GeneralInformation

Hostnames	c8e7cbf86a.scan.leakix.org
Domains	leakix.org
Cloud Provider	DigitalOcean
Cloud Region	ca-on
Country	Canada
City	Toronto
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061
Operating System	Linux

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2022-41556

A resource leak in gw_backend.c in lighttpd 1.4.56 through 1.4.66 could lead to a denial of service (connection-slot exhaustion) after a large amount of anomalous TCP behavior by clients. It is related to RDHUP mishandling in certain HTTP/1.1 chunked situations. Use of mod_fastcgi is, for example, affected. This is fixed in 1.4.67.

CVE-2022-22707

4.3In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.

OpenPorts

22 80

-264508268 | 2024-05-16T05:12:59.730466

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDAhy8p5ZvtjcZYtvt8eUw4NcvkWP+gnwmKahQS1QkzvSCT
ivQDpop7LnerOjNYWDz3yvYbVkBDqS5bb4+2ibkeM/J09iyQs7fmaejOb9PqzuNG4EyxWk0l9b50
E5BU8UC856QgiuIVTqgaIe9BJ7m9cG1YYRTf+fXMbJ40/oWsxSBwh82NOD0c2JtqtlVqq30n2Fhc
DNb0+qsPopoACHDK7S6TDI219jjuGEtS8Ru5NkHMVQz1SSYlQ8Sbbr9RikJibivjLbI0JEpQeP4N
hlsIf5Ol7Y6mZ6UqL/ntDFcdmHlMHtGX9m+WFKJpXYiD34sXiM4vJMmEl7C3z4ndPu/vMVNZLZF/
CoYHIfjMQXdkouCPstw2rSZJ7Xu3H9/7WwLc/xsWhtV4QEOQO6WPjRMMsUhsejY4jBRj8AuIX7w5
9zo/QL4KkI3YWoGoQeOL85EYH9yMp8eyE42Fc8IVhK3KXKzRbW2mfl4JXYnJm2hsOUkarJ17NjQl
qJarSVFZsE8=
Fingerprint: 58:47:7e:bb:55:e4:2b:58:91:18:11:ad:06:f3:6c:58

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

346290602 | 2024-05-15T07:39:45.344729

80 / tcp

HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Accept-Ranges: bytes
ETag: "870826049"
Last-Modified: Mon, 29 Apr 2024 14:44:37 GMT
Content-Length: 1332
Date: Wed, 15 May 2024 07:39:45 GMT
Server: lighttpd/1.4.59

167.99.182.39

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-264508268 | 2024-05-16T05:12:59.730466
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

346290602 | 2024-05-15T07:39:45.344729
80 / tcp

lighttpd1.4.59

Products

Pricing

Contact Us