GeneralInformation

Hostnames	125-253-12-45.ip4.superloop.au
Domains	superloop.au
Country	Australia
City	Melbourne
Organization	SUPERLOOP (AUSTRALIA) PTY LTD
ISP	Superloop
ASN	AS38195

WebTechnologies

JavaScript libraries

jQuery1.7.1

jQuery UI1.10.4

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.

OpenPorts

80 137 443 445 3389 8080

1778053952 | 2024-04-29T22:53:41.892738

80 / tcp

HTTP/1.1 200 OK
Content-Length: 7442
Content-Type: text/html
Date: Mon, 29 Apr 2024 22:53:40 GMT
Server: Kestrel
Accept-Ranges: bytes
ETag: "1d92e6d48182512"
Last-Modified: Sun, 22 Jan 2023 14:24:48 GMT
Vary: Accept-Encoding
X-Response-Time-ms: 0

-1903599176 | 2024-04-28T09:49:26.121563

137 / udp

NetBIOS Response:
  Server Name: SYNOLOGYROUTER
  MAC Address: 00:00:00:00:00:00
  Names:
    SYNOLOGYROUTER <0x0>
    SYNOLOGYROUTER <0x3>
    SYNOLOGYROUTER <0x20>
    MAUR-FAM <0x1e>
    MAUR-FAM <0x0>

-2109586747 | 2024-05-02T12:20:40.844036

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 02 May 2024 12:20:37 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Set-Cookie: iomega=732141775527937250; path=/; HttpOnly
Cache-Control: no-cache
Content-Length: 4386
Connection: close
Content-Type: text/html; charset=utf-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            cb:c1:7b:1b:8d:81:45:09
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=MA, L=Boston, O=LenovoEMC, CN=10.0.4.63, CN=novo.local., CN=novo
        Validity
            Not Before: Feb 13 12:37:45 2024 GMT
            Not After : Feb 12 12:37:45 2026 GMT
        Subject: C=US, ST=MA, L=Boston, O=LenovoEMC, CN=10.0.4.63, CN=novo.local., CN=novo
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b8:8e:38:d9:e8:28:64:d6:79:d5:a9:f5:f9:a4:
                    99:55:c8:fb:9d:20:83:c7:bf:d0:4d:7d:a1:f6:8c:
                    4a:c0:e3:cb:3c:30:e8:86:fd:e5:db:38:ad:b4:90:
                    7b:df:17:ce:e4:13:00:c1:13:02:cb:5e:8b:2d:5a:
                    21:6b:4c:24:62:14:98:9b:b4:59:af:40:3a:dd:40:
                    32:a9:ce:30:b7:b4:dc:4f:5e:b3:b9:a4:90:70:75:
                    98:34:d2:e2:5b:12:21:c1:5a:c8:ab:f2:d2:bc:3c:
                    50:49:a0:2d:fd:11:05:d7:6f:99:62:2a:4f:19:d6:
                    16:49:27:ec:da:59:b8:11:69:fd:c7:a7:69:4c:d5:
                    85:ce:53:eb:45:21:96:ec:19:e9:44:99:94:7f:b3:
                    77:f0:51:85:11:2a:1d:d6:66:ee:6d:99:c9:ef:07:
                    40:50:62:59:82:0f:54:47:ad:e0:8f:7f:d0:b0:6c:
                    5e:b8:98:31:df:bb:ad:f5:2b:d8:4a:4e:f7:8e:66:
                    33:0d:1e:f5:7a:b9:ee:35:e1:87:6d:11:a2:80:6e:
                    e5:ff:23:20:bf:c4:e2:4b:d6:99:24:12:8e:a1:fb:
                    12:8f:33:9d:5d:f2:02:12:fb:20:0c:b1:3a:b1:93:
                    1b:21:32:8c:29:6d:e2:66:ac:15:ee:45:27:f1:59:
                    ca:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Alternative Name: 
                IP Address:10.0.4.63, URI:http://novo.local., URI:http://novo
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7f:ff:7c:6b:40:45:74:ba:4d:03:06:ec:f3:b6:3b:c2:db:bd:
        a8:59:23:ab:16:5e:29:30:39:47:1c:c2:39:d7:fc:82:76:12:
        b5:d3:f3:83:9c:38:6b:62:ca:a3:ea:2e:15:35:1a:60:44:88:
        9b:7c:f7:66:1c:6c:ad:8e:52:09:fc:ea:8a:36:64:b3:12:6d:
        f6:67:3d:df:25:2b:df:09:8e:f2:99:26:70:98:e0:bf:79:4c:
        e6:1c:06:83:14:00:8b:37:c7:55:fa:36:ea:57:ee:e4:f4:5f:
        a8:c0:28:75:98:ea:10:66:83:50:19:2b:89:f0:55:42:fd:59:
        c3:e9:e0:fe:12:0b:a6:cb:97:0d:5a:ba:8e:b9:84:fa:2b:f6:
        8d:2d:81:76:e0:56:a2:4e:c5:ba:d3:1e:18:37:69:8b:b8:f6:
        a1:34:fc:b9:3c:76:24:1c:b7:a5:3b:3c:8c:59:fb:49:53:8c:
        c1:a5:6b:38:8a:01:79:99:13:71:ff:db:d4:56:f8:e5:0f:cd:
        39:23:70:f2:80:26:9c:6c:80:b6:4e:cf:ee:1a:f9:40:58:9d:
        7c:d3:a4:45:23:a1:e7:71:d6:73:c3:67:ba:54:09:ce:01:b8:
        f8:97:30:29:a5:b8:28:ef:4b:a4:9c:45:84:93:04:7b:ba:cc:
        47:6d:ae:a6

-176617153 | 2024-04-26T03:44:32.126191

445 / tcp

SMB Status:
  Authentication: enabled
  SMB Version: 1
  OS: Unix
  Software: Samba 3.6.24
  Capabilities: dfs, extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, nt-find, nt-smb, nt-status, raw-mode, rpc-remote-api, unicode, unix

-1093602806 | 2024-04-30T04:33:08.483167

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02/\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 11 (version 22H2)
  OS Build: 10.0.22621
  Target Name: MAURICE-ASUS
  NetBIOS Domain Name: MAURICE-ASUS
  NetBIOS Computer Name: MAURICE-ASUS
  DNS Domain Name: Maurice-Asus
  FQDN: Maurice-Asus

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            36:29:df:3a:c6:3e:1d:ad:45:3d:61:02:f0:bf:19:cf
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=Maurice-Asus
        Validity
            Not Before: Feb  5 19:14:53 2024 GMT
            Not After : Aug  6 19:14:53 2024 GMT
        Subject: CN=Maurice-Asus
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9b:34:fb:e8:8e:51:7e:2f:27:1c:84:16:8d:ba:
                    02:b2:78:be:9b:1e:73:91:2f:00:c7:0e:17:29:1b:
                    f5:6e:42:a6:0b:00:8d:75:89:79:f2:15:d3:15:d2:
                    1d:d9:2a:72:cc:48:05:e3:35:9b:d8:6f:94:8d:b5:
                    a5:3e:d0:b1:4a:8e:55:77:c9:64:18:d3:75:fd:a5:
                    a5:b7:a2:c6:e7:80:b8:ef:8c:0f:ae:c1:dc:1e:72:
                    51:43:81:0d:40:d6:7c:0e:fb:f8:2f:f8:33:d6:2d:
                    04:25:9e:c5:40:67:eb:c8:da:eb:0e:2d:4d:d7:61:
                    d8:f7:57:9b:b9:9f:9c:0a:da:fb:2a:b0:3a:d6:3b:
                    2e:ad:20:d2:ae:73:22:83:88:b2:70:d1:25:fe:a9:
                    0d:25:74:97:23:b4:7d:e6:1b:75:1e:a5:90:8d:8f:
                    de:44:3a:33:66:b1:ac:c9:01:c3:52:54:20:92:a5:
                    98:5c:6d:45:d3:de:77:9b:80:ed:7a:b7:70:9a:71:
                    35:38:0f:aa:d1:fa:e8:5b:e3:f1:5d:66:b5:97:b4:
                    42:c1:0a:e9:4c:bd:aa:b1:62:dc:ef:a4:f3:99:72:
                    7c:ee:ef:68:ba:d2:53:8e:95:31:0a:5b:c1:14:21:
                    a3:bc:79:9c:c6:dd:fe:65:ea:c1:0d:32:20:a9:e2:
                    21:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        68:ed:bd:57:fe:89:09:a0:91:b1:57:94:a0:b3:4d:c8:49:0d:
        01:a8:0b:f4:50:8e:5d:95:de:5c:ce:87:8c:3f:e4:d1:bf:6e:
        4e:28:87:9c:0c:f3:c8:bf:45:e6:1f:40:0f:e5:00:88:0e:63:
        82:fb:d7:46:40:61:b6:8f:32:4c:57:e2:49:87:97:bf:64:bb:
        85:a1:dd:41:0b:ed:9b:2e:c0:ed:41:5c:32:c5:d0:ed:a6:a3:
        14:d1:cc:7c:40:73:ae:f3:f3:6f:55:ce:a2:2a:51:0d:91:e5:
        b6:44:1d:00:53:c4:e4:8f:c8:79:43:2c:34:d2:27:f4:bc:5e:
        5e:0b:6a:7d:e3:2b:b9:47:e3:15:f5:d8:3a:1e:13:36:24:02:
        ba:9e:df:67:34:6e:01:80:ba:07:73:6b:b1:08:81:a7:e3:da:
        05:d4:18:55:20:9f:e4:90:e2:ab:d1:e3:61:69:b3:ee:51:47:
        50:9b:03:db:55:68:87:f0:50:fc:c7:b7:1b:f1:d8:5a:bc:cc:
        96:29:ee:67:b2:a7:c0:ff:36:ed:64:93:73:92:3f:4c:b2:86:
        32:9a:50:27:5f:d8:8a:02:e7:1a:9a:0d:8b:8e:9f:bd:3f:bb:
        0c:0c:c1:88:a5:08:65:f0:b6:43:bb:fb:bd:2f:65:29:dc:98:
        64:6a:2a:44

3995319 | 2024-05-02T02:40:37.196745

8080 / tcp

HTTP/1.1 200 OK
cache-control: no-store
connection: keep-alive
content-length: 1671
content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; script-src 'self' 'unsafe-inline'; object-src 'none'; form-action 'self'; frame-ancestors 'self';
content-type: text/html
cross-origin-opener-policy: same-origin
date: Thu, 02 May 2024 02:40:33 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block

125.253.12.45

Last Seen: 2024-05-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1778053952 | 2024-04-29T22:53:41.892738
80 / tcp

-1903599176 | 2024-04-28T09:49:26.121563
137 / udp

-2109586747 | 2024-05-02T12:20:40.844036
443 / tcp

Apache httpd

-176617153 | 2024-04-26T03:44:32.126191
445 / tcp

Samba3.6.24

-1093602806 | 2024-04-30T04:33:08.483167
3389 / tcp

Remote Desktop Protocol

3995319 | 2024-05-02T02:40:37.196745
8080 / tcp

Products

Pricing

Contact Us

125.253.12.45

Last Seen: 2024-05-02

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1778053952 | 2024-04-29T22:53:41.892738 80 / tcp

-1903599176 | 2024-04-28T09:49:26.121563 137 / udp

-2109586747 | 2024-05-02T12:20:40.844036 443 / tcp

Apache httpd

-176617153 | 2024-04-26T03:44:32.126191 445 / tcp

Samba3.6.24

-1093602806 | 2024-04-30T04:33:08.483167 3389 / tcp

Remote Desktop Protocol

3995319 | 2024-05-02T02:40:37.196745 8080 / tcp

Products

Pricing

Contact Us

1778053952 | 2024-04-29T22:53:41.892738
80 / tcp

-1903599176 | 2024-04-28T09:49:26.121563
137 / udp

-2109586747 | 2024-05-02T12:20:40.844036
443 / tcp

-176617153 | 2024-04-26T03:44:32.126191
445 / tcp

-1093602806 | 2024-04-30T04:33:08.483167
3389 / tcp

3995319 | 2024-05-02T02:40:37.196745
8080 / tcp