192.222.236.172

Regular View Raw Data
Last Seen: 2024-12-26

GeneralInformation

Hostnames 192-222-236-172.qc.cable.ebox.net
Domains ebox.net 
Country Canada
City Montréal
Organization EBOX
ISP EBOX
ASN AS1403

WebTechnologies

JavaScript libraries

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2022
CVE-2022-22707
5.9In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.
2019
CVE-2019-11072
9.8lighttpd before 1.4.54 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a malicious HTTP GET request, as demonstrated by mishandling of /%2F? in burl_normalize_2F_to_slash_fix in burl.c. NOTE: The developer states "The feature which can be abused to cause the crash is a new feature in lighttpd 1.4.50, and is not enabled by default. It must be explicitly configured in the config file (e.g. lighttpd.conf). Certain input will trigger an abort() in lighttpd when that feature is enabled. lighttpd detects the underflow or realloc() will fail (in both 32-bit and 64-bit executables), also detected in lighttpd. Either triggers an explicit abort() by lighttpd. This is not exploitable beyond triggering the explicit abort() with subsequent application exit.

OpenPorts

-1639469145 | 2024-12-24T19:55:02.713950
  
80 / tcp
370902100 | 2024-12-26T14:49:52.668430
  
6881 / udp
1936749279 | 2024-12-25T04:12:02.511186
  
7547 / tcp



Contact Us

Shodan ® - All rights reserved