb:bd:7c:5b:
        92:15:e6:20:ba:e6:f1:28:75:de:7d:04:fb:2c:46:cf:5e:66:
        02:43:1f:e4:98:2c:ce:0e:21:5c:05:99:69:ca:a9:80:f8:7a:
        f7:de:1f:f8:17:20:74:7b:e7:4f:24:de:32:b2:f4:57:98:37:
        d0:d8:9d:5a:38:1b:6d:9a:f1:74:89:40:ce:2b:e5:f8:72:9a:
        a5:8c:ec:7d:54:78:56:ce:cf:78:55:e0:0d:f6:93:74:22:cd:
        f5:17:36:e0:bf:0e:2d:c9:48:de:37:02:ee:b3:c4:eb:5e:18:
        9c:27:fc:a8:df:c6:35:81:af:a5:3e:2e:75:ab:1d:3e:26:d3:
        b5:c9:0b:76:e9:dd:45:51:37:0f:44:81:74:20:5d:eb:b7:c0:
        07:51:7e:02:02:06:05:f6:83:bc:9d:bd:5e:59:2c:da:d7:a8:
        e6:d9:4c:96:b5:91:87:16:45:c1:3e:5f:66:c8:46:e6:58:10:
        2c:22:5c:2a:af:f7:7b:de

-2101225197 | 2024-04-17T08:49:39.330370

500 / udp

VPN (IKE)

Initiator SPI: 7173337671667879
Responder SPI: 6d786d78686d736f
Next Payload: RESERVED
Version: 2.0
Exchange Type: DOI Specific Use
Flags:
    Encryption:     False
    Commit:         False
    Authentication: False
Message ID: 00000000
Length: 36

816972904 | 2024-04-20T06:16:43.031544

4443 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 06:16:42 GMT
Server: xxxx
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src https: data: ws: wss: blob: 'unsafe-inline' 'unsafe-eval'; worker-src 'self' blob:; frame-ancestors 'self';
X-XSS-Protection: 1; mode=block
Content-Type: text/html;charset=utf-8
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 27202
Set-Cookie: JSESSIONID=s3papfic2jmn1wz38xripm1hm92152; Path=/userportal; Secure; HttpOnly
Connection: close

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 87886792793 (0x1476760859)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, ST=WA, L=Redmond, O=Xtreme Consulting Group, Inc., OU=OU, CN=Sophos_CA_C2104326Y6DB363/emailAddress=doug@xtremeconsulting.com
        Validity
            Not Before: Aug  1 00:00:00 2015 GMT
            Not After : Dec 31 23:59:59 2036 GMT
        Subject: C=US, ST=WA, L=Redmond, O=Xtreme Consulting Group, Inc., OU=OU, CN=SophosApplianceCertificate_C2104326Y6DB363/emailAddress=doug@xtremeconsulting.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ad:9e:df:88:15:42:81:0e:d1:0c:eb:61:0f:dd:
                    de:45:22:ca:4c:28:9a:54:de:18:a2:21:f2:fc:83:
                    57:84:d7:08:a3:c2:61:1b:ca:2b:f4:1f:52:0c:95:
                    f8:c2:53:16:97:1f:b3:e6:b6:dc:a7:6b:70:a6:a5:
                    51:f7:e2:1a:da:f6:b4:19:93:3f:a5:45:a3:6d:48:
                    d8:2e:4a:7e:68:b2:eb:ac:9f:d6:5b:91:f2:a2:99:
                    4b:35:dc:08:1f:b9:a3:e7:6b:4b:73:06:90:61:75:
                    3c:bb:2a:66:fc:d4:6a:fb:2c:0f:43:c0:77:b0:ba:
                    be:2e:b5:3e:b7:5e:3a:09:aa:8d:07:ae:19:a6:5e:
                    9d:d3:31:54:af:d6:24:52:87:e8:24:69:c8:69:54:
                    fc:bc:2b:c5:e8:a2:14:17:c1:ea:29:c9:09:15:dd:
                    2d:7f:9a:89:dc:c9:e5:6a:ac:5f:4c:75:0d:90:01:
                    ee:85:0b:8f:e5:d2:47:cb:01:a4:6b:37:d2:8c:06:
                    37:84:b1:bc:3b:ac:d8:fa:f1:49:3e:5b:fb:d2:fb:
                    70:6f:e8:4b:dc:79:a1:65:2b:ea:83:f9:3c:89:2a:
                    1a:80:b5:9d:00:34:d9:cd:58:b4:71:da:e0:53:9a:
                    80:b4:cc:4f:5d:31:f7:d3:64:55:f1:92:3a:be:7d:
                    54:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            Netscape Comment: 
                OpenSSL Generated Certificate
            X509v3 Subject Key Identifier: 
                49:B4:08:0D:11:2C:D3:83:89:A3:D8:D6:A7:EB:23:F6:DE:05:91:0E
            X509v3 Authority Key Identifier: 
                keyid:B7:07:49:D3:45:75:81:28:8C:55:CF:C1:DC:F3:92:44:DE:C8:26:CA
                DirName:/C=US/ST=WA/L=Redmond/O=Xtreme Consulting Group, Inc./OU=OU/CN=Sophos_CA_C2104326Y6DB363/emailAddress=doug@xtremeconsulting.com
                serial:8C:93:A6:EC:F4:CE:00:A8
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        9d:ff:87:cc:bb:90:ce:9b:4a:56:dc:04:fb:78:9b:8c:98:3d:
        dc:96:67:6e:f4:00:cc:ff:d9:8b:78:65:ef:02:c5:85:79:d0:
        45:50:74:5b:41:b5:03:db:f1:6a:a4:3c:71:02:61:99:da:f5:
        c8:d3:8e:68:13:d9:dd:6a:1c:f9:42:3f:7e:8e:86:ba:6b:21:
        0c:42:ba:e5:02:41:0a:89:2a:22:f6:ae:98:e3:20:19:46:e0:
        10:3e:bc:25:7d:74:e8:4d:5a:8a:11:9f:cc:7e:22:ea:7c:47:
        f8:6c:fa:89:96:02:67:79:e1:ae:5d:8b:0f:1b:0c:ed:9c:58:
        af:ec:18:6e:f7:ab:c4:04:e5:f4:93:aa:0e:8f:01:9a:e7:ab:
        2e:2c:ac:57:8a:63:7f:58:3b:b2:b3:67:71:3a:c4:99:76:aa:
        4e:f2:e6:0c:a0:82:a9:81:15:a9:ed:60:c3:5f:d4:f1:a3:66:
        35:d8:e3:6e:ea:fe:0f:a2:6c:fb:de:43:cc:e1:16:60:e6:28:
        87:b3:67:7c:24:18:7b:bd:89:13:3e:95:be:8e:90:06:61:69:
        a2:62:6a:08:9d:12:08:47:dd:9c:78:e3:4a:5f:05:0b:d7:05:
        af:c2:93:ae:bd:c0:3f:a7:36:09:e7:c7:6b:44:d6:a3:73:97:
        e5:72:5b:c4

67.21.175.70

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

396138133 | 2024-04-20T07:38:30.203289
80 / tcp

Apache httpd

-268970010 | 2024-04-16T01:02:45.288259
443 / tcp

Microsoft IIS httpd8.5

-2101225197 | 2024-04-17T08:49:39.330370
500 / udp

816972904 | 2024-04-20T06:16:43.031544
4443 / tcp

Sophos User Portal

Products

Pricing

Contact Us

67.21.175.70

Last Seen: 2024-04-20

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

396138133 | 2024-04-20T07:38:30.203289 80 / tcp

Apache httpd

-268970010 | 2024-04-16T01:02:45.288259 443 / tcp

Microsoft IIS httpd8.5

-2101225197 | 2024-04-17T08:49:39.330370 500 / udp

816972904 | 2024-04-20T06:16:43.031544 4443 / tcp

Sophos User Portal

Products

Pricing

Contact Us

396138133 | 2024-04-20T07:38:30.203289
80 / tcp

-268970010 | 2024-04-16T01:02:45.288259
443 / tcp

-2101225197 | 2024-04-17T08:49:39.330370
500 / udp

816972904 | 2024-04-20T06:16:43.031544
4443 / tcp