GeneralInformation

Hostnames	mulder.link vps-ac0c8a72.vps.ovh.net
Domains	mulder.link ovh.net
Country	France
City	Strasbourg
Organization	OVH SAS
ISP	OVH SAS
ASN	AS16276

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 53 80 443 3306 8000 8001 8002

22 / tcp

353616486 | 2025-04-04T21:58:47.027957

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDSFESQWUH+qnOmWWCrfCf0j+o/C9NT5btpJcdEOeTM4kWj
RhLJ41m0ul6IDd/2Av4J33kKa7M3PFsYw8fsXjSlioXPTtE5vp1wkXxR8EPneMtuSOaWKMxL0Vti
/Xp/Zo6COxwR5p5Gj4pNBkYF7IE1rUX8QHfhqiEyFZakRck5FdI2TL9RDWwHWwHGxiUN25a8sQNf
8F/4qpJDW8VxHfIJf4K6YufinFIpYR6YWehNI5I52ZPjjf8llXm084awphbgDgeuFcDYxRKMWA68
1pnEDbFDZZSp/W3d5LHeSC2N4bmYuLOX2K6fOboODxoQ4C0636fXJ7hyIQlP720VieGQ3FajqSGw
j8wXzqmddH+l+LJb8S2P4N9hk+b9dYSIjORrxofoX1nHk8/iWF6EscADlJp6nq7EdS3X8Zeztoap
GjNGh0fIaarR/dIJZy7daTwylQLphJzCMC6A6UN80rzW3uu5/IcStYnKzGLmxx3BdTWW7z8kExPG
fakzOODIVjU=
Fingerprint: 9a:db:85:ac:b2:51:0d:29:aa:46:b8:89:36:6c:08:6a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

-158149353 | 2025-03-29T15:57:34.169475

Hashes

hash

325220721

http.dom_hash

1239617585

http.html_hash

-158149353

http.server_hash

-1786963686

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Sat, 29 Mar 2025 15:57:34 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

Vulnerabilities

443 / tcp

-2059870913 | 2025-03-31T23:44:52.590770

Hashes

hash

-1735695263

http.dom_hash

-220894803

http.html_hash

-2059870913

http.server_hash

-1786963686

http.title_hash

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 31 Mar 2025 23:44:52 GMT
Content-Type: text/html
Content-Length: 77
Last-Modified: Sun, 02 Jul 2023 19:20:30 GMT
Connection: keep-alive
ETag: "64a1cdfe-4d"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:48:55:fb:b3:6c:b9:c9:a9:01:09:39:88:a1:c9:1b:12:f7
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Feb 24 14:47:01 2025 GMT
            Not After : May 25 14:47:00 2025 GMT
        Subject: CN=mulder.link
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ac:53:9a:a4:d1:8c:3c:42:fe:18:d7:e9:98:6d:
                    c1:40:09:c9:2e:7e:ce:e4:75:88:98:5e:10:5f:e3:
                    c6:9c:dc:f8:7f:7c:d4:25:42:8b:90:0f:a2:2f:17:
                    e8:ca:3e:52:10:91:db:94:6b:18:aa:fa:af:66:27:
                    91:44:a8:a9:2b:0d:7e:e3:1f:bb:67:fb:09:ec:b9:
                    f5:8b:30:f8:1c:62:0c:10:2c:13:bd:c3:68:f7:f0:
                    43:ef:7a:b7:69:de:fe:bf:a6:06:f3:48:71:6a:6d:
                    83:a0:06:76:11:99:63:0f:1e:79:7e:82:fc:46:4c:
                    d4:d5:9c:96:7f:f7:65:90:41:83:7a:01:ad:bf:7d:
                    80:df:7c:42:b0:ff:d0:d3:d7:87:e5:f4:eb:46:a9:
                    c2:fb:1c:80:41:1d:b1:9f:e7:7b:54:a9:87:e8:50:
                    d5:4a:7b:16:ed:22:5c:0b:f4:50:5a:5e:2e:3a:25:
                    48:b6:39:ce:54:2d:e5:4a:c1:9e:2e:45:10:b8:30:
                    48:24:55:ed:3f:cf:f6:8f:97:0e:26:7d:02:69:49:
                    66:a9:98:5a:a8:56:b1:7f:60:96:c3:97:f0:dd:bc:
                    07:55:b9:aa:11:57:9e:3c:28:19:06:9a:68:48:e7:
                    72:2e:32:e1:11:fb:14:5f:3c:9f:4a:e7:90:c3:b6:
                    04:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                21:64:32:1B:CE:47:17:B1:E3:60:E9:FA:4D:B0:CD:82:27:8F:54:5B
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:mulder.link
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Feb 24 15:45:31.554 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4A:C6:D3:A6:DD:CC:4E:5C:FD:B3:69:3F:
                                ED:DE:4F:17:51:9C:58:C4:B3:8E:EE:80:B7:FC:FB:ED:
                                7F:6A:0C:84:02:20:13:15:AE:24:BC:23:C5:B1:AD:1D:
                                7F:8D:FF:2B:2F:31:B7:CC:A7:92:D6:0A:90:41:3C:60:
                                3A:42:D7:35:05:89
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Feb 24 15:45:31.585 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:24:E5:8B:AB:3A:61:B8:AC:F6:9A:3E:70:
                                DE:F4:B6:03:E8:E8:7C:5D:C6:09:74:B2:32:07:D3:37:
                                75:CC:9C:9C:02:21:00:84:49:9F:8C:3E:79:3C:F1:1E:
                                68:7D:D3:37:5A:3C:F8:34:93:3D:96:9F:72:ED:92:93:
                                F0:2B:DC:BB:9E:B5:3E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        78:e8:a2:1b:05:34:7c:87:13:93:0a:bc:7f:a4:f2:0c:6a:05:
        55:ca:7b:2e:f9:9c:6c:3b:3b:bd:06:ad:4f:c8:06:71:2c:ba:
        10:dc:5f:44:3c:66:79:0b:71:88:bd:87:3b:fe:6e:22:94:55:
        e6:0b:1e:79:b1:3c:9a:23:75:85:9f:d9:9d:27:c5:53:bd:fd:
        60:9c:88:1c:f4:99:06:cb:8a:48:a9:6a:87:5c:34:7d:6a:0d:
        36:06:55:31:74:29:dc:30:96:ba:91:03:22:d4:bf:7b:97:bf:
        80:21:e2:07:3d:8b:7f:8b:a1:49:96:87:f0:93:ec:3e:85:8d:
        94:7d:0d:84:68:8c:8d:86:94:17:7c:67:b8:97:0b:08:9d:45:
        01:7f:23:d4:9e:bf:93:3c:b0:aa:81:e7:97:14:18:86:6e:05:
        8b:a8:14:04:15:fa:5a:cb:cc:c4:3c:34:67:38:e8:33:7f:1e:
        90:4a:b6:89:44:f7:94:6e:e3:6e:9d:6c:48:f9:1b:4d:cf:c6:
        db:df:8d:9c:f5:af:fe:49:8c:89:90:99:e1:a9:43:e4:33:de:
        8e:9c:4a:1d:eb:3c:e9:b9:25:6e:04:ac:3f:ad:a3:76:12:43:
        5c:da:59:76:b6:ed:19:e3:8f:f4:73:03:0e:61:65:46:a6:b8:
        ce:e0:ac:10

Vulnerabilities

3306 / tcp

859825684 | 2025-04-07T15:42:03.787497

MariaDB:
  Protocol Version: 10
  Version: 10.5.28-MariaDB-0+deb11u1
  Capabilities: 63486
  Server Language: 45
  Server Status: 2
  Extended Server Capabilities: 33279
  Authentication Plugin: mysql_native_password

8000 / tcp

-878524667 | 2025-04-09T02:00:50.020495

HTTP/1.1 302 FOUND
Content-Length: 253
Content-Type: text/html; charset=utf-8
Date: Wed, 09 Apr 2025 02:00:50 GMT
Location: https://mulder.link/weather/login
Server: waitress

<!doctype html>
<html lang=en>
<title>Redirecting...</title>
<h1>Redirecting...</h1>
<p>You should be redirected automatically to the target URL: <a href="https://mulder.link/weather/login">https://mulder.link/weather/login</a>. If not, click the link.

8001 / tcp

-1295395955 | 2025-04-08T08:53:34.526999

Hashes

hash

1703170040

http.dom_hash

-105024478

http.html_hash

-1295395955

http.server_hash

73614668

http.title_hash

109182747

HTTP/1.1 200 OK
Content-Length: 646
Content-Type: text/html; charset=utf-8
Date: Tue, 08 Apr 2025 08:53:34 GMT
Server: waitress

8002 / tcp

-956478869 | 2025-04-08T11:59:48.194256

HTTP/1.1 302 FOUND
Content-Length: 215
Content-Type: text/html; charset=utf-8
Date: Tue, 08 Apr 2025 11:59:48 GMT
Location: /dressup/login
Server: waitress

<!doctype html>
<html lang=en>
<title>Redirecting...</title>
<h1>Redirecting...</h1>
<p>You should be redirected automatically to the target URL: <a href="/dressup/login">/dressup/login</a>. If not, click the link.

5.196.14.77

Last Seen: 2025-04-09

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

353616486 | 2025-04-04T21:58:47.027957

OpenSSH8.4p1 Debian 5+deb11u4

80 / tcp

-158149353 | 2025-03-29T15:57:34.169475

Hashes

nginx1.18.0

443 / tcp

-2059870913 | 2025-03-31T23:44:52.590770

Hashes

nginx1.18.0

3306 / tcp

859825684 | 2025-04-07T15:42:03.787497

MariaDB10.5.28-MariaDB-0+deb11u1

8000 / tcp

-878524667 | 2025-04-09T02:00:50.020495

8001 / tcp

-1295395955 | 2025-04-08T08:53:34.526999

Hashes

8002 / tcp

-956478869 | 2025-04-08T11:59:48.194256

Products

Pricing

Contact Us

5.196.14.77

Last Seen: 2025-04-09

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

22 / tcp 353616486 | 2025-04-04T21:58:47.027957

OpenSSH8.4p1 Debian 5+deb11u4

80 / tcp -158149353 | 2025-03-29T15:57:34.169475

Hashes

nginx1.18.0

443 / tcp -2059870913 | 2025-03-31T23:44:52.590770

Hashes

nginx1.18.0

3306 / tcp 859825684 | 2025-04-07T15:42:03.787497

MariaDB10.5.28-MariaDB-0+deb11u1

8000 / tcp -878524667 | 2025-04-09T02:00:50.020495

8001 / tcp -1295395955 | 2025-04-08T08:53:34.526999

Hashes

8002 / tcp -956478869 | 2025-04-08T11:59:48.194256

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

353616486 | 2025-04-04T21:58:47.027957

80 / tcp

-158149353 | 2025-03-29T15:57:34.169475

443 / tcp

-2059870913 | 2025-03-31T23:44:52.590770

3306 / tcp

859825684 | 2025-04-07T15:42:03.787497

8000 / tcp

-878524667 | 2025-04-09T02:00:50.020495

8001 / tcp

-1295395955 | 2025-04-08T08:53:34.526999

8002 / tcp

-956478869 | 2025-04-08T11:59:48.194256