GeneralInformation

Hostnames	ssd.jhoenicke.de electron.jochen-hoenicke.de electrum.jochen-hoenicke.de muehle.jochen-hoenicke.de xn--mhle-0ra.jochen-hoenicke.de
Domains	jhoenicke.de jochen-hoenicke.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2022-41556

A resource leak in gw_backend.c in lighttpd 1.4.56 through 1.4.66 could lead to a denial of service (connection-slot exhaustion) after a large amount of anomalous TCP behavior by clients. It is related to RDHUP mishandling in certain HTTP/1.1 chunked situations. Use of mod_fastcgi is, for example, affected. This is fixed in 1.4.67.

CVE-2022-22707

4.3In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.

OpenPorts

22 80 443 8333

1691054837 | 2024-05-07T17:27:49.790574

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCoPQVW25s6AbWQTGVvNwKQhjMsLNxwu99ZpGJHqhzuIN/d
b69CT6PRFv+yW/XGU1eVoWUDTykuCANVnqfRBquJbiMEhxAW98onODZHQ5n066f5vowf6RWNjIHf
qEZKIqG6WbfOU7j13f8f77508EAhMnpldFgjfwvH9zrnFrhk5v62ECKbtr7Rarn3XJqud1G/VWVF
tUDbhUx6TD9lmF0LfZVlBIf77ZioScRRpJ1b++Lno1aYKRbuwjan2P9oTwwPwt1mQjWJoK7cz0lq
00M3ZcYHyckZGfk8lx4aW+5f2JB5ZduuxnWd1xecWCvkY6CDDaoBpmoUH9xmw59nguGRkrAmTTik
MGx8/3HHeOxB9y6nBuDi7Jiq+ORVCXPzc7+f0Rr5IAR0AeTnuxwom9Fjkge/ETr8fI6NFLYfmamV
2I8GlXKAk4wJkHs2RF8Kw9xhOrWJX8ndJTY9l3+Iv3DNym3y5T4+T1vLlqqTI2qxXfj5jAp8488J
NWXDpDH9vsc=
Fingerprint: 35:b4:e1:0d:1c:b0:81:a0:fe:e3:8e:5d:a0:dd:f9:4b

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1328002655 | 2024-05-08T00:21:48.173701

80 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
ETag: "333174697"
Last-Modified: Mon, 24 Jan 2022 12:20:06 GMT
Content-Length: 122
Date: Wed, 08 May 2024 00:21:48 GMT
Server: lighttpd/1.4.59

1328002655 | 2024-05-07T22:02:58.767317

443 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
ETag: "333174697"
Last-Modified: Mon, 24 Jan 2022 12:20:06 GMT
Content-Length: 122
Date: Tue, 07 May 2024 22:02:58 GMT
Server: lighttpd/1.4.59

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:06:49:f7:ee:e1:00:5f:7e:14:f1:c5:66:8e:1e:75:e0:37
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 14 23:32:56 2024 GMT
            Not After : Jun 12 23:32:55 2024 GMT
        Subject: CN=ssd.jhoenicke.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c3:a7:fc:b5:2f:d2:8e:57:48:bb:64:44:5a:49:
                    70:bd:b1:44:c7:75:d0:eb:27:8e:e5:ba:90:af:ac:
                    ce:09:db:15:32:05:55:c5:53:2c:20:55:49:d4:ea:
                    cb:1e:bb:41:48:57:52:4c:e0:79:16:71:ab:f2:03:
                    9d:f1:dc:ce:50:38:e3:2d:0f:49:8c:e1:14:2b:ff:
                    a8:22:41:f8:2b:e5:75:81:ef:c2:5f:1e:37:80:1b:
                    61:e3:19:b9:b2:84:72:9b:3b:7a:cf:00:a6:21:fa:
                    9f:b2:2c:ce:c0:51:0c:65:c4:58:ee:36:0f:73:ca:
                    49:86:ed:b1:13:c7:cc:eb:e1:44:c1:e9:62:68:68:
                    cd:5d:e9:bd:0a:88:07:4c:08:3a:e8:9b:42:45:cc:
                    d4:8b:14:7e:f7:bf:93:94:20:26:39:fb:ce:44:7e:
                    aa:ab:05:79:fe:d3:73:31:5f:09:52:82:ff:9a:e1:
                    01:9e:72:34:e6:e8:b0:35:90:52:e6:1b:d6:b2:10:
                    02:f6:a1:cc:a1:36:ad:6d:8a:bd:37:4e:c4:cc:63:
                    dc:99:d2:24:d8:e5:b4:39:49:9e:bc:0d:93:25:8a:
                    55:26:48:83:e7:e4:3c:ab:b4:c0:3f:b4:49:86:45:
                    87:99:d2:cd:cb:1c:fc:c5:4c:30:64:16:6e:7f:38:
                    3b:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                A5:F0:10:86:69:2A:6F:CE:15:9B:D1:52:BD:48:78:ED:9B:F7:F7:FF
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:electron.jochen-hoenicke.de, DNS:electrum.jochen-hoenicke.de, DNS:muehle.jochen-hoenicke.de, DNS:ssd.jhoenicke.de, DNS:xn--mhle-0ra.jochen-hoenicke.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 15 00:32:56.387 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:8B:4F:74:47:61:73:2F:77:01:8F:9D:
                                8F:39:42:77:6C:17:69:42:98:97:8B:A2:95:0B:A1:1C:
                                B9:3A:2E:2D:D1:02:21:00:D1:0C:3C:A0:C7:9C:52:E6:
                                DE:E5:09:BD:5A:EA:C1:62:2E:36:BA:73:82:E6:FD:43:
                                0A:51:47:75:D5:74:0F:C3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 15 00:32:56.481 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:DB:0B:BA:97:3F:F1:29:8E:4D:B2:CA:
                                B6:97:40:3E:04:3F:B1:09:CF:CE:E5:00:0B:78:C8:78:
                                D6:54:C5:F5:83:02:21:00:D1:72:72:AF:FB:39:BA:4E:
                                01:4C:AE:24:84:95:3C:12:97:9B:A4:B5:9D:86:20:0C:
                                D8:20:D7:E0:F8:0C:6B:4A
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        62:28:dc:80:1a:31:35:ca:fe:a3:8a:16:cc:01:07:c7:bf:1e:
        0b:76:15:f5:ef:52:78:1d:29:7e:65:b1:9d:b5:b8:f2:66:65:
        2e:44:54:7b:25:fb:65:4b:55:e5:1b:f6:52:36:b6:8c:71:fb:
        8d:92:11:38:a6:91:e3:1a:5e:5a:ae:3e:f3:f5:33:df:b9:a6:
        27:84:b4:b7:66:79:3f:c7:d6:1a:32:1f:b2:36:67:35:cd:bb:
        7a:c3:12:f6:89:bb:01:73:cc:85:ea:2c:9e:81:ee:f2:d2:fe:
        96:1b:cf:e9:64:2d:65:99:dd:6d:9d:46:b9:2d:cf:b6:47:6e:
        e8:80:29:2d:2f:9b:78:32:74:af:8e:2a:96:f6:9c:41:f3:ed:
        ea:5c:89:0a:0a:39:57:93:e2:c0:30:4b:f4:8f:4b:34:a7:73:
        7b:ad:48:8c:b1:80:04:b1:4d:86:0c:24:9f:d6:28:dc:d2:65:
        e3:5d:8d:2a:ee:9c:eb:eb:ca:7c:40:84:52:0c:09:d4:13:8e:
        61:34:3a:46:ae:49:c2:7d:e6:59:92:80:2f:b0:24:6a:2e:d3:
        8b:e9:23:79:61:15:cd:f7:10:a9:b0:b0:e2:ca:98:ee:c3:3f:
        45:08:a7:80:1f:da:d8:3c:af:6c:f5:2e:a4:68:14:c4:52:e7:
        f8:1e:b6:c6

-671894717 | 2024-05-07T18:22:33.365982

8333 / tcp

Bitcoin:
  User-Agent: /Satoshi:26.0.0/
  Version: 70016
  Lastblock: 842474

176.9.150.253

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1691054837 | 2024-05-07T17:27:49.790574
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1328002655 | 2024-05-08T00:21:48.173701
80 / tcp

lighttpd1.4.59

1328002655 | 2024-05-07T22:02:58.767317
443 / tcp

lighttpd1.4.59

-671894717 | 2024-05-07T18:22:33.365982
8333 / tcp

/Satoshi:26.0.0/70016

Products

Pricing

Contact Us

176.9.150.253

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1691054837 | 2024-05-07T17:27:49.790574 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1328002655 | 2024-05-08T00:21:48.173701 80 / tcp

lighttpd1.4.59

1328002655 | 2024-05-07T22:02:58.767317 443 / tcp

lighttpd1.4.59

-671894717 | 2024-05-07T18:22:33.365982 8333 / tcp

/Satoshi:26.0.0/70016

Products

Pricing

Contact Us

1691054837 | 2024-05-07T17:27:49.790574
22 / tcp

1328002655 | 2024-05-08T00:21:48.173701
80 / tcp

1328002655 | 2024-05-07T22:02:58.767317
443 / tcp

-671894717 | 2024-05-07T18:22:33.365982
8333 / tcp