GeneralInformation

Hostnames	imap.werentsims.com
Domains	werentsims.com
Country	United States
City	Reston
Organization	Server Destroyers LLC
ISP	Frontier Communications of America, Inc.
ASN	AS5650

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024(2)

CVE-2024-45802

7.5Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This bug is fixed in the default build configuration of Squid version 6.10.

CVE-2024-25111

8.6Squid is a web proxy cache. Starting in version 3.5.27 and prior to version 6.8, Squid may be vulnerable to a Denial of Service attack against HTTP Chunked decoder due to an uncontrolled recursion bug. This problem allows a remote attacker to cause Denial of Service when sending a crafted, chunked, encoded HTTP Message. This bug is fixed in Squid version 6.8. In addition, patches addressing this problem for the stable releases can be found in Squid's patch archives. There is no workaround for this issue.

OpenPorts

993 3000

993 / tcp

2118050809 | 2025-03-18T11:39:05.000938

* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR CHILDREN UNSELECT MOVE IDLE APPENDLIMIT AUTH=PLAIN IDLE] IMAP4rev1 Service Ready
* CAPABILITY IMAP4rev1 LITERAL+ SASL-IR CHILDREN UNSELECT MOVE IDLE APPENDLIMIT AUTH=PLAIN IDLE
A001 OK CAPABILITY completed
A002 BAD Unknown command
A003 BAD Unknown command
* BYE Closing connection
A004 OK LOGOUT completed

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:e8:bc:1b:c9:8e:83:42:cb:c4:63:de:fb:df:08:a7:bc:7b
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Feb 17 08:46:53 2025 GMT
            Not After : May 18 08:46:52 2025 GMT
        Subject: CN=imap.werentsims.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:57:e5:d3:42:91:05:5e:1a:24:16:df:34:b9:8f:
                    76:a2:97:70:cb:b8:15:23:e9:30:f8:19:ed:bb:3b:
                    9d:2a:f0:d4:c3:a5:9f:8d:a7:30:8f:f5:18:41:97:
                    85:d7:1b:c0:0d:ea:74:21:e4:7f:6d:21:fb:ca:94:
                    8d:d7:0d:89:c1
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                58:09:F9:0E:3B:4C:87:12:09:59:F3:EE:A0:C2:9E:B9:37:16:CA:53
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:imap.werentsims.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Feb 17 09:45:24.237 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:D4:CC:64:1B:83:C1:0F:17:FE:19:3E:
                                43:EB:5E:0F:8C:E6:51:C7:E5:68:1B:A1:F5:2F:7B:C9:
                                F3:72:B1:11:25:02:21:00:F7:C3:5B:C2:61:CB:50:A5:
                                B7:AC:C0:70:56:9F:AB:80:1F:36:B8:9A:67:17:91:7B:
                                EC:5E:5B:00:C5:41:35:41
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Feb 17 09:45:24.804 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9C:0D:56:F4:E5:EC:CF:B8:FB:8F:7D:
                                0A:28:C0:D3:EB:19:6C:1D:E5:2C:D3:D7:49:50:AD:DA:
                                51:87:8B:F3:E5:02:21:00:C4:18:55:73:D6:6D:98:45:
                                10:1E:C4:1F:BE:61:FE:FA:1B:04:AF:0F:E9:A0:40:4F:
                                CA:36:A8:EA:C7:46:32:A0
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:1b:93:24:30:e3:97:9d:4b:4a:03:e7:29:a2:39:
        95:51:a9:83:a3:ad:40:8a:6a:8a:8c:fe:4d:61:47:14:14:6a:
        cf:3e:51:96:cc:13:33:32:0d:49:a0:33:f8:7a:2d:b5:02:31:
        00:d3:6f:a5:ce:39:d9:34:e6:79:88:35:e8:52:40:ed:8c:d3:
        55:75:71:d4:b6:a3:66:63:03:8e:b9:a2:86:0c:79:60:10:1a:
        70:d1:7e:3a:4a:eb:d5:61:eb:39:b5:eb:ce

3000 / tcp

353186510 | 2025-03-24T21:37:54.586528

Hashes

hash

144210925

http.dom_hash

1921212226

http.html_hash

353186510

http.server_hash

-1745154249

http.title_hash

922596536

ERROR: The requested URL could not be retrieved

HTTP/1.1 400 Bad Request
Server: squid/6.6
Mime-Version: 1.0
Date: Mon, 24 Mar 2025 21:37:53 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 3509
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
Cache-Status: serverdestroyers
Via: 1.1 serverdestroyers (squid/6.6)
Connection: close

Vulnerabilities

104.165.121.62

Last Seen: 2025-03-24

GeneralInformation

Vulnerabilities

OpenPorts

993 / tcp

2118050809 | 2025-03-18T11:39:05.000938

3000 / tcp

353186510 | 2025-03-24T21:37:54.586528

Hashes

Squid http proxy6.6

Products

Pricing

Contact Us

104.165.121.62

Last Seen: 2025-03-24

GeneralInformation

Vulnerabilities All ports Port 3000 Latest CVSS

OpenPorts

993 / tcp 2118050809 | 2025-03-18T11:39:05.000938

3000 / tcp 353186510 | 2025-03-24T21:37:54.586528

Hashes

Squid http proxy6.6

Products

Pricing

Contact Us

Vulnerabilities

993 / tcp

2118050809 | 2025-03-18T11:39:05.000938

3000 / tcp

353186510 | 2025-03-24T21:37:54.586528