GeneralInformation

Hostnames	portaldosug.cz
Domains	portaldosug.cz
Country	Netherlands
City	Amsterdam
Organization	Advanced Hosters B.V.
ISP	DataWeb Global Group B.V.
ASN	AS39572
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 161 443 8080 8081

589765266 | 2024-05-05T06:03:30.726019

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 May 2024 06:03:30 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://88.208.11.74/
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload

-402915333 | 2024-05-02T04:07:48.583760

161 / udp

SNMP:
  Versions:
    3
  Engine Boots: 15
  Engineid Data: 80001f88806ae80e6b9987525d00000000
  Enterprise: 8072
  Engine Time: 207 days, 15:34:41

-896307570 | 2024-05-05T06:03:32.057887

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 May 2024 06:03:31 GMT
Content-Length: 9
Connection: keep-alive
set-cookie: BSID=server.dosug2.nla2|ZjchN|ZjchN; path=/
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:68:5b:8d:ff:0b:2b:91:cb:e4:68:a4:d3:0a:2d:a6:f9:56
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  4 05:41:37 2024 GMT
            Not After : Jul  3 05:41:36 2024 GMT
        Subject: CN=portaldosug.cz
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ab:0d:a0:58:aa:f2:d0:00:8e:1f:9a:80:99:51:
                    f3:3e:01:7d:ab:f7:8b:17:cd:59:1b:95:9c:1a:58:
                    77:68:03:b2:75:c5:41:4d:2c:3b:37:d9:bf:e5:c2:
                    d8:03:9b:91:7c:45:ec:0f:36:5a:6d:53:0f:48:72:
                    55:9c:b2:08:97:00:45:42:0d:10:f7:cc:ac:2f:35:
                    60:38:20:5b:d8:9d:ee:e0:dd:4d:4e:8d:a0:03:60:
                    c8:7b:15:80:a1:74:a6:ab:8b:74:d7:02:47:24:8f:
                    34:81:5f:3b:8c:97:93:7f:c2:78:b0:f7:22:71:be:
                    4b:2c:ed:cc:f3:d4:e1:65:67:8e:78:fe:0a:9e:8e:
                    9a:5b:4f:d0:81:1f:01:67:c4:fe:e7:5f:58:5a:5b:
                    a0:46:27:5b:2f:d2:3a:c5:ba:1d:85:84:56:b6:2a:
                    df:5f:59:ef:40:10:e0:82:fc:94:ab:db:da:5f:d4:
                    f6:e3:91:19:b9:1d:2a:11:df:9a:3e:9b:d0:b0:fc:
                    d8:b7:91:79:a6:13:8e:71:79:dd:28:3a:87:37:1e:
                    95:46:cf:76:0c:20:a8:24:65:ee:9e:93:cd:04:8d:
                    eb:87:f2:aa:82:65:8b:e4:5d:ca:db:45:63:f6:2c:
                    19:ff:6d:0e:be:07:f8:fe:71:ed:c3:a2:9c:ff:ea:
                    c8:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C3:89:C0:4E:0F:E4:5B:7B:B0:F3:04:74:0B:7E:B9:85:8C:67:69:3C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.portaldosug.cz, DNS:portaldosug.cz
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr  4 06:41:37.536 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FD:87:18:BD:C5:99:96:5D:86:58:BF:
                                E8:7E:50:BA:2D:70:FC:4F:D3:AC:62:A4:B8:90:F7:FA:
                                2A:CB:56:8D:0C:02:20:7D:4B:F5:34:97:65:DF:C2:D6:
                                34:2A:AC:FA:65:4E:EC:B1:46:3C:3F:D3:16:1A:09:B1:
                                C2:E1:27:3E:A5:FB:25
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Apr  4 06:41:37.572 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C4:4B:56:F0:8C:17:EA:FD:33:D4:52:
                                96:BC:A9:9F:F5:12:37:30:E1:8A:14:D8:54:1C:18:41:
                                CC:28:24:5E:E6:02:21:00:FA:11:5A:B2:EA:05:CA:9A:
                                8F:8B:4F:FD:0E:2C:77:3A:14:DE:13:70:F1:33:B1:B6:
                                B1:C8:43:BE:C4:77:50:0D
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        46:00:4b:2f:d2:a5:07:e1:4a:9c:a7:21:e8:a3:24:b3:df:8b:
        d2:7d:18:4e:96:eb:8a:50:3e:a8:16:8c:31:72:83:ec:17:f5:
        67:06:94:9f:3e:52:b7:11:f5:d9:cf:17:65:34:78:a2:74:ed:
        31:db:a5:bf:04:d5:f3:e1:63:cd:00:31:24:7e:70:f1:a2:79:
        ed:e9:4e:7a:6a:56:c1:d4:c6:01:82:bd:44:26:ed:dc:5b:7d:
        ed:ff:92:f6:28:e6:9f:d2:ff:91:d2:ee:d3:49:10:34:b0:5f:
        b9:c7:89:f3:cb:4e:f9:99:e6:94:5c:85:90:49:4d:e9:5b:c4:
        57:cb:1b:8f:56:2d:a7:e4:f0:dc:0f:65:53:a3:10:46:9a:40:
        d9:c3:25:d2:94:ef:46:ef:6a:08:e1:80:70:c7:72:81:35:e7:
        94:bd:f8:af:32:7c:c4:e5:24:a2:e4:00:66:6b:f1:29:dc:11:
        1a:f2:f2:22:ef:e2:3d:ef:b1:19:ce:7b:f2:36:c4:e2:55:6d:
        23:71:32:1f:a8:fa:2b:20:54:2d:ab:f7:e6:18:45:9a:01:b6:
        6c:16:ae:19:a7:a6:7e:93:99:0a:99:a7:4d:39:9a:b1:8c:fa:
        77:41:65:4b:bd:33:f7:79:e2:41:3c:37:91:d1:ec:77:ac:1f:
        b1:e5:83:48

589765266 | 2024-04-15T22:58:45.659831

8080 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 22:58:45 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://88.208.11.74/
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload

-541659815 | 2024-05-02T13:55:03.381070

8081 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Thu, 02 May 2024 13:55:03 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://88.208.11.74/
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.18.0 (Ubuntu)</center>
</body>
</html>

88.208.11.74

Last Seen: 2024-05-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

589765266 | 2024-05-05T06:03:30.726019
80 / tcp

nginx1.18.0

-402915333 | 2024-05-02T04:07:48.583760
161 / udp

net-snmp

-896307570 | 2024-05-05T06:03:32.057887
443 / tcp

nginx1.18.0

589765266 | 2024-04-15T22:58:45.659831
8080 / tcp

nginx1.18.0

-541659815 | 2024-05-02T13:55:03.381070
8081 / tcp

nginx1.18.0

Products

Pricing

Contact Us

88.208.11.74

Last Seen: 2024-05-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

589765266 | 2024-05-05T06:03:30.726019 80 / tcp

nginx1.18.0

-402915333 | 2024-05-02T04:07:48.583760 161 / udp

net-snmp

-896307570 | 2024-05-05T06:03:32.057887 443 / tcp

nginx1.18.0

589765266 | 2024-04-15T22:58:45.659831 8080 / tcp

nginx1.18.0

-541659815 | 2024-05-02T13:55:03.381070 8081 / tcp

nginx1.18.0

Products

Pricing

Contact Us

589765266 | 2024-05-05T06:03:30.726019
80 / tcp

-402915333 | 2024-05-02T04:07:48.583760
161 / udp

-896307570 | 2024-05-05T06:03:32.057887
443 / tcp

589765266 | 2024-04-15T22:58:45.659831
8080 / tcp

-541659815 | 2024-05-02T13:55:03.381070
8081 / tcp