GeneralInformation

Hostnames	le-pv.com www.le-pv.com
Domains	le-pv.com
Country	China
City	Hangzhou
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

JavaScript libraries

jQuery

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2020(1)

CVE-2020-1938

7.5When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited in ways that may be surprising. In Apache Tomcat 9.0.0.M1 to 9.0.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99, Tomcat shipped with an AJP Connector enabled by default that listened on all configured IP addresses. It was expected (and recommended in the security guide) that this Connector would be disabled if not required. This vulnerability report identified a mechanism that allowed: - returning arbitrary files from anywhere in the web application - processing any file in the web application as a JSP Further, if the web application allowed file upload and stored those files within the web application (or the attacker was able to control the content of the web application by some other means) then this, along with the ability to process a file as a JSP, made remote code execution possible.

2010(3)

CVE-2010-3972

10Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) 7.0, and IIS 7.5, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted FTP command, aka "IIS FTP Service Heap Buffer Overrun Vulnerability." NOTE: some of these details are obtained from third party information.

CVE-2010-2730

9.3Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability."

CVE-2010-1899

4.3Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) via a crafted request, related to asp.dll, aka "IIS Repeated Parameter Request Denial of Service Vulnerability."

OpenPorts

21 80 90 443 3389 8009

80 / tcp

1973346640 | 2025-03-09T21:28:58.413695

Hashes

hash

-622615748

http.dom_hash

-1113775622

http.favicon.hash

-1182060646

http.html_hash

1973346640

http.server_hash

-43448623

http.title_hash

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=B9A446443BD20E6C02811E4D20E6932C; Path=/; HttpOnly
Content-Type: text/html;charset=utf-8
Content-Length: 4441
Date: Sun, 09 Mar 2025 21:29:00 GMT

90 / tcp

-119375469 | 2025-03-13T12:35:12.037072

Hashes

hash

-324972879

http.dom_hash

-1389411298

http.html_hash

-119375469

http.server_hash

-1390970405

http.title_hash

-444403470

IIS7

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Tue, 13 Jun 2017 03:32:55 GMT
Accept-Ranges: bytes
ETag: "2b54dabef5e3d21:0"
Server: Microsoft-IIS/7.5
Date: Thu, 13 Mar 2025 12:34:24 GMT
Content-Length: 689

Vulnerabilities

443 / tcp

1973346640 | 2025-03-20T03:16:43.262896

Hashes

hash

-1257761821

http.dom_hash

-1113775622

http.favicon.hash

-1182060646

http.html_hash

1973346640

http.server_hash

-43448623

http.title_hash

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=9C7EDE75DAA236AA43CA1FE4FD6D598B; Path=/; Secure; HttpOnly
Content-Type: text/html;charset=utf-8
Content-Length: 4441
Date: Thu, 20 Mar 2025 03:16:44 GMT

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:7e:0d:df:47:ae:34:33:63:b5:28:6c:4e:1f:6f:02
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G2
        Validity
            Not Before: Sep 26 00:00:00 2024 GMT
            Not After : Sep 25 23:59:59 2025 GMT
        Subject: CN=www.le-pv.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:8c:32:d3:3a:33:1c:e7:bc:d6:fd:34:e1:be:81:
                    1b:e7:1a:e0:1f:bc:e5:ff:c9:73:b9:d6:93:7b:6a:
                    a3:85:f4:07:5b:e3:77:9d:88:9a:ae:e4:d0:f7:73:
                    20:c7:0f:d8:93:97:ed:fa:01:ff:b3:8d:f7:8a:d3:
                    99:c6:15:af:fe:b5:3a:e2:0e:4c:4e:83:72:ff:3a:
                    f7:f7:1e:34:12:a9:08:55:ca:79:e7:ae:99:a4:7f:
                    23:d4:86:60:14:d5:2d:4a:bd:e7:43:d7:3b:67:16:
                    a5:10:60:c9:13:3b:fe:57:78:e1:f6:c0:42:93:31:
                    8a:b8:1c:e0:8e:7a:69:3e:32:6c:07:13:01:c1:91:
                    25:43:f5:f7:67:70:49:de:bd:32:17:cf:50:e5:3b:
                    ec:74:8a:3e:76:7e:d6:32:d7:3d:8c:66:4d:f5:2d:
                    7d:17:67:23:ce:38:7d:63:87:40:c4:26:3e:5b:12:
                    c2:4e:a0:05:2f:df:80:07:67:8c:7c:22:1e:64:dd:
                    69:dc:6a:5b:22:8c:b0:ee:ba:8d:eb:13:f4:c8:93:
                    1c:52:39:07:6c:e1:f6:2c:f6:78:79:84:08:c9:2c:
                    e4:f7:fc:82:69:c4:ac:5f:93:e9:f7:a2:55:79:5b:
                    85:ba:5b:b1:38:18:c9:74:11:9f:a5:65:02:a3:70:
                    bb:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                78:DF:91:90:5F:EE:DE:AC:F6:C5:75:EB:D5:4C:55:53:EF:24:4A:B6
            X509v3 Subject Key Identifier: 
                B3:63:AE:9B:6D:E3:17:09:57:7A:85:C7:2C:CF:C0:CA:61:4D:2F:74
            X509v3 Subject Alternative Name: 
                DNS:www.le-pv.com, DNS:le-pv.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Sep 26 08:42:04.944 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:CE:CF:40:8D:7C:4B:81:80:36:66:D1:
                                71:6C:A9:3D:43:5C:B4:FC:BE:6C:59:39:A9:1D:18:4D:
                                7F:71:3A:65:C5:02:20:79:75:35:90:C2:52:C1:8C:0D:
                                52:F4:42:82:E7:55:14:4C:B2:F8:50:3F:00:8F:08:20:
                                79:06:0E:04:B3:B2:1A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Sep 26 08:42:05.035 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:EE:05:1B:33:E9:C1:1D:EE:E6:4E:E7:
                                6D:DA:40:CE:B4:A7:87:75:C1:09:82:7D:A7:B3:D0:2F:
                                AA:70:81:99:06:02:20:3E:CC:A0:41:EF:17:D6:C9:C7:
                                91:78:16:94:FB:37:B6:E5:85:2B:69:1B:D8:6C:1F:D4:
                                91:81:51:5D:17:60:E7
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Sep 26 08:42:04.955 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:13:B6:EB:61:CE:B9:6A:F3:D3:BA:58:83:
                                33:36:6C:9C:B6:0F:D4:F9:73:C1:D0:DC:66:2A:F3:58:
                                B1:1D:87:54:02:21:00:DE:D0:AD:60:C2:7C:5E:B8:88:
                                D2:EE:61:D1:CF:F8:D3:4A:27:25:50:36:5E:BF:3C:97:
                                2B:10:A1:11:FB:59:05
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        cf:08:30:7c:40:3c:f6:9d:7c:59:6f:69:dc:f7:1d:32:0e:e3:
        10:25:db:d5:c4:b7:e0:db:03:d0:59:ea:48:22:8d:e8:4a:20:
        1f:63:0d:95:cc:07:69:37:73:56:ef:46:c8:4a:04:80:3a:ac:
        3e:ed:22:c5:52:43:96:55:ab:36:ec:75:00:08:22:81:4f:80:
        e7:0b:cb:59:0f:63:64:88:35:f4:ba:ee:a2:4b:09:89:8d:31:
        f9:8f:9d:b0:b8:22:ff:3b:07:26:67:07:1d:db:45:19:e2:f2:
        b4:3f:17:cc:17:dd:5d:61:e1:97:8b:24:d9:da:ed:ad:2b:73:
        c6:f1:d7:dc:f7:fa:ef:f3:98:df:b9:0f:01:a2:bb:36:4b:d9:
        4e:90:0e:b3:a7:a6:4e:76:7f:63:50:b0:ad:53:e0:b8:ac:0e:
        5a:bf:d3:00:63:2a:20:3e:86:71:b4:c0:64:9b:24:91:d9:a2:
        85:16:38:c4:3b:c9:71:52:77:6b:fe:7e:79:2f:63:33:47:bd:
        05:37:7a:15:4a:99:51:a8:e8:0b:70:08:ca:66:b5:23:6e:78:
        be:c1:d5:2a:68:61:6c:bc:c4:e1:ba:73:11:63:b9:7e:75:70:
        62:46:e8:a8:46:06:b4:4d:4e:aa:b9:19:c4:b4:70:e6:2e:cd:
        87:a2:1a:fc

3389 / tcp

-1849845060 | 2025-03-20T13:56:29.205098

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\t\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 7/Windows Server 2008 R2
  OS Build: 6.1.7601
  Target Name: iZbtj01ldsno2mZ
  NetBIOS Domain Name: iZbtj01ldsno2mZ
  NetBIOS Computer Name: iZbtj01ldsno2mZ
  DNS Domain Name: iZbtj01ldsno2mZ
  FQDN: iZbtj01ldsno2mZ

3,
Administrator ftpuser
M WIN-RUOSDCABCIR ite...
BAW ees ep rece
Enterprise

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            62:75:f4:36:c5:e7:d7:a6:47:ec:55:f6:e0:f6:a2:ef
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=iZbtj01ldsno2mZ
        Validity
            Not Before: Jan 28 00:18:00 2025 GMT
            Not After : Jul 30 00:18:00 2025 GMT
        Subject: CN=iZbtj01ldsno2mZ
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ed:2f:67:29:b0:eb:07:91:47:42:79:3d:65:f6:
                    b6:b6:c5:3b:1a:65:b9:85:48:c2:12:06:2a:be:37:
                    56:4e:58:ad:a0:90:a5:5c:fe:e9:45:72:be:62:44:
                    de:7e:9a:80:ce:1c:0c:96:55:fb:05:8d:00:2c:c9:
                    fa:2e:42:69:f2:2b:5f:82:cb:f1:b3:a5:2c:4c:ea:
                    bc:1e:aa:29:7e:a6:47:2d:b3:af:81:83:3d:8f:19:
                    e9:91:de:30:a9:aa:c7:79:3b:4d:4e:69:9e:49:09:
                    10:24:23:63:c2:89:28:31:31:be:0d:c1:20:03:ab:
                    be:ae:06:4f:d9:ad:6b:10:df:21:d1:9f:fc:2b:1a:
                    9c:e5:ae:5d:dd:83:d8:5e:e6:29:7d:4b:8b:13:81:
                    56:c6:ca:5c:c7:9d:12:42:e0:17:59:7a:22:a1:55:
                    12:d1:ec:d2:3f:e9:74:73:15:1e:1d:d4:f3:cc:22:
                    6c:77:a3:bf:1c:75:e2:b5:ff:cb:a9:08:34:88:1b:
                    c7:66:ad:16:d4:26:d5:a8:79:86:35:d0:83:a6:bd:
                    0f:f5:f3:8b:6f:90:2d:35:b3:f6:69:9b:10:a1:e5:
                    98:80:86:ef:45:42:b4:ae:e9:12:2a:5a:a2:89:31:
                    e3:48:fd:09:d1:2e:3e:08:b0:8e:0a:40:ec:c3:89:
                    1d:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        11:15:ed:4a:c4:9b:93:89:3f:82:0b:f9:8b:65:fe:a4:18:06:
        de:31:47:98:88:4e:85:4d:cc:39:ef:9c:dc:73:92:9c:fb:b9:
        1b:c3:0c:7f:4a:24:1c:8c:73:77:0a:6f:92:47:5a:42:87:d3:
        ac:f9:fc:8c:ec:06:77:9c:38:e7:19:86:f9:a1:be:74:a0:b2:
        fd:a3:2f:c8:33:43:29:79:ea:e6:a9:7f:6c:d9:70:83:c9:c3:
        2b:a4:7f:89:12:b9:40:23:3c:3a:6e:7e:dd:c4:75:16:0f:a5:
        a1:de:fe:51:7c:7d:24:41:5f:24:df:2b:a7:e9:9d:bb:96:8e:
        59:2b:f0:c1:f6:7a:10:78:a7:db:24:c7:bc:8e:1b:23:8c:28:
        a5:68:d0:37:21:88:f6:6b:0e:ba:2b:8b:3e:85:55:97:21:91:
        69:f8:f5:6f:48:7b:e8:0b:6b:7c:c2:1c:5d:25:dc:c5:61:a0:
        93:72:39:cc:5f:a8:fe:77:59:47:a2:0a:ae:44:86:df:3b:57:
        b2:9c:21:12:6c:15:8a:80:40:e2:e0:c5:29:ad:e0:06:f2:ec:
        b8:b0:96:94:1f:2e:31:3c:65:c0:f5:ad:1b:c7:82:88:ba:9a:
        01:8f:39:77:ef:a0:4b:12:9d:3f:fc:77:31:6c:a3:de:34:40:
        de:f5:1b:6c

8009 / tcp

-1229623407 | 2025-03-21T17:13:36.349258

<!DOCTYPE html><html><head><title>Apache Tomcat/8.0.36 - Error report</title><style type="text/css">H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}.line {height: 1px; background-color: #525D76; border: none;}</style> </head><body><h1>HTTP Status 404 - /asdadadas</h1><div class="line"></div><p><b>type</b> Status report</p><p><b>message</b> <u>/asdadadas</u></p><p><b>description</b> <u>The requested resource is not available.</u></p><hr class="line"><h3>Apache Tomcat/8.0.36</h3></body></html>

Vulnerabilities

118.178.230.150

Last Seen: 2025-03-21

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

80 / tcp

1973346640 | 2025-03-09T21:28:58.413695

Hashes

Apache Tomcat/Coyote JSP engine1.1

90 / tcp

-119375469 | 2025-03-13T12:35:12.037072

Hashes

Microsoft IIS httpd7.5

443 / tcp

1973346640 | 2025-03-20T03:16:43.262896

Hashes

Apache Tomcat/Coyote JSP engine1.1

3389 / tcp

-1849845060 | 2025-03-20T13:56:29.205098

Remote Desktop Protocol

8009 / tcp

-1229623407 | 2025-03-21T17:13:36.349258

Apache Tomcat8.0.36

Products

Pricing

Contact Us

118.178.230.150

Last Seen: 2025-03-21

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 90 Port 8009 Latest CVSS

OpenPorts

80 / tcp 1973346640 | 2025-03-09T21:28:58.413695

Hashes

Apache Tomcat/Coyote JSP engine1.1

90 / tcp -119375469 | 2025-03-13T12:35:12.037072

Hashes

Microsoft IIS httpd7.5

443 / tcp 1973346640 | 2025-03-20T03:16:43.262896

Hashes

Apache Tomcat/Coyote JSP engine1.1

3389 / tcp -1849845060 | 2025-03-20T13:56:29.205098

Remote Desktop Protocol

8009 / tcp -1229623407 | 2025-03-21T17:13:36.349258

Apache Tomcat8.0.36

Products

Pricing

Contact Us

Vulnerabilities

80 / tcp

1973346640 | 2025-03-09T21:28:58.413695

90 / tcp

-119375469 | 2025-03-13T12:35:12.037072

443 / tcp

1973346640 | 2025-03-20T03:16:43.262896

3389 / tcp

-1849845060 | 2025-03-20T13:56:29.205098

8009 / tcp

-1229623407 | 2025-03-21T17:13:36.349258