GeneralInformation

Hostnames	v2202311211066246009.hotsrv.de pihole.sivakumar.ch
Domains	hotsrv.de sivakumar.ch
Country	Austria
City	Vienna
Organization	powered by ANX
ISP	netcup GmbH
ASN	AS197540

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

53 80 443 28080

-27732661 | 2024-04-26T03:51:46.684397

53 / tcp

dnsmasq-pi-hole-v2.89-9461807
Recursion: enabled

-27732661 | 2024-04-25T13:56:45.546640

53 / udp

dnsmasq-pi-hole-v2.89-9461807
Recursion: enabled

-949720558 | 2024-04-26T14:02:18.449751

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 26 Apr 2024 14:02:18 GMT
Content-Type: text/html
Content-Length: 341
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:0c:4e:2c:65:32:7d:8b:47:ef:67:0d:14:d0:7b:90:1c:6d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 12 11:33:39 2024 GMT
            Not After : Jun 10 11:33:38 2024 GMT
        Subject: CN=pihole.sivakumar.ch
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e4:13:3e:c2:53:c0:fb:40:df:aa:8f:0c:ee:6b:
                    19:bb:be:10:fa:3a:c9:6c:d1:81:59:7a:cc:08:12:
                    93:35:1c:de:d7:aa:e9:9c:a4:e5:4b:e3:05:d9:84:
                    5a:06:a4:da:bb:88:cc:23:b0:c4:93:07:31:86:fa:
                    fe:2c:9c:e1:4c:cf:33:c8:b0:53:7a:3b:2a:25:be:
                    d5:69:53:e4:bd:e4:48:6f:76:bf:bf:b2:8f:af:ad:
                    39:12:7a:e0:38:ae:c3:b0:6c:b1:78:76:e9:d5:05:
                    c2:be:0c:30:19:b2:b2:5b:12:52:10:ee:2e:fd:29:
                    58:57:6e:80:d2:71:dd:dc:03:cf:7f:39:67:c6:85:
                    f8:cb:e2:23:e8:cd:8a:ed:7b:39:13:b7:93:a0:74:
                    74:ae:45:57:5e:fb:e9:28:b8:90:91:e0:44:ba:ea:
                    09:22:2a:c5:79:04:7d:57:c2:c5:6c:e5:a6:20:19:
                    5c:68:db:89:59:73:ea:49:52:85:3b:0b:f2:3f:c2:
                    04:fe:4c:09:ab:6a:dd:aa:a5:fa:de:f8:95:b3:8b:
                    a9:9d:7d:2c:8e:14:07:14:bb:60:e4:80:c7:0d:e1:
                    d6:60:64:22:7c:44:6e:f0:d4:3d:7d:92:36:5b:ce:
                    d8:d2:75:9f:29:38:46:05:78:ff:eb:7e:51:b8:60:
                    8c:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                1C:66:07:E4:22:F0:E4:8F:37:35:6A:51:56:ED:3C:3B:74:D3:2F:3C
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:pihole.sivakumar.ch
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 12 12:33:39.821 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:85:48:81:15:52:7E:77:66:94:5A:15:
                                0E:D1:41:B6:F9:30:22:DF:FF:3A:99:F9:6D:6A:9D:2A:
                                EA:D5:13:52:9E:02:20:29:CD:70:90:F3:97:3A:26:BD:
                                0A:0C:32:D5:16:6D:6B:02:52:54:E5:40:4A:70:3D:AF:
                                B8:D6:3A:5B:F6:AE:D6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 12 12:33:39.888 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:4A:2C:45:33:1E:94:45:22:51:3E:21:44:
                                EA:0F:E6:1E:1C:C6:56:F5:0E:D4:DF:1F:50:D1:EC:A3:
                                66:65:7D:73:02:21:00:A0:A9:71:F6:B0:71:4F:15:BA:
                                45:F0:1E:DB:5D:CD:9E:C6:2E:F9:47:F7:A6:E0:06:07:
                                11:F2:CE:FF:6F:69:50
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        66:6e:5d:a6:1e:f6:54:34:82:36:51:8a:4d:a0:2a:ca:5a:e4:
        9c:74:77:90:aa:3d:df:06:2b:0e:7d:7f:de:7e:24:77:7e:24:
        e9:4f:82:bc:9f:16:dc:10:24:9c:4f:ad:db:72:46:63:ab:1c:
        53:0c:21:04:b0:58:4e:83:48:78:68:79:c7:50:1f:cd:6f:ae:
        9e:5e:de:8c:91:16:ea:c5:65:d8:3e:31:19:2d:1f:32:0d:ab:
        14:98:b8:40:00:2b:fa:b3:20:e2:c1:6f:6f:59:65:e8:a6:7c:
        d5:93:4f:aa:cb:1e:e6:7a:3a:7c:fe:9c:49:08:53:af:28:fd:
        b6:a0:91:c7:73:5a:d0:bc:8d:93:9f:36:f2:5d:92:70:fb:fe:
        13:f0:8d:3a:c0:ab:22:71:fa:b5:35:f5:8f:09:1a:aa:94:a4:
        69:88:c8:fd:69:e3:23:3e:d9:e8:f4:56:c2:f9:5d:1d:9a:83:
        8e:8a:d7:1a:ef:a3:47:6b:7f:61:a2:f5:36:7f:68:d8:46:a8:
        6f:b4:c3:9b:7e:b9:a7:96:70:b7:2a:d2:9e:43:ab:9f:52:c6:
        28:2c:ba:7f:04:6d:a4:29:57:06:5a:4e:10:cf:e7:1e:4b:97:
        d1:ff:ef:68:28:16:07:0d:48:38:61:2f:34:e0:6d:31:19:d6:
        80:3e:0d:8b

-1805918493 | 2024-05-01T23:51:54.879252

28080 / tcp

HTTP/1.1 200 OK
Date: Wed, 01 May 2024 23:51:54 GMT
Server: Apache/2.4.57 (Debian)
X-Powered-By: PHP/8.2.16
Link: <https://vk-recht.ch/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

456d
<!doctype html>
<html lang="de-CH">

<head>
	<meta charset="UTF-8">
	<meta name="viewport" content="width=device-width, initial-scale=1">
	<link rel="profile" href="https://gmpg.org/xfn/11">

	<title>Vladimir Kovacevic  &#8211; Rechtsanwalt </title>
<meta name='robots' content='max-image-preview:large' />
<link rel='dns-prefetch' href='//vk-recht.ch' />
<link rel='dns-prefetch' href='//fonts.googleapis.com' />
<link rel="alternate" type="application/rss+xml" title="Vladimir Kovacevic  &raquo; Feed" href="https://vk-recht.ch/feed/" />
<link rel="alternate" type="application/rss+xml" title="Vladimir Kovacevic  &raquo; Kommentar-Feed" href="https://vk-recht.ch/comments/feed/" />
<script>
window._wpemojiSettings = {"baseUrl":"https:\/\/s.w.org\/images\/core\/emoji\/14.0.0\/72x72\/","ext":".png","svgUrl":"https:\/\/s.w.org\/images\/core\/emoji\/14.0.0\/svg\/","svgExt":".svg","source":{"concatemoji":"http:\/\/vk-recht.ch\/wp-includes\/js\/wp-emoji-release.min.js?ver=6.4.3"}};
/*! This file is auto-generated */
!function(i,n){var o,s,e;function c(e){try{var t={supportTests:e,timestamp:(new Date).valueOf()};sessionStorage.setItem(o,JSON.stringify(t))}catch(e){}}function p(e,t,n){e.clearRect(0,0,e.canvas.width,e.canvas.height),e.fillText(t,0,0);var t=new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data),r=(e.clearRect(0,0,e.canvas.width,e.canvas.height),e.fillText(n,0,0),new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data));return t.every(function(e,t){return e===r[t]})}function u(e,t,n){switch(t){case"flag":return n(e,"\ud83c\udff3\ufe0f\u200d\u26a7\ufe0f","\ud83c\udff3\ufe0f\u200b\u26a7\ufe0f")?!1:!n(e,"\ud83c\uddfa\ud83c\uddf3","\ud83c\uddfa\u200b\ud83c\uddf3")&&!n(e,"\ud83c\udff4\udb40\udc67\udb40\udc62\udb40\udc65\udb40\udc6e\udb40\udc67\udb40\udc7f","\ud83c\udff4\u200b\udb40\udc67\u200b\udb40\udc62\u200b\udb40\udc65\u200b\udb40\udc6e\u200b\udb40\udc67\u200b\udb40\udc7f");case"emoji":return!n(e,"\ud83e\udef1\ud83c\udffb\u200d\ud83e\udef2\ud83c\udfff","\ud83e\udef1\ud83c\udffb\u200b\ud83e\udef2\ud83c\udfff")}return!1}function f(e,t,n){var r="undefined"!=typeof WorkerGlobalScope&&self instanceof WorkerGlobalScope?new OffscreenCanvas(300,150):i.createElement("canvas"),a=r.getContext("2d",{willReadFrequently:!0}),o=(a.textBaseline="top",a.font="600 32px Arial",{});return e.forEach(function(e){o[e]=t(a,e,n)}),o}function t(e){var t=i.createElement("script");t.src=e,t.defer=!0,i.head.appendChild(t)}"undefined"!=typeof Promise&&(o="wpEmojiSettingsSupports",s=["flag","emoji"],n.supports={everything:!0,everythingExceptFlag:!0},e=new Promise(function(e){i.addEventListener("DOMContentLoaded",e,{once:!0})}),new Promise(function(t){var n=function(){try{var e=JSON.parse(sessionStorage.getItem(o));if("object"==typeof e&&"number"==typeof e.timestamp&&(new Date).valueOf()<e.timestamp+604800&&"object"==typeof e.supportTests)return e.supportTests}catch(e){}return null}();if(!n){if("undefined"!=typeof Worker&&"undefined"!=typeof OffscreenCanvas&&"undefined"!=typeof URL&&URL.createObjectURL&&"undefined"!=typeof Blob)try{var e="postMessage("+f.toString()+"("+[JSON.stringify(s),u.toString(),p.toString()].join(",")+"));",r=new Blob([e],{type:"text/javascript"}),a=new Worker(URL.createObjectURL(r),{name:"wpTestEmojiSupports"});return void(a.onmessage=function(e){c(n=e.data),a.terminate(),t(n)})}catch(e){}c(n=f(s,u,p))}t(n)}).then(function(e){for(var t in e)n.supports[t]=e[t],n.supports.everything=n.supports.everything&&n.supports[t],"flag"!==t&&(n.supports.everythingExceptFlag=n.supports.everythingExceptFlag&&n.supports[t]);n.supports.everythingExceptFlag=n.supports.everythingExceptFlag&&!n.supports.flag,n.DOMReady=!1,n.readyCallback=function(){n.DOMReady=!0}}).then(function(){return e}).then(function(){var e;n.supports.everything||(n.readyCallback(),(e=n.source||{}).concatemoji?t(e.concatemoji):e.wpemoji&&e.twemoji&&(t(e.twemoji),t(e.wpemoji)))}))}((window,document),window._wpemojiSettings);
</script>
<style id='wp-emoji-styles-inline-css'>

	img.wp-smiley, img.emoji {
		display: inline !important;
		border: none !important;
		box-shadow: none !important;
		height: 1em !important;
		width: 1em !important;
		margin: 0 0.07em !important;
		vertical-align: -0.1em !important;
		background: none !important;
		padding: 0 !important;
	}
</style>
<link rel='stylesheet' id='wp-block-library-css' href='http://vk-recht.ch/wp-includes/css/dist/block-library/style.min.css?ver=6.4.3' media='all' />
<style id='wp-block-library-theme-inline-css'>
.wp-block-audio figcaption{color:#555;font-size:13px;text-align:center}.is-dark-theme .wp-block-audio figcaption{color:hsla(0,0%,100%,.65)}.wp-block-audio{margin:0 0 1em}.wp-block-code{border:1px solid #ccc;border-radius:4px;font-family:Menlo,Consolas,monaco,monospace;padding:.8em 1em}.wp-block-embed figcaption{color:#

152.53.33.234

Last Seen: 2024-05-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-27732661 | 2024-04-26T03:51:46.684397
53 / tcp

-27732661 | 2024-04-25T13:56:45.546640
53 / udp

-949720558 | 2024-04-26T14:02:18.449751
443 / tcp

nginx1.18.0

-1805918493 | 2024-05-01T23:51:54.879252
28080 / tcp

Products

Pricing

Contact Us

152.53.33.234

Last Seen: 2024-05-01

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-27732661 | 2024-04-26T03:51:46.684397 53 / tcp

-27732661 | 2024-04-25T13:56:45.546640 53 / udp

-949720558 | 2024-04-26T14:02:18.449751 443 / tcp

nginx1.18.0

-1805918493 | 2024-05-01T23:51:54.879252 28080 / tcp

Products

Pricing

Contact Us

-27732661 | 2024-04-26T03:51:46.684397
53 / tcp

-27732661 | 2024-04-25T13:56:45.546640
53 / udp

-949720558 | 2024-04-26T14:02:18.449751
443 / tcp

-1805918493 | 2024-05-01T23:51:54.879252
28080 / tcp