GeneralInformation

Hostnames	bpms.kpmptc.ru conference.kpmptc.ru de.kpmptc.ru ftp.kpmptc.ru graphite.kpmptc.ru kss.kpmptc.ru lib.kpmptc.ru monitoring.kpmptc.ru mx.kpmptc.ru
Domains	kpmptc.ru
Country	Russian Federation
City	Moscow
Organization	LLC Digital Network
ISP	LLC Digital Network
ASN	AS12695

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

25 80 443

-866837369 | 2024-05-20T08:29:49.623352

25 / tcp

220-mx.kpmptc.ru ESMTP  - KPMPTC
250-mx.kpmptc.ru
250-SIZE 207347302
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250 8BITMIME

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            c1:55:73:99:6f:5c:27:50
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: O=KPMPTC, CN=mx.kpmptc.ru
        Validity
            Not Before: May  1 11:45:47 2016 GMT
            Not After : Jan 26 11:45:47 2019 GMT
        Subject: O=KPMPTC, CN=mx.kpmptc.ru
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (384 bit)
                pub:
                    04:cb:7e:81:4c:cc:0c:59:b4:ee:d7:93:44:d9:c9:
                    40:5c:2a:30:17:3e:62:ab:c0:20:c7:88:4f:27:ad:
                    ea:16:e3:12:70:28:07:3b:69:ec:51:98:f0:b1:fb:
                    c6:23:bb:64:ae:c6:c5:42:ba:b7:4a:2e:c9:01:b9:
                    af:b4:7e:32:be:15:48:cc:5d:37:7b:6d:4d:b2:e3:
                    d8:05:6c:94:fa:5d:8f:8e:9d:f0:3d:fa:91:cc:b7:
                    98:c9:9d:8e:65:01:b0
                ASN1 OID: secp384r1
                NIST CURVE: P-384
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                CE:FF:82:E7:20:28:5B:95:77:4A:D8:FF:F0:8C:A2:93:6D:CC:51:2E
            X509v3 Authority Key Identifier: 
                CE:FF:82:E7:20:28:5B:95:77:4A:D8:FF:F0:8C:A2:93:6D:CC:51:2E
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:66:02:31:00:ea:0b:c7:b4:54:0a:c2:a3:93:2e:3c:ab:16:
        aa:ba:8f:99:f1:ad:4a:79:12:db:a7:44:d6:6a:9b:57:0e:e0:
        b4:44:ce:74:b0:6e:05:4a:2a:97:62:bb:0e:34:00:1c:6b:02:
        31:00:cc:95:45:21:24:ea:a5:71:bc:69:38:8f:fc:c2:22:19:
        2a:14:0f:d6:fc:a2:b6:d4:95:1d:bf:6a:e3:0b:3b:ce:c9:37:
        15:7e:7e:fa:16:80:f1:35:ac:1e:93:30:dd:56

-2098053163 | 2024-04-21T18:23:27.611828

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0
Date: Sun, 21 Apr 2024 18:23:27 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-1671440734 | 2024-04-25T09:31:15.832116

443 / tcp

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.18.0
Date: Thu, 25 Apr 2024 09:31:15 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: https://kpmptc.mos.ru/
Front-End-Https: on

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:93:4d:36:7d:2b:0c:26:43:da:ff:91:52:73:84:bd:93:7b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 20 02:08:07 2024 GMT
            Not After : Jun 18 02:08:06 2024 GMT
        Subject: CN=de.kpmptc.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:10:ed:51:05:22:94:4b:42:6f:90:c0:67:fa:
                    42:4c:1d:40:82:a3:51:b3:af:c3:32:ac:69:73:db:
                    f9:11:9c:04:b3:e6:05:03:ed:8b:7a:7d:8a:d8:18:
                    5e:7e:76:e8:11:cc:ea:e4:bb:4b:d1:e0:6d:18:d9:
                    26:96:15:91:19:91:40:a2:d2:67:e9:bb:37:b7:c0:
                    10:8f:5f:23:16:06:79:ab:71:28:94:dc:26:10:2d:
                    88:88:f9:08:10:dc:ff:f7:ff:61:a5:59:f7:95:b5:
                    64:b8:d3:74:e3:2b:6c:07:40:d9:5f:cf:0a:0a:b8:
                    72:a4:64:2f:87:85:ab:ae:fb:fe:e8:4f:63:cb:24:
                    41:b6:3f:7a:ac:ab:c9:d0:48:3e:0c:19:e8:b6:a3:
                    75:e8:31:8b:74:1f:45:0f:e0:b1:b8:0f:9c:38:e1:
                    17:67:05:b0:c8:03:9b:38:5b:99:f8:32:a6:89:09:
                    3c:c2:5e:1b:f2:2c:df:8a:1e:aa:2b:b3:d8:0a:5f:
                    5f:87:34:99:8f:b9:3b:8a:99:12:57:69:b9:83:71:
                    b7:58:ca:76:a7:4d:a3:f2:60:7a:7e:b4:64:3e:ab:
                    4c:d0:bc:a2:18:07:dd:cd:06:8c:37:aa:97:f1:ad:
                    0c:4f:d4:5d:0f:c1:8b:3c:91:3b:be:ea:99:86:79:
                    ee:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                43:6E:28:E9:6D:4D:60:8A:9E:4A:25:F3:21:D6:1C:33:BD:51:C9:2B
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:de.kpmptc.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 20 03:08:07.227 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FE:2B:E7:E1:84:61:98:B5:32:26:1D:
                                96:CC:36:C7:79:95:62:DC:D3:55:D7:57:3B:6C:62:66:
                                E6:A6:12:5C:9E:02:21:00:ED:98:12:05:37:34:54:C3:
                                E3:D1:C7:0D:C9:F7:48:97:72:E7:C6:32:CF:12:CE:42:
                                5E:94:DD:BD:A2:29:90:66
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 20 03:08:07.281 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C9:5C:81:F3:1D:5A:78:D0:C3:A9:21:
                                6D:EF:50:73:1B:B4:5B:B2:F9:35:F0:0C:48:58:DF:6B:
                                A1:12:ED:C3:6F:02:21:00:FE:76:B1:EA:D9:74:39:09:
                                AB:DC:13:A3:35:B5:30:FC:1E:3B:C2:72:B2:74:4C:89:
                                4E:2F:75:90:FF:62:BF:EB
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        13:33:dd:08:cc:a3:15:95:2e:ca:3e:5f:c4:fe:d4:f1:2b:f7:
        ff:a8:7d:d0:aa:6c:b0:2f:9b:cb:1d:b4:49:76:39:2f:84:4c:
        c6:ef:33:84:20:9b:7b:b3:47:98:5a:18:3d:64:92:24:20:ac:
        0a:f5:a3:96:6f:41:49:79:d5:21:02:3e:3a:1d:b0:51:5d:ae:
        88:2c:67:0c:ac:37:77:78:0c:14:e2:cc:8f:e3:f7:2c:a9:d8:
        e9:3d:62:7f:46:20:b1:c8:56:0a:a0:84:cf:83:2f:3c:e8:0e:
        0f:d0:36:34:53:c6:34:45:bf:96:64:6a:c0:c6:83:4c:5b:73:
        e0:33:bc:1d:04:46:9c:09:b9:58:af:b0:bd:41:53:34:a5:8f:
        ae:da:a7:7b:4c:6e:2c:b1:90:9d:01:1a:8a:85:15:10:45:5d:
        3a:f5:e8:9e:19:94:36:94:bd:3a:12:33:a0:c5:6a:a3:b4:bd:
        9e:62:74:cc:48:fc:bd:b6:a2:71:01:ae:4d:18:da:ac:aa:3f:
        45:5c:7d:53:eb:1b:75:a9:32:da:86:00:70:49:63:7d:27:b8:
        63:60:57:dc:61:db:a7:5f:b8:a7:f8:36:d7:35:bf:76:77:5e:
        fb:1c:cf:12:e7:ae:f0:83:26:09:ed:1c:86:80:d7:de:c3:04:
        fa:0a:92:26

95.163.20.254

Last Seen: 2024-05-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-866837369 | 2024-05-20T08:29:49.623352
25 / tcp

-2098053163 | 2024-04-21T18:23:27.611828
80 / tcp

nginx1.18.0

-1671440734 | 2024-04-25T09:31:15.832116
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

95.163.20.254

Last Seen: 2024-05-20

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-866837369 | 2024-05-20T08:29:49.623352 25 / tcp

-2098053163 | 2024-04-21T18:23:27.611828 80 / tcp

nginx1.18.0

-1671440734 | 2024-04-25T09:31:15.832116 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-866837369 | 2024-05-20T08:29:49.623352
25 / tcp

-2098053163 | 2024-04-21T18:23:27.611828
80 / tcp

-1671440734 | 2024-04-25T09:31:15.832116
443 / tcp