GeneralInformation

Hostnames	139-162-186-135.ip.linodeusercontent.com admin.mossserver.click sem.mossserver.click static.mossserver.click
Domains	linodeusercontent.com mossserver.click
Cloud Provider	Linode
Cloud Region	de-he
Country	Germany
City	Frankfurt am Main
Organization	139.162.0.0/16
ISP	Akamai Connected Cloud
ASN	AS63949

WebTechnologies

UI frameworks

Bootstrap4.6.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 4000

-787587349 | 2024-05-16T05:19:44.202669

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDFUW2tY48qsXnOhcWxe3bDRKjhL4uVH1tqA0H9mnncucdq
M7vKKGrgeXPU8LA0y1gRIs+1VnXiR/Ck1g0/l6ZxuEP+EqkiVfL/FmV7Zxw6CFx2eoa08Sz0z/VV
LbAWmSFuTyyEi8Ho7WSR9S+uWrXPGR/nzHGpTW2/07G7nWWJLMa/a9MIM7YlUt/JJLCxnqnDt6FV
4Bp88L+ZldkzWX+HWCBCWMfXVGL6kJEi8305+VyR4PWjzeoiRo2gZOAJP2aqK/senyJNo/EfiZn+
OJAfH5zen8wTMynPmQtw12G5w20R9aTkIWEBRUo+hAxbbKV8o27a9AbGPFCYHol2P3ryEgDc6zrU
LK3Ro/BDpCp/V/k/RRTOu6UxbqlqwxcMnNL9ymf3A7QV9H0PXIxn/PLyBaJwy+TuJKatA6yoWIMW
iaBb2zOedO1ETVy78yxCh1/3KkVNxRmy7xr85CIZ3/ebjTeBLJAAdaGmdELPp4RmfuvuNxL/ZMcC
HCPK0/SFKr0=
Fingerprint: c4:2f:14:93:10:fc:19:51:c6:7b:01:e6:dc:d9:0e:86

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1651973090 | 2024-05-06T07:14:34.105180

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 06 May 2024 07:14:34 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Mon, 29 Apr 2024 03:27:04 GMT
Connection: keep-alive
ETag: "662f1388-264"
Accept-Ranges: bytes

623595702 | 2024-05-14T17:45:14.720800

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 14 May 2024 17:45:14 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 650
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"28a-uuP9ekZ0lDxmYgC254udoSKMxPM"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:5a:2d:71:0e:e5:52:ec:b3:bb:8e:c0:7a:89:23:8f:21:aa
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 29 02:33:56 2024 GMT
            Not After : Jul 28 02:33:55 2024 GMT
        Subject: CN=admin.mossserver.click
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:0c:ab:ad:ce:76:4b:41:62:f2:96:38:f1:02:7a:
                    87:9e:48:0b:61:ba:75:54:a4:74:22:9c:8b:1c:20:
                    ee:42:63:eb:f8:b8:bc:00:ee:45:9a:22:bb:9e:7d:
                    57:92:32:5c:27:90:41:fb:aa:41:2a:ca:04:49:f9:
                    e1:e6:9b:99:08
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                62:67:38:C7:0E:63:1A:CA:85:F3:D7:12:22:AC:5F:F5:88:65:3E:CE
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:admin.mossserver.click, DNS:sem.mossserver.click, DNS:static.mossserver.click
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 29 03:33:57.032 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:5E:1F:95:28:55:31:49:FC:E6:E0:D0:B1:
                                56:13:17:4D:B1:BE:4F:69:80:AA:E6:7D:C2:95:9A:37:
                                52:75:F6:C9:02:21:00:A8:C5:B8:75:4B:21:BE:5C:45:
                                99:99:D1:12:F2:73:38:EA:ED:80:A3:08:1E:A1:71:F0:
                                2B:85:9D:49:8A:C5:9F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 29 03:33:57.035 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D5:78:FC:13:FB:45:FB:12:A0:F5:5B:
                                FA:8F:B6:7C:A4:1F:C2:DB:A1:76:AA:6C:EE:2E:CB:9F:
                                7C:9D:92:45:21:02:20:1A:A0:08:6D:F4:F7:BD:3C:0F:
                                CA:15:57:06:3A:F6:8D:B5:AD:C0:7A:3D:33:51:00:CB:
                                A1:73:6A:C4:33:8F:C6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b5:7f:e5:45:24:55:f8:00:48:bd:1f:ec:d6:a8:23:88:90:7c:
        fa:7a:9f:30:e3:24:18:ad:45:85:53:78:9b:66:06:c9:da:39:
        b0:3c:c8:9f:b4:c1:ea:e6:2a:aa:4e:37:4f:48:04:dd:c0:3f:
        65:c3:d6:d0:f3:52:38:38:69:6a:62:b2:06:cb:7b:e5:84:a7:
        44:fd:6c:e7:be:74:76:66:f5:9a:84:99:26:d5:a2:12:3d:9b:
        be:4c:96:58:50:f2:52:d3:3d:9e:6e:50:86:9a:05:09:a6:97:
        f0:f9:71:18:cc:b1:e4:5d:28:7f:5d:e4:61:23:20:09:18:42:
        d1:87:6b:72:22:9d:4f:88:a6:ad:a7:1d:0a:76:20:e9:37:70:
        17:92:48:14:00:66:0e:64:d0:b2:d3:f0:de:05:2f:1c:35:4a:
        ca:52:10:f8:91:fd:62:c0:ae:9c:ec:20:f3:2a:3a:63:26:09:
        ce:32:85:f0:2a:d8:83:1c:cc:94:ff:9b:8d:55:20:a5:fe:87:
        9a:48:99:52:d2:87:9d:db:dc:ec:8a:b2:71:ce:a9:d1:1c:8e:
        4d:05:2c:7b:e9:a7:04:b3:e8:bd:4c:aa:de:c5:15:4d:0f:03:
        1b:42:70:ac:29:67:4a:67:64:af:28:1a:83:f4:da:1c:a1:4d:
        71:ba:35:03

-1246004407 | 2024-05-06T07:18:10.013298

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

139.162.186.135

Last Seen: 2024-05-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-787587349 | 2024-05-16T05:19:44.202669
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-05-06T07:14:34.105180
80 / tcp

nginx1.18.0

623595702 | 2024-05-14T17:45:14.720800
443 / tcp

nginx1.18.0

-1246004407 | 2024-05-06T07:18:10.013298
4000 / tcp

Products

Pricing

Contact Us

139.162.186.135

Last Seen: 2024-05-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-787587349 | 2024-05-16T05:19:44.202669 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

1651973090 | 2024-05-06T07:14:34.105180 80 / tcp

nginx1.18.0

623595702 | 2024-05-14T17:45:14.720800 443 / tcp

nginx1.18.0

-1246004407 | 2024-05-06T07:18:10.013298 4000 / tcp

Products

Pricing

Contact Us

-787587349 | 2024-05-16T05:19:44.202669
22 / tcp

1651973090 | 2024-05-06T07:14:34.105180
80 / tcp

623595702 | 2024-05-14T17:45:14.720800
443 / tcp

-1246004407 | 2024-05-06T07:18:10.013298
4000 / tcp