GeneralInformation

Hostnames	95.179.246.55.vultrusercontent.com
Domains	vultrusercontent.com
Cloud Provider	Vultr
Country	Germany
City	Frankfurt am Main
Organization	Hanauer Landstraße 302
ISP	The Constant Company, LLC
ASN	AS20473

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 5000 8081 8085 8800 8888 9090

1913503600 | 2024-04-05T11:01:50.711308

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDOBQ14j25LwI68AjZBxqcJ+lkNcsFuTuTYUgZu3zh1I9Z+
hVOJJcj6yqA1U8DTkGani0Y1v4w6jpkf86FsK/ya+8e8G2ZEYsT0UfPybyn78HUDs06TqCqNaO9Y
ZL13XsYjpNQvk94VaeLKmtYHUT1h/p1qrTXWPhnxQvFsuIXV4YZ2NGu5vZbtTZBQGVQVvNj4sJq8
7FyA8D2qxrGy8S7ghRZoq2AY57a0zPCjEC/JL8Aw8ptElYzb4GZfl7JhBOfQJrdjCQXnDVdhr3BD
HOiXMW0olk43XT9osIMgFg7jv1Vor/tJYSRpwLHfJdAHt5wP0kx6KnwCtWsT7ym2XlSJK7UnqYOj
oVrCCvL2h6P0p3uOYVibnB+wChFqNwp/QAjtEeZZWiEcP+ArhfEg0Era/af3oXwNlBVNlleyUAk0
Wz3OjfnnmUq82EnPHENfj8TFxTHzLV9E1Zxir4cmVuS1clcAbUOcnoGOCSRqPjJY5mrZxqbAfISL
+Jxkrinwxq0=
Fingerprint: d8:6f:c4:2a:40:24:ce:73:83:7f:fd:5b:a4:1a:ae:fe

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-03-25T15:38:18.446849

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 25 Mar 2024 15:38:18 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 22 May 2023 08:08:56 GMT
Connection: keep-alive
ETag: "646b2318-264"
Accept-Ranges: bytes

731197476 | 2024-04-01T18:40:56.080133

5000 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Mon, 01 Apr 2024 18:40:56 GMT
Content-Length: 19

607597823 | 2024-04-01T04:37:56.051187

8081 / tcp

HTTP/1.1 407 Proxy Authentication Required
Server: Proxy
Proxy-Authenticate: Basic realm="CCProxy Authorization"
Connection: Close
Proxy-Connection: Close
Content-Length: 265

<html>
<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /></head>
<body>
<h1>Unauthorized ...</h1>
<h2>
IP Address: 95.179.246.55:51132<br>
MAC Address: <br>
Server Time: 2024-04-01 06:37:55<br>
Auth Result: 
</h2>
</body>
</html>

-2058532985 | 2024-04-10T10:16:22.234166

8085 / tcp

HTTP/1.1 407 Proxy Authentication Required
Server: Proxy
Proxy-Authenticate: Basic realm="CCProxy Authorization"
Connection: Close
Proxy-Connection: Close
Content-Length: 265

95.179.246.55

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1913503600 | 2024-04-05T11:01:50.711308
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-03-25T15:38:18.446849
80 / tcp

nginx1.18.0

731197476 | 2024-04-01T18:40:56.080133
5000 / tcp

607597823 | 2024-04-01T04:37:56.051187
8081 / tcp

-2058532985 | 2024-04-10T10:16:22.234166
8085 / tcp

Products

Pricing

Contact Us

95.179.246.55

Last Seen: 2024-04-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1913503600 | 2024-04-05T11:01:50.711308 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-03-25T15:38:18.446849 80 / tcp

nginx1.18.0

731197476 | 2024-04-01T18:40:56.080133 5000 / tcp

607597823 | 2024-04-01T04:37:56.051187 8081 / tcp

-2058532985 | 2024-04-10T10:16:22.234166 8085 / tcp

Products

Pricing

Contact Us

1913503600 | 2024-04-05T11:01:50.711308
22 / tcp

1651973090 | 2024-03-25T15:38:18.446849
80 / tcp

731197476 | 2024-04-01T18:40:56.080133
5000 / tcp

607597823 | 2024-04-01T04:37:56.051187
8081 / tcp

-2058532985 | 2024-04-10T10:16:22.234166
8085 / tcp