GeneralInformation

Hostnames	web.hostpoint.ch sl272.web.hostpoint.ch
Domains	hostpoint.ch
Country	Switzerland
City	Zürich
Organization	Hostpoint AG, Switzerland
ISP	Hostpoint AG
ASN	AS29097

WebTechnologies

JavaScript libraries

jQuery

Modernizr

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(1)

CVE-2025-26466

5.9A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to an uncontrolled increase in memory consumption on the server side. Consequently, the server may become unavailable, resulting in a denial of service attack.

OpenPorts

21 22 80 443

21 / tcp

-978434404 | 2025-03-18T14:28:55.562588

220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 2 of 300 allowed.
220-Local time is now 15:28. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
530 Login authentication failed
214-The following SITE commands are recognized
 ALIAS
 CHMOD
 IDLE
 UTIME
214 Pure-FTPd - http://pureftpd.org/
211-Extensions supported:
 UTF8
 EPRT
 IDLE
 MDTM
 SIZE
 MFMT
 REST STREAM
 MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
 MLSD
 PRET
 AUTH TLS
 PBSZ
 PROT
 TVFS
 ESTA
 PASV
 EPSV
 ESTP
211 End.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            26:53:51:2f:65:4e:31:cb:d9:f0:b4:77:d8:9d:fa:1b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Organization Validation Secure Server CA
        Validity
            Not Before: Jul 22 00:00:00 2024 GMT
            Not After : Aug 22 23:59:59 2025 GMT
        Subject: C=CH, ST=Sankt Gallen, O=Hostpoint AG, CN=*.web.hostpoint.ch
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ab:43:3c:79:95:c7:ac:34:9c:f4:7b:87:de:4f:
                    45:91:07:42:01:46:b8:9e:ae:86:67:ec:30:3a:92:
                    5d:b2:d3:4d:f9:cc:17:21:f1:5f:d8:66:b7:26:6a:
                    64:cd:d5:8a:3b:46:50:89:a7:dd:04:51:c6:90:5c:
                    a6:73:bf:7d:1a:61:f0:d3:9e:ec:f4:ed:a9:af:f9:
                    2f:f6:29:f7:e9:d2:f0:4d:96:9c:0c:6d:f5:2e:6d:
                    4d:ae:33:83:28:7e:62:79:47:01:55:3a:c1:e6:0e:
                    d0:2c:2f:8a:72:9c:cf:89:49:9e:85:8d:2f:89:6a:
                    eb:8d:01:5e:12:ab:e2:b1:6f:fb:b7:d6:5d:99:6e:
                    af:38:ae:48:68:35:b1:95:34:9c:3f:4e:65:4e:d8:
                    a5:2a:78:c0:cc:6b:8c:cf:e8:3a:8a:b0:a1:dd:b1:
                    01:c4:0f:d8:ec:fa:cd:58:c5:c8:7c:64:7e:0a:ee:
                    68:f5:9b:31:3d:17:12:8a:26:4c:cd:0c:07:44:47:
                    49:bf:bb:d8:34:97:c1:8d:1d:74:0e:75:93:b7:68:
                    92:ca:74:43:02:35:72:1b:68:1d:d4:68:17:65:11:
                    32:22:a3:80:fc:da:8d:b2:aa:4a:6f:98:06:c8:f2:
                    5e:01:4f:bd:19:bf:ac:25:e8:d0:ab:08:0f:dd:fa:
                    ca:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                17:D9:D6:25:27:67:F9:31:C2:49:43:D9:30:36:44:8C:6C:A9:4F:EB
            X509v3 Subject Key Identifier: 
                28:72:19:6D:95:CE:19:B1:40:20:6F:06:EA:B7:54:E2:1F:12:EE:19
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.web.hostpoint.ch, DNS:web.hostpoint.ch
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
                                3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
                    Timestamp : Jul 22 11:59:51.258 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8B:94:28:3E:EE:A6:6A:A8:84:97:15:
                                B7:6C:51:0E:27:0A:8F:93:47:5C:51:57:B4:8C:67:91:
                                72:4D:84:EA:1C:02:20:27:46:2B:33:26:13:7C:36:37:
                                42:E4:40:89:97:FF:01:39:BF:2E:F8:7B:BE:69:1D:8F:
                                97:E5:A8:11:22:3D:59
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
                                47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
                    Timestamp : Jul 22 11:59:51.151 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B5:35:D3:CE:BB:4C:83:5B:B0:54:6F:
                                44:0F:26:ED:12:43:C6:21:94:AA:2F:01:1E:E5:26:B4:
                                5B:17:17:48:70:02:21:00:FD:FB:F8:8C:C2:3D:89:B1:
                                2F:C3:23:4E:28:CA:2D:88:C3:B1:E7:AE:1B:3E:F2:24:
                                0E:C2:66:33:98:0D:01:B8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Jul 22 11:59:51.151 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F1:FD:20:51:5B:40:1D:C9:80:39:FC:
                                77:13:B0:60:02:04:00:36:7A:17:FA:9E:33:0E:FE:9B:
                                52:2E:B1:A4:BE:02:21:00:D5:F1:BF:C3:BE:AE:91:C1:
                                92:78:39:A0:F0:91:1D:03:C6:93:C0:1E:EE:41:50:A2:
                                22:F8:79:B8:3C:08:07:C9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        38:83:40:7b:4e:db:0d:d0:1b:78:ea:de:68:ef:6d:4c:82:db:
        ab:7f:28:dc:99:6d:ae:e6:ae:bd:2d:c7:4e:61:ef:39:91:05:
        fa:22:e3:71:a6:22:62:ea:a6:cc:a5:a1:b3:28:61:4e:7e:33:
        76:c3:25:ce:05:45:36:ec:aa:e7:8a:03:e9:c5:d3:7b:50:6e:
        a4:9f:fd:ee:af:09:e5:06:9d:d8:d7:15:d0:40:e6:d0:99:aa:
        02:19:97:4d:4c:0a:e5:6c:b0:ee:33:83:16:9d:2f:81:76:46:
        e2:e8:cc:02:fb:86:5b:df:f7:96:73:83:92:b4:b6:9f:1a:02:
        87:59:b2:19:6f:7a:9c:46:52:df:d9:3c:bc:18:5a:f5:11:de:
        65:7f:40:e3:5b:35:e1:ce:16:4b:77:d2:0d:43:4a:c1:ea:e3:
        67:1e:7a:22:ce:89:ca:c4:fc:c9:a1:d3:d2:66:73:75:5d:7d:
        e3:5a:a0:cd:d4:7d:24:d9:77:4b:ed:70:ad:f1:27:ff:16:0a:
        c5:cd:3a:30:d6:90:9d:b2:1e:12:a7:d4:1d:a3:71:ad:df:a0:
        5d:bc:c0:ce:f5:6d:68:35:3f:26:38:c6:ef:43:68:82:a3:d4:
        d4:b4:db:a3:e7:ab:0f:b2:50:92:3e:09:ff:5c:24:30:4e:7c:
        8d:25:8a:8b

22 / tcp

1411242517 | 2025-03-09T23:17:10.731516

SSH-2.0-OpenSSH_9.7 FreeBSD-20240806
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDTwaKc2rd8JxKKHYXSbMaabbrwLi2tvUyNPEPTFDSRPsV4
LgquNaU3fV0W5iNUcjJ/OY6RdbyGrdwqm/WcxtFpxwm+fd2wu8FYP7wIu0HORvMBDchbzfBhEPo4
x44ItG32qWAqjxoze8WT/Ky6Jv4elUckyVYVSSW1RP5irifTkt6jDeQwcVUhW8Lr3HPfHsvYK730
oVJgUap7Kq3xpvmD+B0PWzhgJPWAsBe1RxNV9AmVgygqjfNSIELLq9Jbzi6Yg2bj/gwNjKwMxa/P
ybJQKCeEFnD6AGZ/hkJFqMCLFuQ3Nd4rCW2eRSzunGWm9/pMxVFjvP5pi2h75OxNFix6Zs8se6AH
CjFA+oF2fwCz2kG4QOCv/OjLwbtqJkTa2CPoVTQws4etIW9zOX8kL2Rnf6PlbHOPlVy47cR+OVQU
lJMhgO+8+ZAh7KqzHd2TAnd5yo65l7X9KZBs2ze6VyVcuNWh47YDKNhBleJbmHh+hJ/9XwqPQENg
f52b6a70bmU=
Fingerprint: f4:d4:52:cb:90:a4:eb:c2:a9:cf:5b:36:da:f9:45:4a

Kex Algorithms:
	sntrup761x25519-sha512@openssh.com
	curve25519-sha256@libssh.org
	diffie-hellman-group-exchange-sha256
	ext-info-s
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	rsa-sha2-512-cert-v01@openssh.com
	rsa-sha2-256-cert-v01@openssh.com
	ssh-rsa-cert-v01@openssh.com
	ssh-ed25519
	ssh-ed25519-cert-v01@openssh.com

Encryption Algorithms:
	aes256-gcm@openssh.com
	aes128-gcm@openssh.com
	aes256-ctr
	aes192-ctr
	aes128-ctr

MAC Algorithms:
	hmac-sha2-512-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-512
	hmac-sha2-256
	umac-128@openssh.com

Compression Algorithms:
	none
	zlib@openssh.com

Vulnerabilities

80 / tcp

951121787 | 2025-03-19T05:55:21.569317

Hashes

hash

763952494

http.dom_hash

1003723270

http.favicon.hash

55290367

http.html_hash

951121787

http.robots_hash

-1316422146

http.server_hash

869690771

Seite nicht verfügbar

HTTP/1.1 500 Internal Server Error
Date: Wed, 19 Mar 2025 05:55:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

443 / tcp

951121787 | 2025-03-29T12:25:50.282666

Hashes

hash

-1145623108

http.dom_hash

1003723270

http.favicon.hash

55290367

http.html_hash

951121787

http.robots_hash

-1316422146

http.server_hash

869690771

Seite nicht verfügbar

HTTP/1.1 500 Internal Server Error
Date: Sat, 29 Mar 2025 12:25:49 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            26:53:51:2f:65:4e:31:cb:d9:f0:b4:77:d8:9d:fa:1b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Organization Validation Secure Server CA
        Validity
            Not Before: Jul 22 00:00:00 2024 GMT
            Not After : Aug 22 23:59:59 2025 GMT
        Subject: C=CH, ST=Sankt Gallen, O=Hostpoint AG, CN=*.web.hostpoint.ch
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ab:43:3c:79:95:c7:ac:34:9c:f4:7b:87:de:4f:
                    45:91:07:42:01:46:b8:9e:ae:86:67:ec:30:3a:92:
                    5d:b2:d3:4d:f9:cc:17:21:f1:5f:d8:66:b7:26:6a:
                    64:cd:d5:8a:3b:46:50:89:a7:dd:04:51:c6:90:5c:
                    a6:73:bf:7d:1a:61:f0:d3:9e:ec:f4:ed:a9:af:f9:
                    2f:f6:29:f7:e9:d2:f0:4d:96:9c:0c:6d:f5:2e:6d:
                    4d:ae:33:83:28:7e:62:79:47:01:55:3a:c1:e6:0e:
                    d0:2c:2f:8a:72:9c:cf:89:49:9e:85:8d:2f:89:6a:
                    eb:8d:01:5e:12:ab:e2:b1:6f:fb:b7:d6:5d:99:6e:
                    af:38:ae:48:68:35:b1:95:34:9c:3f:4e:65:4e:d8:
                    a5:2a:78:c0:cc:6b:8c:cf:e8:3a:8a:b0:a1:dd:b1:
                    01:c4:0f:d8:ec:fa:cd:58:c5:c8:7c:64:7e:0a:ee:
                    68:f5:9b:31:3d:17:12:8a:26:4c:cd:0c:07:44:47:
                    49:bf:bb:d8:34:97:c1:8d:1d:74:0e:75:93:b7:68:
                    92:ca:74:43:02:35:72:1b:68:1d:d4:68:17:65:11:
                    32:22:a3:80:fc:da:8d:b2:aa:4a:6f:98:06:c8:f2:
                    5e:01:4f:bd:19:bf:ac:25:e8:d0:ab:08:0f:dd:fa:
                    ca:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                17:D9:D6:25:27:67:F9:31:C2:49:43:D9:30:36:44:8C:6C:A9:4F:EB
            X509v3 Subject Key Identifier: 
                28:72:19:6D:95:CE:19:B1:40:20:6F:06:EA:B7:54:E2:1F:12:EE:19
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.2
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.web.hostpoint.ch, DNS:web.hostpoint.ch
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
                                3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
                    Timestamp : Jul 22 11:59:51.258 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8B:94:28:3E:EE:A6:6A:A8:84:97:15:
                                B7:6C:51:0E:27:0A:8F:93:47:5C:51:57:B4:8C:67:91:
                                72:4D:84:EA:1C:02:20:27:46:2B:33:26:13:7C:36:37:
                                42:E4:40:89:97:FF:01:39:BF:2E:F8:7B:BE:69:1D:8F:
                                97:E5:A8:11:22:3D:59
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
                                47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
                    Timestamp : Jul 22 11:59:51.151 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B5:35:D3:CE:BB:4C:83:5B:B0:54:6F:
                                44:0F:26:ED:12:43:C6:21:94:AA:2F:01:1E:E5:26:B4:
                                5B:17:17:48:70:02:21:00:FD:FB:F8:8C:C2:3D:89:B1:
                                2F:C3:23:4E:28:CA:2D:88:C3:B1:E7:AE:1B:3E:F2:24:
                                0E:C2:66:33:98:0D:01:B8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Jul 22 11:59:51.151 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F1:FD:20:51:5B:40:1D:C9:80:39:FC:
                                77:13:B0:60:02:04:00:36:7A:17:FA:9E:33:0E:FE:9B:
                                52:2E:B1:A4:BE:02:21:00:D5:F1:BF:C3:BE:AE:91:C1:
                                92:78:39:A0:F0:91:1D:03:C6:93:C0:1E:EE:41:50:A2:
                                22:F8:79:B8:3C:08:07:C9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        38:83:40:7b:4e:db:0d:d0:1b:78:ea:de:68:ef:6d:4c:82:db:
        ab:7f:28:dc:99:6d:ae:e6:ae:bd:2d:c7:4e:61:ef:39:91:05:
        fa:22:e3:71:a6:22:62:ea:a6:cc:a5:a1:b3:28:61:4e:7e:33:
        76:c3:25:ce:05:45:36:ec:aa:e7:8a:03:e9:c5:d3:7b:50:6e:
        a4:9f:fd:ee:af:09:e5:06:9d:d8:d7:15:d0:40:e6:d0:99:aa:
        02:19:97:4d:4c:0a:e5:6c:b0:ee:33:83:16:9d:2f:81:76:46:
        e2:e8:cc:02:fb:86:5b:df:f7:96:73:83:92:b4:b6:9f:1a:02:
        87:59:b2:19:6f:7a:9c:46:52:df:d9:3c:bc:18:5a:f5:11:de:
        65:7f:40:e3:5b:35:e1:ce:16:4b:77:d2:0d:43:4a:c1:ea:e3:
        67:1e:7a:22:ce:89:ca:c4:fc:c9:a1:d3:d2:66:73:75:5d:7d:
        e3:5a:a0:cd:d4:7d:24:d9:77:4b:ed:70:ad:f1:27:ff:16:0a:
        c5:cd:3a:30:d6:90:9d:b2:1e:12:a7:d4:1d:a3:71:ad:df:a0:
        5d:bc:c0:ce:f5:6d:68:35:3f:26:38:c6:ef:43:68:82:a3:d4:
        d4:b4:db:a3:e7:ab:0f:b2:50:92:3e:09:ff:5c:24:30:4e:7c:
        8d:25:8a:8b

217.26.54.218

Last Seen: 2025-03-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

21 / tcp

-978434404 | 2025-03-18T14:28:55.562588

Pure-FTPd

22 / tcp

1411242517 | 2025-03-09T23:17:10.731516

OpenSSH9.7

80 / tcp

951121787 | 2025-03-19T05:55:21.569317

Hashes

Apache httpd

443 / tcp

951121787 | 2025-03-29T12:25:50.282666

Hashes

Apache httpd

Products

Pricing

Contact Us

217.26.54.218

Last Seen: 2025-03-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 22 Latest CVSS

OpenPorts

21 / tcp -978434404 | 2025-03-18T14:28:55.562588

Pure-FTPd

22 / tcp 1411242517 | 2025-03-09T23:17:10.731516

OpenSSH9.7

80 / tcp 951121787 | 2025-03-19T05:55:21.569317

Hashes

Apache httpd

443 / tcp 951121787 | 2025-03-29T12:25:50.282666

Hashes

Apache httpd

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

-978434404 | 2025-03-18T14:28:55.562588

22 / tcp

1411242517 | 2025-03-09T23:17:10.731516

80 / tcp

951121787 | 2025-03-19T05:55:21.569317

443 / tcp

951121787 | 2025-03-29T12:25:50.282666