GeneralInformation

Hostnames	84-112-16-204.cable.dynamic.surfer.at
Domains	surfer.at
Country	Austria
City	Vienna
Organization	Magenta Telekom
ISP	T-Mobile Austria GmbH
ASN	AS8412

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443 8448

22 / tcp

-1968411446 | 2025-03-22T20:37:33.718111

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQCqRp1uGVIRK0BXxQmAyIaACSATe/ICKxrr3MfbwC5QEPTd
8UILzycQm3HIXXZa21x8Dz9/rKQPi9ZGiq3P1PA9O62RtzXtIQDXiHmXy1wWR77IQXEk3as7e94O
+2AyINndcEJVbcYNRWjY8IbrrcwDtvFiIXWP2LtpdLQu9TzRU3bu41SWsOm8C46bOZKlvmJELPSD
GAuepUshcfJAA42dR1naCbkkalRnD+IYFYjPPfQJlJtRXY5/7MaIZgUPNzca2zKBsNNEibuwROXt
0zeBBEKpTLia+OJyarZlynFMoIpEdwa+F6VfkMfDHrqk9ry6SjBwiAkW7DW9fam64dyj
Fingerprint: ed:3f:dc:d3:05:fe:c2:a8:ed:89:17:87:c0:cf:ae:14

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

1145805942 | 2025-03-20T02:56:34.065917

Hashes

hash

-1551167352

http.dom_hash

-1254167262

http.html_hash

1145805942

http.server_hash

-1786963686

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 20 Mar 2025 02:56:33 GMT
Content-Type: text/html
Content-Length: 274
Last-Modified: Wed, 18 Oct 2017 19:41:01 GMT
Connection: keep-alive
ETag: "59e7ae4d-112"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

Vulnerabilities

443 / tcp

1145805942 | 2025-03-26T03:04:37.389435

Hashes

hash

172131791

http.dom_hash

-1254167262

http.html_hash

1145805942

http.server_hash

-1786963686

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Wed, 26 Mar 2025 03:04:27 GMT
Content-Type: text/html
Content-Length: 274
Last-Modified: Wed, 18 Oct 2017 19:41:01 GMT
Connection: keep-alive
ETag: "59e7ae4d-112"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            85:79:2f:9d:8d:12:c3:ee
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=AT, ST=Some-State, O=Lalala Snakeoil!
        Validity
            Not Before: Feb 23 23:48:13 2017 GMT
            Not After : Feb 23 23:48:13 2018 GMT
        Subject: C=AT, ST=Some-State, O=Lalala Snakeoil!
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f9:4c:5e:57:bb:96:e8:ce:60:6b:47:a9:f3:32:
                    fa:0f:63:e2:79:6c:39:bb:f6:7d:ae:8d:7e:6b:16:
                    23:9d:10:18:1f:63:7c:59:72:fe:5c:7e:3a:8d:a5:
                    fa:d7:df:da:32:d2:88:97:c3:8e:24:d3:d9:03:fd:
                    a6:f6:72:8a:ad:64:6d:87:9d:a5:84:4a:83:7a:71:
                    9d:ef:ea:98:0b:20:a7:c6:e6:9c:db:1b:b3:19:2e:
                    d2:76:7d:32:38:07:b8:02:12:79:e9:7a:bb:0d:8d:
                    c8:f3:5e:15:91:f6:d8:e2:40:ae:df:b4:9e:6c:81:
                    d2:37:a6:da:f7:d1:1b:50:f0:b5:87:bb:d1:6b:aa:
                    16:b9:1f:0a:3f:a2:e0:39:9a:10:ee:dd:15:50:bf:
                    08:7a:6e:e3:32:96:4b:ad:ef:8a:e1:15:e3:5a:1f:
                    4a:3f:6b:3e:41:fb:1b:7f:03:ee:59:a7:ec:23:e8:
                    c9:d5:cb:60:49:43:68:f0:a2:8e:98:8b:61:ec:6a:
                    61:4e:a6:ee:9c:78:19:54:d1:68:11:87:86:8a:f9:
                    df:41:a9:52:67:46:9c:86:f4:ad:f5:1b:4d:5e:a2:
                    06:9e:49:41:a3:1f:fc:80:ad:8c:18:0d:67:e8:ae:
                    c0:54:1c:96:d3:23:df:e0:0f:51:c9:2e:5b:df:5d:
                    b6:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                61:00:AE:27:B1:93:BD:2F:6D:4E:54:C9:44:55:6D:63:A9:F0:75:C7
            X509v3 Authority Key Identifier: 
                61:00:AE:27:B1:93:BD:2F:6D:4E:54:C9:44:55:6D:63:A9:F0:75:C7
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9f:76:c4:75:87:f5:82:a8:4d:ae:57:c6:81:8d:01:a2:2c:85:
        39:6e:20:a0:96:56:73:1d:b5:1a:66:10:f0:02:4a:b1:36:1a:
        8f:26:69:a8:11:de:cb:d2:87:b7:51:1f:c5:a4:f2:23:18:3a:
        c3:f6:dc:b1:61:65:d2:39:4d:40:e1:26:09:e3:38:40:89:c2:
        ce:82:08:cc:d7:14:b2:55:f9:94:01:5c:80:a6:13:e9:7f:53:
        a1:1d:45:20:84:d7:ad:e4:08:1e:b8:3b:db:09:4b:83:14:75:
        ad:35:ee:47:9f:03:d5:05:44:dd:c9:3a:45:4f:ff:f9:3c:d7:
        92:27:73:18:0c:7b:0f:59:02:58:10:05:ea:7c:61:01:41:18:
        8b:83:4b:5b:b4:d2:9f:e3:0e:05:be:88:29:10:62:8b:e6:63:
        31:28:cb:e3:82:f5:ab:61:b7:14:fd:fa:44:cd:65:59:91:9b:
        4c:dd:7f:58:5c:b9:b3:b8:f4:c1:90:f1:99:17:d5:81:2e:f3:
        f0:02:8f:2d:b1:b2:97:5d:f6:07:c9:59:38:78:72:5a:ce:51:
        7a:7e:4f:d5:ac:d6:f0:b1:a7:e3:10:cf:51:41:a9:63:95:4c:
        bb:c0:33:3d:13:4a:ae:39:b2:36:17:8e:df:c7:6b:b3:b5:d7:
        c4:27:67:24

Vulnerabilities

8448 / tcp

2128602611 | 2025-03-16T00:00:20.017928

Hashes

hash

1744721990

http.dom_hash

1678420308

http.html_hash

2128602611

http.server_hash

-1786963686

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0
Date: Sat, 15 Mar 2025 23:59:31 GMT
Content-Type: text/html
Content-Length: 657
Connection: close

Vulnerabilities

84.112.16.204

Last Seen: 2025-03-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

-1968411446 | 2025-03-22T20:37:33.718111

OpenSSH8.4p1 Debian 5+deb11u4

80 / tcp

1145805942 | 2025-03-20T02:56:34.065917

Hashes

nginx1.18.0

443 / tcp

1145805942 | 2025-03-26T03:04:37.389435

Hashes

nginx1.18.0

8448 / tcp

2128602611 | 2025-03-16T00:00:20.017928

Hashes

nginx1.18.0

Products

Pricing

Contact Us

84.112.16.204

Last Seen: 2025-03-26

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Port 8448 Latest CVSS

OpenPorts

22 / tcp -1968411446 | 2025-03-22T20:37:33.718111

OpenSSH8.4p1 Debian 5+deb11u4

80 / tcp 1145805942 | 2025-03-20T02:56:34.065917

Hashes

nginx1.18.0

443 / tcp 1145805942 | 2025-03-26T03:04:37.389435

Hashes

nginx1.18.0

8448 / tcp 2128602611 | 2025-03-16T00:00:20.017928

Hashes

nginx1.18.0

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

-1968411446 | 2025-03-22T20:37:33.718111

80 / tcp

1145805942 | 2025-03-20T02:56:34.065917

443 / tcp

1145805942 | 2025-03-26T03:04:37.389435

8448 / tcp

2128602611 | 2025-03-16T00:00:20.017928