GeneralInformation

Hostnames	gaz-connect.ru
Domains	gaz-connect.ru
Country	Russian Federation
City	Moscow
Organization	Reg.Ru Hosting
ISP	"Domain names registrar REG.RU", Ltd
ASN	AS197695
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

53 80 443 7443 8080

1841808371 | 2024-04-26T21:57:05.654174

80 / tcp

HTTP/1.1 503 Service Temporarily Unavailable
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 26 Apr 2024 21:57:05 GMT
Content-Type: text/html
Content-Length: 608
Connection: keep-alive

1841808371 | 2024-04-20T03:29:45.858637

443 / tcp

HTTP/1.1 503 Service Temporarily Unavailable
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 20 Apr 2024 03:29:45 GMT
Content-Type: text/html
Content-Length: 608
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            29:1e:0e:23:8f:17:0e:59:4d:9b:11:2f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020
        Validity
            Not Before: Oct  2 06:48:37 2023 GMT
            Not After : Nov  2 06:48:36 2024 GMT
        Subject: CN=*.gaz-connect.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ae:50:24:88:a9:53:41:e9:a2:a2:5c:b9:cb:26:
                    79:5f:ef:86:7a:ac:80:cd:88:fd:5f:d1:38:c2:09:
                    e1:98:41:b5:2a:54:50:f7:25:cd:b3:b8:d6:9f:91:
                    93:d2:2f:e4:49:5d:c9:2c:8c:5a:19:16:76:48:a7:
                    f6:a8:01:75:c1:d6:73:f9:fc:4c:c7:66:53:9e:aa:
                    44:62:46:c1:0b:10:13:30:21:3d:60:8e:ad:d7:00:
                    38:7d:d5:6a:fc:50:36:9c:50:93:3e:cd:d2:90:1e:
                    ae:d9:dc:9e:ea:8b:a8:07:75:ad:d6:99:ac:2f:54:
                    e2:b3:19:41:95:f5:01:5e:84:e3:5a:55:26:9b:66:
                    7a:a5:63:a2:1c:78:a2:a8:26:73:66:f3:0f:bd:fc:
                    06:27:d5:c7:83:6e:16:1f:3e:85:d3:38:28:67:76:
                    f7:7d:39:29:92:6a:4d:b6:37:08:e8:fe:05:07:13:
                    96:cb:bb:71:8f:a0:f4:fd:3c:35:4b:17:6e:d1:d8:
                    bd:26:6f:c6:91:21:91:d4:b8:12:5e:bf:2d:31:53:
                    6c:02:51:1e:9a:11:c0:ea:ca:83:c5:a8:16:c6:ed:
                    6f:a2:86:ec:01:6d:73:28:b6:61:0c:9d:e8:8d:fe:
                    be:06:e9:ce:bb:1e:1a:3e:11:93:67:06:f6:df:74:
                    6b:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.10
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
            X509v3 Subject Alternative Name: 
                DNS:*.gaz-connect.ru, DNS:gaz-connect.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C
            X509v3 Subject Key Identifier: 
                08:9B:3A:D7:DE:7D:95:EF:11:47:67:73:DF:06:FF:64:F6:52:AA:28
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct  2 06:48:39.308 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:57:D1:4F:57:12:EB:30:4A:F7:21:4A:1E:
                                06:73:CC:A8:94:F4:B0:59:7C:4D:AB:1A:CA:BA:3C:D8:
                                88:B1:4F:08:02:21:00:BB:9C:6D:29:EC:A1:CD:5C:BB:
                                44:79:E1:7B:6B:D1:58:AE:4E:0F:7E:89:2A:36:12:99:
                                C2:06:1B:56:CD:22:B2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Oct  2 06:48:39.318 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:59:4D:E3:19:F5:20:67:9C:89:82:B7:5C:
                                02:37:68:5B:EE:E1:5F:0C:85:92:F8:66:E8:E5:D9:05:
                                33:FD:23:70:02:20:19:5E:1E:3E:68:98:B3:A3:CD:9B:
                                73:74:12:B2:54:37:AD:DE:69:B8:A3:D8:8D:DA:5B:03:
                                4E:65:8C:05:D3:26
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct  2 06:48:39.348 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:2F:54:F6:AC:7D:0D:C8:FD:7D:2B:3E:0E:
                                EF:6A:13:57:57:28:77:8D:51:C6:9F:6D:BB:FA:51:9B:
                                1C:5C:CD:88:02:21:00:CC:31:5B:5E:06:C7:2E:B1:1C:
                                7F:39:51:4C:0B:71:67:5B:88:F7:38:EB:4A:0F:AC:6A:
                                A9:40:1E:F3:8A:58:6B
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        95:88:b5:89:b6:c6:bb:56:18:15:d6:3b:b4:b7:35:a7:04:9e:
        52:84:bd:9b:a4:32:e2:6b:05:06:11:5b:04:89:46:ec:48:a4:
        49:76:9d:b6:08:46:b4:f8:41:7d:3e:e0:2d:de:f0:71:b6:0f:
        55:9d:ce:ab:dd:a2:0f:ab:89:bd:58:a7:a0:b4:73:fc:a9:a6:
        f7:c3:08:11:c9:cf:45:2d:d5:d7:4d:b5:d1:9a:58:50:d4:50:
        0a:a2:d4:d4:97:db:06:ce:d6:a7:f6:99:6d:53:e5:82:57:87:
        88:37:12:41:4d:08:b6:37:14:e9:e0:f4:c2:3b:97:77:ca:04:
        2b:cb:c0:6c:b4:a9:0a:28:05:b5:1b:71:e5:0a:8e:45:6b:cf:
        7a:68:3c:ec:34:1d:81:ff:31:f1:a1:34:8c:5d:92:d6:2a:c8:
        27:19:4f:9a:82:7d:2f:95:a9:c6:b3:12:94:cb:6e:ee:2e:fc:
        b8:52:b8:d1:e9:77:4a:da:a1:d9:7c:bb:55:43:26:46:fe:ab:
        d2:f5:a6:03:80:be:74:3b:55:0b:60:ac:4c:7b:1c:f9:48:6a:
        c8:3c:bd:b0:cc:bb:9d:ea:65:ad:1f:5a:e4:0d:79:8f:5c:c9:
        22:8b:b4:4b:fd:c0:35:47:02:16:13:b1:d4:db:72:53:16:2e:
        54:d9:4c:d5

-752647675 | 2024-04-24T12:01:36.212927

7443 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 24 Apr 2024 12:01:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 24 Apr 2024 12:01:36 GMT
Set-Cookie: PHPSESSID=8d7fa9d95e7674914bbe3f3d41db698b; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN

1ecb
<!DOCTYPE html>
<html lang="en">
	<head>
		<meta name="viewport" content="width=device-width, initial-scale=1">
	    <link rel="stylesheet" href="/vendor/bootstrap/css/bootstrap.min.css" type="text/css">
	    <link rel="stylesheet" href="/css/login.css?v=1643658823" type="text/css">
		<title>pfSense - Login</title>
		<script type="text/javascript">
			//<![CDATA{
			var events = events || [];
			//]]>
		</script>
	<script type="text/javascript">if (top != self) {top.location.href = self.location.href;}</script><script type="text/javascript">var csrfMagicToken = "sid:e979f375f7ced7a7af3820bb98dc8bd001c6983b,1713960096;ip:8b53f683cf790b7804f0a652ede2c7ecc314444a,1713960096";var csrfMagicName = "__csrf_magic";</script><script src="/csrf/csrf-magic.js" type="text/javascript"></script></head>

	<body id="login" >
		<div id="total">
			<header>
				<div id="headerrow">
					<div class="row">
						<!-- Header left logo box -->
						<div class="col-sm-4">
							<div id="logodiv" style="text-align:center" class="nowarning">
								<svg id="logo" role="img" aria-labelledby="pfsense-logo" x="0px" y="0px" viewBox="0 0 282.8 84.2">
	<title id="pfsense-logo-svg">pfSense Logo</title>
	<path class="logo-st0" d="M27.8,57.7c2.9,0,5.4-0.9,7.5-2.6c2.1-1.7,3.6-4,4.4-6.8c0.8-2.8,0.6-5.1-0.5-6.8c-1.1-1.7-3.2-2.6-6.1-2.6 c-2.9,0-5.4,0.9-7.5,2.6c-2.1,1.7-3.5,4-4.3,6.8c-0.8,2.8-0.7,5.1,0.5,6.8C22.8,56.9,24.8,57.7,27.8,57.7"/>
	<path class="logo-st0" d="M115.1,46.6c-1.5-0.8-3-1.4-4.7-1.8c-1.7-0.4-3.2-0.7-4.7-1.1c-1.5-0.3-2.7-0.7-3.6-1.1c-0.9-0.4-1.4-1.1-1.4-2 c0-1.1,0.5-1.9,1.4-2.4c0.9-0.5,1.9-0.7,2.8-0.7c2.8,0,5,1,6.7,3.1l7-7c-1.7-1.8-3.9-3.1-6.4-3.8c-2.5-0.7-5-1.1-7.4-1.1 c-1.9,0-3.9,0.2-5.7,0.7c-1.9,0.5-3.6,1.2-5,2.3c-1.5,1-2.6,2.3-3.5,3.9c-0.9,1.6-1.3,3.5-1.3,5.7c0,2.3,0.5,4.2,1.4,5.6 c0.9,1.4,2.1,2.5,3.6,3.3c1.5,0.8,3,1.3,4.7,1.7c1.7,0.4,3.2,0.7,4.7,1.1c1.5,0.3,2.7,0.7,3.6,1.2c0.9,0.5,1.4,1.2,1.4,2.2 c0,1-0.5,1.7-1.6,2.1c-1.1,0.4-2.3,0.6-3.6,0.6c-1.7,0-3.3-0.3-4.6-1c-1.3-0.7-2.5-1.7-3.6-3l-7,7.7c1.8,1.9,4.1,3.2,6.7,3.9 c2.7,0.7,5.3,1.1,7.9,1.1c2,0,4-0.2,6.1-0.6c2-0.4,3.9-1,5.5-2c1.6-0.9,3-2.2,4-3.8c1-1.6,1.6-3.5,1.6-5.9c0-2.3-0.5-4.2-1.4-5.6 C117.7,48.6,116.5,47.4,115.1,46.6"/>
	<path class="logo-st0" d="M156.3,34.1c-1.5-1.7-3.3-3-5.5-3.9c-2.2-0.9-4.6-1.4-7.2-1.4c-2.9,0-5.6,0.5-8.1,1.4c-2.5,0.9-4.7,2.2-6.6,3.9 c-1.9,1.7-3.3,3.8-4.4,6.2c-1.1,2.4-1.6,5.1-1.6,8c0,3,0.5,5.6,1.6,8c1.1,2.4,2.5,4.5,4.4,6.2c1.9,1.7,4.1,3,6.6,3.9 c2.5,0.9,5.2,1.4,8.1,1.4c3,0,5.9-0.6,8.7-1.9c2.8-1.3,5.1-3.1,7-5.4l-8-5.9c-1,1.3-2.1,2.4-3.4,3.3c-1.3,0.8-2.9,1.3-4.8,1.3 c-2.2,0-4.1-0.7-5.7-2c-1.5-1.3-2.5-3.1-3-5.2H161v-3.6c0-3-0.4-5.6-1.2-8C159,37.9,157.8,35.8,156.3,34.1 M134.3,44.1 c0.1-0.9,0.3-1.8,0.7-2.6c0.4-0.8,0.9-1.6,1.6-2.2c0.7-0.6,1.5-1.2,2.5-1.6c1-0.4,2.1-0.6,3.4-0.6c2.1,0,3.8,0.7,5.1,2.1 c1.3,1.4,2,3,1.9,5H134.3z"/>
	<path class="logo-st0" d="M198.3,33.8c-1-1.6-2.4-2.8-4.2-3.7c-1.8-0.9-4.1-1.3-7-1.3c-1.4,0-2.7,0.2-3.8,0.5c-1.2,0.4-2.2,0.8-3.1,1.4 c-0.9,0.6-1.7,1.2-2.4,1.9c-0.7,0.7-1.2,1.4-1.5,2.1H176v-5.1h-11v37.2h11.5V48.4c0-1.2,0.1-2.4,0.2-3.5c0.2-1.1,0.5-2.1,1-3 c0.5-0.9,1.2-1.6,2.1-2.1c0.9-0.5,2.1-0.8,3.6-0.8c1.5,0,2.6,0.3,3.4,0.9c0.8,0.6,1.4,1.4,1.8,2.4c0.4,1,0.6,2,0.7,3.2 c0.1,1.1,0.1,2.3,0.1,3.3v18.2h11.5V46.4c0-2.5-0.2-4.8-0.5-7C199.9,37.3,199.3,35.4,198.3,33.8"/>
	<path class="logo-st0" d="M231.5,46.6c-1.5-0.8-3-1.4-4.7-1.8c-1.7-0.4-3.2-0.7-4.7-1.1c-1.5-0.3-2.7-0.7-3.6-1.1c-0.9-0.4-1.4-1.1-1.4-2 c0-1.1,0.5-1.9,1.4-2.4c0.9-0.5,1.9-0.7,2.8-0.7c2.8,0,5,1,6.7,3.1l7-7c-1.7-1.8-3.9-3.1-6.4-3.8c-2.5-0.7-5-1.1-7.4-1.1 c-1.9,0-3.9,0.2-5.7,0.7c-1.9,0.5-3.6,1.2-5,2.3c-1.5,1-2.6,2.3-3.5,3.9c-0.9,1.6-1.3,3.5-1.3,5.7c0,2.3,0.5,4.2,1.4,5.6 c0.9,1.4,2.1,2.5,3.6,3.3c1.5,0.8,3,1.3,4.7,1.7c1.7,0.4,3.2,0.7,4.7,1.1c1.5,0.3,2.7,0.7,3.6,1.2c0.9,0.5,1.4,1.2,1.4,2.2 c0,1-0.5,1.7-1.6,2.1c-1.1,0.4-2.3,0.6-3.6,0.6c-1.7,0-3.3-0.3-4.6-1c-1.3-0.7-2.5-1.7-3.6-3l-7,7.7c1.8,1.9,4.1,3.2,6.7,3.9 c2.7,0.7,5.3,1.1,7.9,1.1c2,0,4-0.2,6.1-0.6c2-0.4,3.9-1,5.5-2c1.6-0.9,3-2.2,4-3.8c1-1.6,1.6-3.5,1.6-5.9c0-2.3-0.5-4.2-1.4-5.6 C234.1,48.6,232.9,47.4,231.5,46.6"/>
	<path class="logo-st0" d="M277.4,51.9v-4.2c-0.1-2.7-0.5-5.2-1.2-7.4c-0.8-2.4-2-4.5-3.5-6.2c-1.5-1.7-3.3-3-5.5-3.9 c-2.2-0.9-4.6-1.4-7.2-1.4c-2.9,0-5.6,0.5-8.1,1.4c-2.5,0.9-4.7,2.2-6.6,3.9c-1.9,1.7-3.3,3.8-4.4,6.2c-1.1,2.4-1.6,5.1-1.6,8 c0,3,0.5,5.6,1.6,8c1.1,2.4,2.5,4.5,4.4,6.2c1.9,1.7,4.1,3,6.6,3.9c2.5,0.9,5.2,1.4,8.1,1.4c3,0,5.9-0.6,8.7-1.9 c2.8-1.3,5.1-3.1,7-5.4l-8-5.9c-1,1.3-2.1,2.4-3.4,3.3c-1.3,0.8-2.9,1.3-4.8,1.3c-2.2,0-4.1-0.7-5.7-2c-1.5-1.3-2.5-3.1-3-5.2H277.4 z M250.7,44.1c0.1-0.9,0.3-1.8,0.7-2.6c0.4-0.8,0.9-1.6,1.6-2.2c0.7-0.6,1.5-1.2,2.5-1.6c1-0.4,2.1-0.6,3.4-0.6 c2.1,0,3.8,0.7,

199333125 | 2024-04-15T10:32:15.143254

8080 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Date: Mon, 15 Apr 2024 10:32:15 GMT
Content-Type: text/html
Content-Length: 650
Connection: close

89.108.116.241

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1841808371 | 2024-04-26T21:57:05.654174
80 / tcp

nginx1.18.0

1841808371 | 2024-04-20T03:29:45.858637
443 / tcp

nginx1.18.0

-752647675 | 2024-04-24T12:01:36.212927
7443 / tcp

nginx

199333125 | 2024-04-15T10:32:15.143254
8080 / tcp

nginx

Products

Pricing

Contact Us

89.108.116.241

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1841808371 | 2024-04-26T21:57:05.654174 80 / tcp

nginx1.18.0

1841808371 | 2024-04-20T03:29:45.858637 443 / tcp

nginx1.18.0

-752647675 | 2024-04-24T12:01:36.212927 7443 / tcp

nginx

199333125 | 2024-04-15T10:32:15.143254 8080 / tcp

nginx

Products

Pricing

Contact Us

1841808371 | 2024-04-26T21:57:05.654174
80 / tcp

1841808371 | 2024-04-20T03:29:45.858637
443 / tcp

-752647675 | 2024-04-24T12:01:36.212927
7443 / tcp

199333125 | 2024-04-15T10:32:15.143254
8080 / tcp