GeneralInformation

Country	China
City	Ürümqi
Organization	CHINANET xinjiang province network
ISP	CHINANET-BACKBONE
ASN	AS4134
Operating System	Windows

WebTechnologies

Editors

Microsoft Word 11

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2014-4078	5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability."
CVE-2010-3972	10.0Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) 7.0, and IIS 7.5, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted FTP command, aka "IIS FTP Service Heap Buffer Overrun Vulnerability." NOTE: some of these details are obtained from third party information.
CVE-2010-2730	9.3Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability."
CVE-2010-1899	4.3Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) via a crafted request, related to asp.dll, aka "IIS Repeated Parameter Request Denial of Service Vulnerability."

OpenPorts

4433 8009 8099 9090

1760025237 | 2024-05-14T00:53:49.907270

4433 / tcp

HTTP/1.1 200 OK
Date: Tue, 14 May 2024 00:53:49 GMT
Server: Server
X-Frame-Options: SAMEORIGIN
USE_NEW_PORTAL: 1
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet, nosnippet, notranslate, noimageindex
Content-Length: 7418
Content-Type: text/html; charset=utf-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a0:2b:c1:e7:b7:0f:ae:ed
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=SANGFOR
        Validity
            Not Before: Feb 21 16:48:39 2022 GMT
            Not After : Feb 21 16:48:39 2024 GMT
        Subject: CN=SANGFOR
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d8:5e:fe:7c:6f:f7:43:bf:89:fc:c3:60:9e:aa:
                    9c:d7:2f:79:af:cc:b5:12:db:a6:59:cd:66:5a:a7:
                    85:aa:97:3b:b0:76:00:fc:55:3c:ff:41:b2:a7:78:
                    0d:51:09:94:7d:6b:4a:01:6d:e1:01:eb:25:a2:66:
                    75:97:7a:65:4e:4f:56:65:25:af:be:f7:86:c4:e5:
                    be:fe:84:fe:15:37:8b:29:f1:38:c0:89:c2:47:1b:
                    c2:15:1c:05:11:9e:29:2d:32:3e:7b:5f:b3:21:03:
                    43:bc:72:31:93:06:f8:5f:7b:01:c6:93:5e:b8:a2:
                    c3:0b:9d:b7:18:a8:9a:5c:b0:93:cb:84:17:89:54:
                    7f:90:59:40:ba:a4:ae:5a:22:6c:30:60:08:dd:05:
                    b1:61:18:68:bc:36:d3:51:3b:9d:e5:55:72:f0:48:
                    f3:58:23:93:42:45:cd:d1:fe:18:fc:8e:ae:4b:77:
                    86:d4:be:9a:b4:e8:cf:cb:95:ce:e9:53:19:08:91:
                    3b:f0:32:50:d9:a3:82:87:93:ee:22:c2:07:39:2f:
                    6f:d5:55:64:30:ce:9e:16:f7:e7:02:cd:ac:d1:68:
                    71:23:8b:ee:75:17:7b:60:44:ae:7e:22:79:09:a1:
                    82:9a:2b:5c:36:1d:91:1d:dc:5c:b6:db:82:ee:3c:
                    ef:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        4a:d8:72:c6:eb:58:e0:1d:af:4b:31:53:53:8f:ab:83:88:98:
        c1:54:8b:05:33:52:4d:ba:25:5c:58:81:bc:d7:5b:e2:d7:b3:
        31:b3:a5:38:bf:3a:3b:a8:52:cc:e6:85:b3:ab:3e:04:96:ad:
        e7:2b:ae:6d:a0:20:f0:18:1c:4d:14:00:06:ed:5c:59:94:42:
        7d:40:81:c0:99:6c:83:a5:c3:d5:84:b3:76:7c:f8:5b:c1:b7:
        4a:dc:6f:50:8b:50:62:58:49:0c:7c:fa:a4:73:78:14:2f:50:
        7e:1d:18:a7:b0:75:75:17:d1:8b:ae:e3:cc:07:19:d1:09:dc:
        6e:19:4f:a5:34:b1:2f:a2:57:4b:0d:56:d3:b4:c7:86:cb:45:
        07:42:22:da:b9:7b:bf:c6:ab:8b:12:e7:b3:27:82:51:69:4a:
        e1:c5:75:9d:1f:0e:dc:49:69:a2:1e:3f:f3:85:9b:a2:0d:ac:
        8d:72:8f:6c:a9:37:62:c2:84:5b:35:84:3e:fa:18:02:18:68:
        b1:d7:49:db:fc:e0:b0:a0:45:ac:ee:77:7f:56:f2:ad:26:c2:
        7b:c9:f2:c2:cc:ae:97:cb:59:ca:6a:85:8a:a0:da:e9:c8:b3:
        01:30:de:45:ef:ee:d6:ef:71:18:64:5b:b9:36:32:0a:d6:df:
        04:83:13:df

-1336850257 | 2024-04-24T15:04:08.396682

8009 / tcp

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 24 Apr 2024 15:04:08 GMT
Content-Type: text/html
Content-Length: 615
Last-Modified: Mon, 23 May 2022 23:59:18 GMT
Connection: keep-alive
ETag: "628c1fd6-267"
Accept-Ranges: bytes

<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!</title>
<style>
html { color-scheme: light dark; }
body { width: 35em; margin: 0 auto;
font-family: Tahoma, Verdana, Arial, sans-serif; }
</style>
</head>
<body>
<h1>Welcome to nginx!</h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.</p>

<p>For online documentation and support please refer to
<a href="http://nginx.org/">nginx.org</a>.<br/>
Commercial support is available at
<a href="http://nginx.com/">nginx.com</a>.</p>

<p><em>Thank you for using nginx.</em></p>
</body>
</html>

-1983291565 | 2024-05-01T21:19:56.780102

8099 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Mon, 30 Oct 2023 05:23:34 GMT
Accept-Ranges: bytes
ETag: "9dfe743af1ada1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Wed, 01 May 2024 20:59:36 GMT
Content-Length: 10709

1985390014 | 2024-05-17T05:55:58.881985

9090 / tcp

HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Fri, 17 May 2024 05:55:13 GMT
Content-Length: 3331

218.84.127.47

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1760025237 | 2024-05-14T00:53:49.907270
4433 / tcp

-1336850257 | 2024-04-24T15:04:08.396682
8009 / tcp

nginx1.22.0

-1983291565 | 2024-05-01T21:19:56.780102
8099 / tcp

Microsoft IIS httpd7.5

1985390014 | 2024-05-17T05:55:58.881985
9090 / tcp

Microsoft IIS httpd8.5

Products

Pricing

Contact Us

218.84.127.47

Last Seen: 2024-05-17

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1760025237 | 2024-05-14T00:53:49.907270 4433 / tcp

-1336850257 | 2024-04-24T15:04:08.396682 8009 / tcp

nginx1.22.0

-1983291565 | 2024-05-01T21:19:56.780102 8099 / tcp

Microsoft IIS httpd7.5

1985390014 | 2024-05-17T05:55:58.881985 9090 / tcp

Microsoft IIS httpd8.5

Products

Pricing

Contact Us

1760025237 | 2024-05-14T00:53:49.907270
4433 / tcp

-1336850257 | 2024-04-24T15:04:08.396682
8009 / tcp

-1983291565 | 2024-05-01T21:19:56.780102
8099 / tcp

1985390014 | 2024-05-17T05:55:58.881985
9090 / tcp