GeneralInformation

Hostnames	mail.themeparx.com
Domains	themeparx.com
Cloud Provider	Linode
Cloud Region	jp-13
Country	Japan
City	Tokyo
Organization	139.162.0.0/16
ISP	Akamai Connected Cloud
ASN	AS63949

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2022(2)

CVE-2022-41556

7.5A resource leak in gw_backend.c in lighttpd 1.4.56 through 1.4.66 could lead to a denial of service (connection-slot exhaustion) after a large amount of anomalous TCP behavior by clients. It is related to RDHUP mishandling in certain HTTP/1.1 chunked situations. Use of mod_fastcgi is, for example, affected. This is fixed in 1.4.67.

CVE-2022-22707

5.9In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.

OpenPorts

21 22 80 443 3306 33060

21 / tcp

-1793481107 | 2025-03-13T03:01:25.802500

220 ProFTPD Server (Walalah) [::ffff:139.162.116.125]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO    RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    HOST    CLNT    AUTH*   CCC*    CONF*   
 ENC*    MIC*    PBSZ*   PROT*   TYPE    STRU    MODE    RETR    
 STOR    STOU    APPE    REST    ABOR    RANG    USER    PASS    
 ACCT*   REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@localhost
211-Features:
 CLNT
 EPRT
 EPSV
 HOST
 LANG en-US.UTF-8*;en-US
 MDTM
 MFF modify;UNIX.group;UNIX.mode;
 MFMT
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
 RANG STREAM
 REST STREAM
 SITE COPY
 SITE MKDIR
 SITE RMDIR
 SITE SYMLINK
 SITE UTIME
 SIZE
 TVFS
 UTF8
211 End

22 / tcp

445658110 | 2025-03-10T18:31:18.303533

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCq1gzAVIZuUxCixv53Bz1wqNV3woyycHMbtoMXtoUpJwni
I185bovyItFqR4h1FUnEJHS/gBC3qBFg5meHw7zMN/CVoNYsN0XCXVUg3ynmPzufNfRfvg4wCuoA
+nYfgNNc+w3jQbsGc/A4u4HHfZWbUK2lSfOKI/l0Cc/OxWuxo7ytjUtILhWv3YEomwfrjtw3ce+K
FYyNsoUXcopuacDiFvJvFHQxlBXbzY8VaVMIS8jSdsgD+6sA5OAbYrkGS44OHq76j6JnxjaQ3F7I
b6velE1wJpn8Wkiv+nyEmRr4wvg4S1wb1y4Rn/BqW/rcdwZucr19wDonJyjAuR7VCbS83WXQT1OK
AHa8cJbd+snRVlxqJID1VkSQMyfaV3jR379x1ksqW07QtFZsiIQ6u77B2+qniHmHE5qZ9WT0SA8v
0LUThxiYVCBKilHx51wHXSyP3a09yXtc3JcaX1zS3pMtLHuA4Y2Nsb8QKe6NhYm6trxHgL1VS3dP
KK9fe432Od0=
Fingerprint: 41:a0:6e:9b:1c:9e:61:ca:9c:ad:7a:c2:77:e0:8f:51

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

0 | 2025-03-13T13:28:04.720946

Hashes

hash

572900120

http.dom_hash

http.html_hash

http.server_hash

627222244

HTTP/1.1 200 OK
Content-type: text/html; charset=UTF-8
Content-Length: 0
Date: Thu, 13 Mar 2025 13:27:45 GMT
Server: lighttpd/1.4.59

Vulnerabilities

1 1

3306 / tcp

1505956244 | 2025-03-13T11:39:18.120857

MySQL:
  Protocol Version: 10
  Version: 8.0.29-21
  Capabilities: 65535
  Server Language: 46
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: mysql_native_password

33060 / tcp

-795948505 | 2025-03-09T12:32:25.943205

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

139.162.116.125

Last Seen: 2025-03-13

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

21 / tcp

-1793481107 | 2025-03-13T03:01:25.802500

22 / tcp

445658110 | 2025-03-10T18:31:18.303533

OpenSSH8.4p1 Debian 5+deb11u1

80 / tcp

0 | 2025-03-13T13:28:04.720946

Hashes

lighttpd1.4.59

3306 / tcp

1505956244 | 2025-03-13T11:39:18.120857

MySQL8.0.29-21

33060 / tcp

-795948505 | 2025-03-09T12:32:25.943205

MySQL X Protocol

Products

Pricing

Contact Us

139.162.116.125

Last Seen: 2025-03-13

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

21 / tcp -1793481107 | 2025-03-13T03:01:25.802500

22 / tcp 445658110 | 2025-03-10T18:31:18.303533

OpenSSH8.4p1 Debian 5+deb11u1

80 / tcp 0 | 2025-03-13T13:28:04.720946

Hashes

lighttpd1.4.59

3306 / tcp 1505956244 | 2025-03-13T11:39:18.120857

MySQL8.0.29-21

33060 / tcp -795948505 | 2025-03-09T12:32:25.943205

MySQL X Protocol

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

-1793481107 | 2025-03-13T03:01:25.802500

22 / tcp

445658110 | 2025-03-10T18:31:18.303533

80 / tcp

0 | 2025-03-13T13:28:04.720946

3306 / tcp

1505956244 | 2025-03-13T11:39:18.120857

33060 / tcp

-795948505 | 2025-03-09T12:32:25.943205