GeneralInformation

Country	Russian Federation
City	Moscow
Organization	RU-CENTER
ISP	JSC "RU-CENTER"
ASN	AS48287

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2019(1)

CVE-2019-0190

7.5A bug exists in the way mod_ssl handled client renegotiations. A remote attacker could send a carefully crafted request that would cause mod_ssl to enter a loop leading to a denial of service. This bug can be only triggered with Apache HTTP Server version 2.4.37 when using OpenSSL version 1.1.1 or later, due to an interaction in changes to handling of renegotiation attempts.

2009(4)

CVE-2009-3767

4.3libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4, and possibly other versions, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.

CVE-2009-3766

6.8mutt_ssl.c in mutt 1.5.16 and other versions before 1.5.19, when OpenSSL is used, does not verify the domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

CVE-2009-3765

6.8mutt_ssl.c in mutt 1.5.19 and 1.5.20, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.

CVE-2009-1390

6.8Mutt 1.5.19, when linked against (1) OpenSSL (mutt_ssl.c) or (2) GnuTLS (mutt_ssl_gnutls.c), allows connections when only one TLS certificate in the chain is accepted instead of verifying the entire chain, which allows remote attackers to spoof trusted servers via a man-in-the-middle attack.

OpenPorts

22 80 443 2020 3000 5432 5435 8082

22 / tcp

-944829551 | 2025-03-22T11:32:58.770460

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCwvBRKhVoUbKb5xtTqsdtDlxNEdSN1UF6LfZGsWpD0Ae8+
gHLPXlHv3Sy4tvWb8YBy1jAY5cBL0xCl14OrgA7EXLi+w+SO2dIyTn0eVHgM+c6wKbp4WJbzuaNH
t7MHbCrZyV/AF1EgkgLMYlP/s/1ADKU0Pbu3+/U5b15n3GYzXGP6Knm8c0FDy3Gu2tVfw42WLw9s
sZkFD08iVfP3TTX2GIDz2i8xDuZTl8dq+TFPyZ/2m3GpqbvaTm9WGsivn7PSJChyqIS0nGYNxwDN
JqNWpM0CRV0xlGtJsLuRLvc4S5rzyBBk54A70YAIVCGfveqedk0ig8HOJoIr36TMxCYC0VP60gvw
75ReqZEcKMKHGQs9jKlu+GkLOX35MtlXoLPaIW3UduyUBjMI3/Gsp50i927sYeUKIC/DKkGV2tR3
GhDSr9s/a77ZiZHK/L7jXpq5wID9/xlh0om5EI7qVb75b3sbtZQr8+3b/MqkSyVgesIbh/jLt4Tw
OF8WeK7YwCs=
Fingerprint: 76:7f:46:ea:3c:f0:b6:b9:40:3a:32:21:50:c9:68:2e

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp521
	ecdh-sha2-nistp384
	ecdh-sha2-nistp256
	diffie-hellman-group-exchange-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes256-gcm@openssh.com
	aes128-gcm@openssh.com
	aes256-ctr
	aes192-ctr
	aes128-ctr

MAC Algorithms:
	hmac-sha2-512-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-512
	hmac-sha2-256
	umac-128@openssh.com

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

629933257 | 2025-03-25T13:35:01.488226

Hashes

hash

-110304096

http.dom_hash

-2006505642

http.html_hash

629933257

HTTP/1.1 301 Moved Permanently
Location: https://89.111.132.198/
Date: Tue, 25 Mar 2025 13:35:01 GMT
Content-Length: 17

443 / tcp

731197476 | 2025-03-26T06:44:32.211196

Hashes

hash

320974106

http.dom_hash

-2006505642

http.html_hash

731197476

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Wed, 26 Mar 2025 06:44:32 GMT
Content-Length: 19

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            13:97:9b:10:4b:e1:91:88:5d:40:48:b1:e9:d2:35:33
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=TRAEFIK DEFAULT CERT
        Validity
            Not Before: Mar 25 20:17:20 2025 GMT
            Not After : Mar 25 20:17:20 2026 GMT
        Subject: CN=TRAEFIK DEFAULT CERT
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d5:53:0b:52:bb:33:ca:26:3e:96:fc:d6:12:87:
                    5b:a9:6e:cf:a2:48:ff:22:8e:4c:01:63:a6:d3:b1:
                    4c:0e:4b:d4:e1:f6:04:8f:f9:aa:50:d9:93:f5:e7:
                    66:9a:3e:5f:90:a6:6f:ae:7d:bf:2f:aa:0d:a9:93:
                    c2:28:da:54:79:f3:dd:8f:f7:aa:42:7d:47:e8:65:
                    62:1e:92:b4:6e:31:32:ba:fd:83:c9:e1:2c:d7:95:
                    9f:8c:b8:80:54:85:f5:cc:7c:2c:75:99:cb:c6:ea:
                    38:bf:e1:39:fb:38:3f:b6:03:89:a1:c8:f2:39:bf:
                    fe:96:34:8a:82:39:1b:00:a2:fd:be:1d:88:12:d0:
                    61:be:fb:f6:92:5f:e9:2f:f5:3a:28:9b:9d:1f:8e:
                    d6:5c:07:75:58:e4:90:b2:6f:1b:6c:83:34:f4:fd:
                    db:6f:d9:15:de:d3:92:ca:54:a1:ed:74:16:5e:18:
                    14:27:3f:de:c3:da:c9:10:da:3a:ec:2e:64:49:6d:
                    f2:35:bc:7a:fc:56:05:81:cc:27:7b:e0:8b:41:b9:
                    f0:83:de:44:64:58:75:49:e7:10:8f:8d:dd:e2:fe:
                    26:ef:17:d1:6a:55:cf:c7:f1:78:6b:a2:d1:44:29:
                    bf:77:0d:99:b8:c6:fd:56:eb:22:28:43:8a:f5:6a:
                    8f:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment, Data Encipherment, Key Agreement
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:75d7dce4d6883025fb8ab5c7b5b6c2c3.c61f80581db0ee3a628791367180bc54.traefik.default
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        44:b3:94:52:84:29:d5:54:4b:8d:bc:dd:8c:d2:8b:e2:19:ca:
        67:a0:b6:eb:14:09:15:21:f2:36:2f:8c:d6:b1:ad:21:7f:4f:
        04:f4:02:0f:cf:b3:a9:d6:b4:3c:4f:15:4d:49:90:22:e0:98:
        2f:ce:55:f5:45:e3:d4:5a:34:9d:30:2d:97:a3:41:09:67:c8:
        f6:c0:fe:fe:5a:cd:92:83:3d:19:86:17:77:20:60:25:ae:2b:
        67:bc:4b:e3:7d:e1:e8:58:f1:96:a3:32:50:94:28:ea:27:30:
        ed:17:ea:fd:82:81:31:d5:3d:15:fd:c8:aa:ea:63:cf:dd:c0:
        92:50:de:dc:33:da:48:8b:f7:f6:82:7f:a1:3a:74:2f:e2:07:
        7c:15:de:97:56:18:4b:2f:87:a3:bf:14:a6:82:12:0c:85:a9:
        4d:3c:7e:d7:11:01:6b:42:ed:10:3f:9a:c9:c0:25:ce:cc:ae:
        af:04:0e:cb:1c:e4:e6:fc:a7:21:60:21:d8:27:22:61:7d:3e:
        6e:0e:21:98:4c:eb:69:64:09:7c:e1:ca:d0:b6:79:0d:58:8a:
        e8:98:8f:e6:7f:38:df:d9:c7:08:5d:35:9f:f0:e5:a5:78:0b:
        c6:e4:28:57:b1:3b:ed:24:f7:7c:b5:23:33:c6:b0:16:e7:9d:
        8b:67:12:92

2020 / tcp

-1714804253 | 2025-04-05T03:09:42.636899

Hashes

hash

139994393

http.dom_hash

-2006505642

http.html_hash

-1714804253

HTTP/1.0 200 OK
Connection: close
Content-Type: text/plain
Content-Length: 85


MongoDB Server Information
Authentication partially enabled
{
    "storageEngines": [
        "devnull", 
        "wiredTiger"
    ], 
    "buildEnvironment": {
        "distarch": "x86_64", 
        "cc": "/opt/mongodbtoolchain/v4/bin/gcc: gcc (GCC) 11.3.0", 
        "cppdefines": "SAFEINT_USE_INTRINSICS 0 PCRE2_STATIC ABSL_ALLOCATOR_NOTHROW NDEBUG _XOPEN_SOURCE 700 _GNU_SOURCE _FORTIFY_SOURCE 2 ABSL_FORCE_ALIGNED_ACCESS BOOST_ENABLE_ASSERT_DEBUG_HANDLER BOOST_FILESYSTEM_NO_CXX20_ATOMIC_REF BOOST_LOG_NO_SHORTHAND_NAMES BOOST_LOG_USE_NATIVE_SYSLOG BOOST_LOG_WITHOUT_THREAD_ATTR BOOST_MATH_NO_LONG_DOUBLE_MATH_FUNCTIONS BOOST_SYSTEM_NO_DEPRECATED BOOST_THREAD_USES_DATETIME BOOST_THREAD_VERSION 5", 
        "cxxflags": "-Woverloaded-virtual -Wpessimizing-move -Wno-maybe-uninitialized -fsized-deallocation -std=c++20", 
        "linkflags": "-Wl,--fatal-warnings -B/opt/mongodbtoolchain/v4/bin -gdwarf-5 -pthread -Wl,-z,now -fuse-ld=lld -fstack-protector-strong -gdwarf64 -Wl,--build-id -Wl,--hash-style=gnu -Wl,-z,noexecstack -Wl,--warn-execstack -Wl,-z,relro -Wl,--compress-debug-sections=none -Wl,-z,origin -Wl,--enable-new-dtags", 
        "ccflags": "-Werror -include mongo/platform/basic.h -ffp-contract=off -fasynchronous-unwind-tables -g2 -Wall -Wsign-compare -Wno-unknown-pragmas -Winvalid-pch -gdwarf-5 -fno-omit-frame-pointer -fno-strict-aliasing -O2 -march=sandybridge -mtune=generic -mprefer-vector-width=128 -Wno-unused-local-typedefs -Wno-unused-function -Wno-deprecated-declarations -Wno-unused-const-variable -Wno-unused-but-set-variable -Wno-missing-braces -Wno-psabi -fstack-protector-strong -gdwarf64 -Wa,--nocompress-debug-sections -fno-builtin-memcmp -Wimplicit-fallthrough=5", 
        "target_arch": "x86_64", 
        "distmod": "ubuntu2404", 
        "target_os": "linux", 
        "cxx": "/opt/mongodbtoolchain/v4/bin/g++: g++ (GCC) 11.3.0"
    }, 
    "ok": 1.0, 
    "sysInfo": "deprecated", 
    "modules": [], 
    "openssl": {
        "compiled": "OpenSSL 3.0.13 30 Jan 2024", 
        "running": "OpenSSL 3.0.13 30 Jan 2024"
    }, 
    "javascriptEngine": "mozjs", 
    "version": "8.0.5", 
    "allocator": "tcmalloc-google", 
    "versionArray": [
        8, 
        0, 
        5, 
        0
    ], 
    "debug": false, 
    "maxBsonObjectSize": 16777216, 
    "bits": 64, 
    "gitVersion": "cb9e2e5e552ee39dea1e39d7859336456d0c9820"
}

Vulnerabilities

1 4

3000 / tcp

335303649 | 2025-04-04T04:17:51.250283

Hashes

hash

-436018510

http.dom_hash

-1399918778

http.html_hash

335303649

HTTP/1.1 302 Found
Cache-Control: no-store
Content-Type: text/html; charset=utf-8
Location: /grafana/login
Set-Cookie: redirect_to=%2Fgrafana%2Flogin; Path=/grafana; HttpOnly; SameSite=Lax
X-Content-Type-Options: nosniff
X-Frame-Options: deny
X-Xss-Protection: 1; mode=block
Date: Fri, 04 Apr 2025 04:17:51 GMT
Content-Length: 37

5432 / tcp

-726790289 | 2025-04-10T12:11:27.850456

PostgreSQL
fe_sendauth: no password supplied

5435 / tcp

-1053998914 | 2025-03-20T16:58:17.903622

E\x00\x00\x00\x8fSFATAL\x00VFATAL\x00C0A000\x00Munsupported frontend protocol 65363.19778: server supports 3.0 to 3.0\x00Fbackend_startup.c\x00L679\x00RProcessStartupPacket\x00\x00

8082 / tcp

731197476 | 2025-03-20T17:02:52.643575

Hashes

hash

712007033

http.dom_hash

-2006505642

http.html_hash

731197476

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Thu, 20 Mar 2025 17:02:42 GMT
Content-Length: 19

89.111.132.198

Last Seen: 2025-04-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

22 / tcp

-944829551 | 2025-03-22T11:32:58.770460

OpenSSH8.4p1 Debian 5+deb11u2

80 / tcp

629933257 | 2025-03-25T13:35:01.488226

Hashes

443 / tcp

731197476 | 2025-03-26T06:44:32.211196

Hashes

2020 / tcp

-1714804253 | 2025-04-05T03:09:42.636899

Hashes

MongoDB8.0.5

3000 / tcp

335303649 | 2025-04-04T04:17:51.250283

Hashes

5432 / tcp

-726790289 | 2025-04-10T12:11:27.850456

PostgreSQL12.14 - 12.18

5435 / tcp

-1053998914 | 2025-03-20T16:58:17.903622

8082 / tcp

731197476 | 2025-03-20T17:02:52.643575

Hashes

Products

Pricing

Contact Us

89.111.132.198

Last Seen: 2025-04-10

Tags:

GeneralInformation

Vulnerabilities All ports Port 2020 Latest CVSS

OpenPorts

22 / tcp -944829551 | 2025-03-22T11:32:58.770460

OpenSSH8.4p1 Debian 5+deb11u2

80 / tcp 629933257 | 2025-03-25T13:35:01.488226

Hashes

443 / tcp 731197476 | 2025-03-26T06:44:32.211196

Hashes

2020 / tcp -1714804253 | 2025-04-05T03:09:42.636899

Hashes

MongoDB8.0.5

3000 / tcp 335303649 | 2025-04-04T04:17:51.250283

Hashes

5432 / tcp -726790289 | 2025-04-10T12:11:27.850456

PostgreSQL12.14 - 12.18

5435 / tcp -1053998914 | 2025-03-20T16:58:17.903622

8082 / tcp 731197476 | 2025-03-20T17:02:52.643575

Hashes

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

-944829551 | 2025-03-22T11:32:58.770460

80 / tcp

629933257 | 2025-03-25T13:35:01.488226

443 / tcp

731197476 | 2025-03-26T06:44:32.211196

2020 / tcp

-1714804253 | 2025-04-05T03:09:42.636899

3000 / tcp

335303649 | 2025-04-04T04:17:51.250283

5432 / tcp

-726790289 | 2025-04-10T12:11:27.850456

5435 / tcp

-1053998914 | 2025-03-20T16:58:17.903622

8082 / tcp

731197476 | 2025-03-20T17:02:52.643575