GeneralInformation

Country	China
City	Xiamen
Organization	CHINANET Fujian province network
ISP	CHINANET-BACKBONE
ASN	AS4134
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

88 554 9000

755950927 | 2024-05-07T10:57:57.421295

88 / tcp

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 18:54:46 GMT
Server: DNVRS-Webs
ETag: "0-5bf-62d"
Content-Length: 1581
Content-Type: text/html
Connection: keep-alive
Keep-Alive: timeout=60, max=99
Last-Modified: Thu, 16 Apr 2015 06:19:11 GMT


Hikvision IP Camera:
  Web Version: 3.0.4.150415
  Plugin Version: 3.0.5.38
  ActiveX Files:
    AudioIntercom.dll: 1.1.0.8
    NetStream.dll: 1.0.5.30
    npWebVideoPlugin.dll: 3.0.5.38
    PlayCtrl.dll: 7.2.1.54
    StreamTransClient.dll: 1.1.2.18
    SystemTransform.dll: 2.4.0.8
    WebVideoActiveX.ocx: 3.0.5.38

-1621793466 | 2024-05-07T11:26:36.646029

554 / tcp

RTSP/1.0 401 Unauthorized
CSeq: 1
WWW-Authenticate: Digest realm="Embedded Net DVR", nonce="1471f2f60", algorithm="MD5"
WWW-Authenticate: Basic realm="/"

867083516 | 2024-05-14T01:46:15.871543

9000 / tcp

HTTP/1.1 407 Proxy Authentication Required
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 14 May 2024 01:46:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Proxy-Authenticate: Basic realm="Test Authentication System"

117.24.176.167

Last Seen: 2024-05-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

755950927 | 2024-05-07T10:57:57.421295
88 / tcp

Hikvision IP Camera

-1621793466 | 2024-05-07T11:26:36.646029
554 / tcp

867083516 | 2024-05-14T01:46:15.871543
9000 / tcp

nginx1.18.0

Products

Pricing

Contact Us

117.24.176.167

Last Seen: 2024-05-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

755950927 | 2024-05-07T10:57:57.421295 88 / tcp

Hikvision IP Camera

-1621793466 | 2024-05-07T11:26:36.646029 554 / tcp

867083516 | 2024-05-14T01:46:15.871543 9000 / tcp

nginx1.18.0

Products

Pricing

Contact Us

755950927 | 2024-05-07T10:57:57.421295
88 / tcp

-1621793466 | 2024-05-07T11:26:36.646029
554 / tcp

867083516 | 2024-05-14T01:46:15.871543
9000 / tcp