GeneralInformation

Hostnames	css.yandex.net img-css.friends.yandex.net img.yandex.net imgl.yandex.net site.yandex.net static.yandex.net js.static.yandex.net lego.static.yandex.net css.yandex.ru img.yandex.ru yandex.st i.yandex.st static.yandex.st www.yandex.st static.yandex.sx yastat.net yastatic-net.ru yastatic.net
Domains	yandex.net yandex.ru yandex.st yandex.sx yastat.net yastatic-net.ru yastatic.net
Country	Russian Federation
City	Vyborg
Organization	GIS Technologies LLC
ISP	Arelion Sweden AB
ASN	AS1299

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443

936400872 | 2024-04-16T09:31:47.100892

80 / tcp

HTTP/1.1 404 Not found
Server: nginx/1.17.9
Date: Tue, 16 Apr 2024 09:31:46 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=5
NEL: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}

-850507101 | 2024-04-16T18:49:23.792034

443 / tcp

HTTP/1.1 404 Not found
Server: nginx/1.17.9
Date: Tue, 16 Apr 2024 18:49:23 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=5
NEL: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            64:7d:cc:05:42:a8:3d:c6:9b:1c:49:52
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign ECC OV SSL CA 2018
        Validity
            Not Before: Dec 13 10:50:36 2023 GMT
            Not After : Jun 11 20:59:59 2024 GMT
        Subject: C=RU, ST=Moscow, L=Moscow, O=YANDEX LLC, CN=*.yastatic-net.ru
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:87:be:11:ff:5a:56:14:c6:6a:63:24:51:94:25:
                    fd:8e:b1:44:50:a3:6d:20:f4:a4:0d:43:16:67:59:
                    68:f3:ed:c8:a1:0d:f1:f6:07:64:73:77:b4:20:e3:
                    09:f6:3c:45:f8:a1:d5:fa:30:da:78:cf:ad:fd:f9:
                    61:ac:af:71:dd
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gseccovsslca2018.crt
                OCSP - URI:http://ocsp.globalsign.com/gseccovsslca2018
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.20
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gseccovsslca2018.crl
            X509v3 Subject Alternative Name: 
                DNS:*.yastatic-net.ru, DNS:yastat.net, DNS:yandex.st, DNS:www.yandex.st, DNS:static.yandex.sx, DNS:static.yandex.st, DNS:static.yandex.net, DNS:site.yandex.net, DNS:lego.static.yandex.net, DNS:js.static.yandex.net, DNS:img-css.friends.yandex.net, DNS:i.yandex.st, DNS:*.yastatic.net, DNS:*.yastat.net, DNS:yastatic.net, DNS:css.yandex.ru, DNS:css.yandex.net, DNS:img.yandex.net, DNS:img.yandex.ru, DNS:imgl.yandex.net, DNS:yastatic-net.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                58:7B:8E:75:2A:FE:61:80:AA:90:40:01:AE:D6:E8:07:46:6E:3F:48
            X509v3 Subject Key Identifier: 
                23:67:50:E2:B5:70:E1:E3:2F:85:99:D0:0D:EC:4D:BD:28:01:D1:1D
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Dec 13 10:50:39.083 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C7:D4:C1:61:CB:33:64:12:86:C3:53:
                                35:D8:61:10:DF:8E:5D:FB:46:88:F9:3B:35:61:B1:73:
                                BE:2C:4E:4C:79:02:20:50:E0:D1:AB:1B:21:ED:7B:EE:
                                E0:87:4A:0E:41:EE:BD:8C:7B:7D:1D:14:7C:37:11:E8:
                                9F:BC:C3:60:76:E7:A6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Dec 13 10:50:39.175 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CC:B6:73:2A:FA:5E:5F:22:EB:11:CA:
                                F3:F7:4E:59:A5:5C:0C:A7:2F:DB:EE:BD:D9:BA:77:E1:
                                3C:85:30:63:B3:02:21:00:D5:D4:B2:93:76:24:94:9B:
                                01:CD:C1:A7:AC:50:02:B9:38:73:CF:52:B7:5E:15:17:
                                53:73:E0:CC:15:D9:88:80
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Dec 13 10:50:39.100 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:30:F5:14:D2:90:D3:96:DB:F6:D0:C3:CB:
                                44:36:C3:00:91:FE:F0:40:5E:92:99:FC:3C:6A:BD:CF:
                                F4:E7:75:02:02:21:00:EF:AD:0B:4C:FA:22:5A:D0:04:
                                D2:43:1E:A7:4E:9E:10:73:E8:B5:7B:69:32:3A:CA:41:
                                B2:F3:EA:A7:71:30:49
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:31:00:f0:e3:a5:e0:21:c5:f6:ff:cd:94:ee:be:1f:
        12:99:8b:9c:42:d6:bf:5d:15:cf:55:9b:03:43:c6:ac:e5:46:
        93:0f:0e:a6:61:89:9a:54:e5:48:b5:87:76:b7:2c:ff:27:02:
        30:63:b6:43:eb:5c:d8:7e:28:fa:50:e2:f4:0c:a6:4b:f0:ab:
        da:38:ff:bd:1b:4e:86:27:55:27:d2:3a:7b:29:f3:89:c7:ac:
        f1:96:55:ed:11:16:30:2b:ad:ff:8c:86:82

80.239.201.50

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

936400872 | 2024-04-16T09:31:47.100892
80 / tcp

nginx1.17.9

-850507101 | 2024-04-16T18:49:23.792034
443 / tcp

nginx1.17.9

Products

Pricing

Contact Us

80.239.201.50

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

936400872 | 2024-04-16T09:31:47.100892 80 / tcp

nginx1.17.9

-850507101 | 2024-04-16T18:49:23.792034 443 / tcp

nginx1.17.9

Products

Pricing

Contact Us

936400872 | 2024-04-16T09:31:47.100892
80 / tcp

-850507101 | 2024-04-16T18:49:23.792034
443 / tcp