GeneralInformation

Hostnames	93-161-180-6-static.dk.customer.tdc.net
Domains	tdc.net
Country	Denmark
City	Copenhagen
Organization	TDC Holding A/S
ISP	TDC Holding A/S
ASN	AS3292

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2021-42835

6.9An issue was discovered in Plex Media Server through 1.24.4.5081-e362dc1ee. An attacker (with a foothold in a endpoint via a low-privileged user account) can access the exposed RPC service of the update service component. This RPC functionality allows the attacker to interact with the RPC functionality and execute code from a path of his choice (local, or remote via SMB) because of a TOCTOU race condition. This code execution is in the context of the Plex update service (which runs as SYSTEM).

CVE-2020-5742

6.8Improper Access Control in Plex Media Server prior to June 15, 2020 allows any origin to execute cross-origin application requests.

OpenPorts

80 9000 9002 12345 32400

-529405291 | 2024-05-23T06:37:14.680167

80 / tcp

HTTP/1.1 500 Exception EOutOfMemory
Connection: keep-alive
Content-Type: text/html; charset=utf-8
Content-Length: 115
Date: Thu, 23 May 2024 06:37:14 GMT

522596849 | 2024-05-28T12:49:12.376491

9000 / tcp

HTTP/1.1 401 Unauthorized
Date: Tue, 28 May 2024 12:49:11 GMT
Server: libwww-perl-daemon/6.04
Connection: close
WWW-Authenticate: Basic realm="Logitech Media Server"
Content-Length: 148
Content-Type: text/html

<HTML><HEAD><TITLE>401 Authorization Required</TITLE></HEAD>
<BODY>401 Authorization is Required to access this Logitech Media Server</BODY></HTML>

1835244779 | 2024-05-30T22:28:52.170342

9002 / tcp

HTTP/1.1 401 Unauthorized
Date: Thu, 30 May 2024 22:28:51 GMT
Server: libwww-perl-daemon/6.04
Connection: close
WWW-Authenticate: Basic realm="Logitech Media Server"
Content-Length: 148
Content-Type: text/html

<HTML><HEAD><TITLE>401 Authorization Required</TITLE></HEAD>
<BODY>401 Authorization is Required to access this Logitech Media Server</BODY></HTML>

1420214384 | 2024-06-03T18:47:57.539838

12345 / tcp

RFB 003.008

VNC:
  Protocol Version: 3.8
  Security Types:
    2: VNC Authentication
    16: Tight

1524593440 | 2024-06-02T09:28:20.915722

32400 / tcp

HTTP/1.1 401 Unauthorized
X-Plex-Protocol: 1.0
Content-Length: 193
Content-Type: text/html
Connection: close
Cache-Control: no-cache
Date: Sun, 02 Jun 2024 09:28:20 GMT


Plex Media Server:
  Version: 1.24.4.5081-e362dc1ee
  Machine Identifier: e5751adf3c60f9effe665583bdc6ba0e4421f676

93.161.180.6

Last Seen: 2024-06-03

GeneralInformation

Vulnerabilities

OpenPorts

-529405291 | 2024-05-23T06:37:14.680167
80 / tcp

522596849 | 2024-05-28T12:49:12.376491
9000 / tcp

libwww-perl-daemon httpd6.04

1835244779 | 2024-05-30T22:28:52.170342
9002 / tcp

1420214384 | 2024-06-03T18:47:57.539838
12345 / tcp

VNC

1524593440 | 2024-06-02T09:28:20.915722
32400 / tcp

Plex Media Server1.24.4.5081-e362dc1ee

Products

Pricing

Contact Us

93.161.180.6

Last Seen: 2024-06-03

GeneralInformation

Vulnerabilities

OpenPorts

-529405291 | 2024-05-23T06:37:14.680167 80 / tcp

522596849 | 2024-05-28T12:49:12.376491 9000 / tcp

libwww-perl-daemon httpd6.04

1835244779 | 2024-05-30T22:28:52.170342 9002 / tcp

1420214384 | 2024-06-03T18:47:57.539838 12345 / tcp

VNC

1524593440 | 2024-06-02T09:28:20.915722 32400 / tcp

Plex Media Server1.24.4.5081-e362dc1ee

Products

Pricing

Contact Us

-529405291 | 2024-05-23T06:37:14.680167
80 / tcp

522596849 | 2024-05-28T12:49:12.376491
9000 / tcp

1835244779 | 2024-05-30T22:28:52.170342
9002 / tcp

1420214384 | 2024-06-03T18:47:57.539838
12345 / tcp

1524593440 | 2024-06-02T09:28:20.915722
32400 / tcp