GeneralInformation

Hostnames	179-87-167-206.user.vivozap.com.br
Domains	vivozap.com.br
Country	Brazil
City	Rio de Janeiro
Organization	TELEFÔNICA BRASIL S.A
ISP	TELEFÔNICA BRASIL S.A
ASN	AS26599

WebTechnologies

Font scripts

JavaScript libraries

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2022-22707	4.3In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward plugin has a stack-based buffer overflow (4 bytes representing -1), as demonstrated by remote denial of service (daemon crash) in a non-default configuration. The non-default configuration requires handling of the Forwarded header in a somewhat unusual manner. Also, a 32-bit system is much more likely to be affected than a 64-bit system.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2019-11072	7.5lighttpd before 1.4.54 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a malicious HTTP GET request, as demonstrated by mishandling of /%2F? in burl_normalize_2F_to_slash_fix in burl.c. NOTE: The developer states "The feature which can be abused to cause the crash is a new feature in lighttpd 1.4.50, and is not enabled by default. It must be explicitly configured in the config file (e.g. lighttpd.conf). Certain input will trigger an abort() in lighttpd when that feature is enabled. lighttpd detects the underflow or realloc() will fail (in both 32-bit and 64-bit executables), also detected in lighttpd. Either triggers an explicit abort() by lighttpd. This is not exploitable beyond triggering the explicit abort() with subsequent application exit.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

161 1024 2000 8081 8082 8086 8089 8443 8889

1934945467 | 2024-04-27T15:49:17.727758

161 / udp

SNMP:
  Uptime: 23951700
  Description: RouterOS RB750Gr3
  Service: 78
  Versions:
    1
    3
  Name: 6014 Paris
  Engineid Format: text
  Engine Boots: 0
  Engineid Data: 80003a8c04
  Enterprise: 14988
  Objectid: 1.3.6.1.4.1.14988.1
  Engine Time: 0:00:00

48661938 | 2024-04-26T09:01:15.154842

1024 / tcp

RTSP/1.0 400 Bad Request

-1538260461 | 2024-04-26T15:56:37.439724

2000 / tcp

\x01\x00\x00\x00

-1236513614 | 2024-04-23T12:48:03.776584

8081 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
ETag: "1490198871"
Last-Modified: Tue, 12 Jul 2022 21:16:31 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-csrftoken, content-type, accept
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Length: 6038
Date: Tue, 23 Apr 2024 09:45:13 GMT
Server: lighttpd/1.4.51

<!DOCTYPE html>
<!--[if IE 8]> <html lang="en" class="ie8"> <![endif]-->
<html>
<head>
	<link rel="shortcut icon" href="/images/favicon.ico" />
	<meta charset="utf-8" />
	<title>Login</title>
	<meta content="width=device-width, initial-scale=1.0" name="viewport" />
	<meta content="" name="description" />
	<meta content="" name="author" />
	<!-- BEGIN GLOBAL MANDATORY STYLES -->
<link href="/assets/css/themes/default.css" rel="stylesheet" type="text/css" id="style_color"/>
<link href="/assets/plugins/bootstrap/css/bootstrap.css" rel="stylesheet" type="text/css"/>
<link href="/assets/plugins/bootstrap/css/bootstrap-responsive.css" rel="stylesheet" type="text/css"/>
<link href="/assets/plugins/font-awesome/css/font-awesome.css" rel="stylesheet" type="text/css"/>
<link href="/assets/css/style-metro.css" rel="stylesheet" type="text/css"/>
<link href="/assets/css/style.css" rel="stylesheet" type="text/css"/>
<link href="/assets/css/style-responsive.css" rel="stylesheet" type="text/css"/>
<link href="/assets/css/error.css" rel="sty

-1536851003 | 2024-04-24T01:15:07.908507

8082 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
ETag: "1490198871"
Last-Modified: Tue, 12 Jul 2022 21:16:31 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-csrftoken, content-type, accept
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Length: 6038
Date: Tue, 23 Apr 2024 21:55:17 GMT
Server: lighttpd/1.4.51

-1079361436 | 2024-04-29T22:12:44.007126

8086 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
ETag: "1338686955"
Last-Modified: Fri, 22 Mar 2024 12:24:14 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-csrftoken, content-type, accept
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Length: 6038
Date: Mon, 29 Apr 2024 22:12:27 GMT
Server: lighttpd/1.4.51

862914229 | 2024-04-24T18:11:21.995452

8089 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
ETag: "1490198871"
Last-Modified: Tue, 12 Jul 2022 21:16:31 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-csrftoken, content-type, accept
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Content-Length: 6038
Date: Wed, 24 Apr 2024 15:09:09 GMT
Server: lighttpd/1.4.51

<!DOCTYPE html>
<!--[if IE 8]> <html lang="en" class="ie8"> <![endif]-->
<html>
<head>
	<link rel="shortcut icon" href="/images/favicon.ico" />
	<meta charset="utf-8" />
	<title>Login</title>
	<meta content="width=device-width, initial-scale=1.0" name="viewport" />
	<meta content="" name="description" />
	<meta content="" name="author" />
	<!-- BEGIN GLOBAL MANDATORY STYLES -->
<link href="/assets/css/themes/default.css" rel="stylesheet" type="text/css" id="style_color"/>
<link href="/assets/plugins/bootstrap/css/bootstrap.css" rel="stylesheet" type="text/css"/>
<link href="/assets/plugins/bootstrap/css/bootstrap-responsive.css" rel="stylesheet" type="text/css"/>
<link href="/assets/plugins/font-awesome/css/font-awesome.css" rel="stylesheet" type="text/css"/>
<link href="/assets/css/style-metro.css" rel="stylesheet" type="text/css"/>
<link href="/assets/css/style.css" rel="stylesheet" type="text/css"/>
<link href="/assets/css/style-responsive.css" rel="stylesheet" type="text/css"/>
<link href="/assets/css/error.css" rel="sty

-835393077 | 2024-04-27T17:39:48.947796

8443 / tcp

HTTP/1.1 401 Unauthorized
Content-Length: 0
WWW-Authenticate: Digest qop="auth", realm="Intelbras REMOTE", nonce="1714239588"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            ee:90:f7:3d:44:57:13:27
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BR, ST=MG, L=Santa Rita do Sapucai, O=Intelbras SA, OU=Filial-MG, CN=EAG CA Condominial/emailAddress=suporte@intelbras.com.br
        Validity
            Not Before: Feb 23 18:16:36 2022 GMT
            Not After : Jul 10 18:16:36 2049 GMT
        Subject: C=BR, ST=MG, L=Santa Rita do Sapucai, O=Intelbras SA, OU=Filial-MG, CN=EAG CA Condominial/emailAddress=suporte@intelbras.com.br
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:dd:93:11:1e:01:59:e8:c6:94:08:28:18:fb:ab:
                    e6:6b:f9:68:a7:e1:ac:7b:35:83:bb:26:55:d6:7c:
                    9f:2e:41:e4:04:5c:52:cd:1f:aa:5c:42:00:15:30:
                    1a:ce:fb:8d:4a:43:81:3f:ee:cb:94:4b:a2:89:5c:
                    eb:a2:16:f7:6e:9d:4a:df:b3:35:fb:80:f7:b1:1b:
                    1d:8b:f4:37:b7:df:71:0e:43:cf:2f:72:f1:43:f8:
                    77:d1:06:6a:b6:44:ca:b9:e3:6b:87:c9:27:1f:64:
                    c0:75:40:d5:91:fc:d1:2b:54:4f:13:b1:44:7f:fe:
                    f7:fb:4b:11:f3:ac:7b:a5:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                70:69:66:B9:CF:F4:D0:95:D0:21:D1:D9:CC:0B:6A:21:42:75:56:C0
            X509v3 Authority Key Identifier: 
                70:69:66:B9:CF:F4:D0:95:D0:21:D1:D9:CC:0B:6A:21:42:75:56:C0
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        04:a5:64:51:96:c1:97:08:23:c1:2a:a7:5a:0b:1d:72:66:2c:
        82:57:4d:20:0a:1f:1c:99:77:c8:df:a3:29:50:4c:84:1d:1c:
        1a:b8:9d:8e:32:3c:71:ec:d8:77:e6:bb:da:66:17:35:a2:80:
        ca:b0:07:20:d1:e8:a4:60:60:7e:29:e5:a0:cb:91:b6:44:d6:
        1a:6a:92:7d:1f:1e:83:2f:b5:20:2e:26:5c:a8:15:69:d2:17:
        75:0d:db:97:1f:e3:4a:b7:c6:37:34:f2:d6:fb:4f:3f:05:d6:
        ac:16:b0:24:17:66:35:9a:c7:7e:ec:e5:f8:fd:60:95:7d:92:
        26:15

1084366962 | 2024-04-28T03:35:31.405931

8889 / tcp

HTTP/1.1 403 Forbidden
Date: Sun, 28 Apr 2024 03:35:31 GMT
Connection: Keep-Alive
Content-Type: application/vnd.api+json
Access-Control-Allow-Origin: *
Content-Length: 62

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            70:bd:c2:d0:a0:be:40:ec:e5:98:81:31:fd:7f:04:29:f4:ec:74:0e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BR, ST=RS, L=Porto Alegre, O=Bravas Tecnologia, OU=PRD006, CN=PRD0006/emailAddress=bravas@bravas.ind.br
        Validity
            Not Before: Jan  1 00:00:03 2000 GMT
            Not After : Dec 31 00:00:03 2000 GMT
        Subject: C=BR, ST=RS, L=Porto Alegre, O=Bravas Tecnologia, OU=PRD006, CN=PRD0006/emailAddress=bravas@bravas.ind.br
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ec:4e:2c:38:cd:59:4c:4c:4d:6d:34:4a:47:61:
                    1a:78:0a:5a:08:74:1f:fe:60:b6:11:99:87:b7:bc:
                    00:f2:de:0f:2f:a2:38:48:43:15:c4:17:3f:7f:f8:
                    cd:87:ad:ab:5e:08:8f:5f:25:1f:b7:b4:7e:78:b9:
                    cf:9b:51:aa:04:bf:7d:05:5c:32:9b:46:f0:f0:ef:
                    01:86:59:80:c8:5d:4c:cf:39:c3:5b:5a:6c:85:97:
                    27:f2:03:1b:d1:a7:1d:16:16:1f:0a:0b:87:b0:aa:
                    b6:92:f2:23:a6:79:2c:d2:9e:2e:c9:47:4b:14:b7:
                    6d:f3:16:08:95:a9:77:90:a4:ff:43:1e:eb:80:a1:
                    2e:80:5a:70:b0:d0:c4:46:b5:3d:ac:74:9d:64:68:
                    3b:61:6c:50:28:c3:c0:84:21:2c:ec:c2:f2:bd:61:
                    c7:84:95:87:27:e5:91:01:3f:dd:f1:ce:62:e9:09:
                    58:12:9d:63:a9:11:51:d8:74:dc:dd:09:c9:3b:3b:
                    93:f2:51:4a:a0:36:d3:c4:93:40:1b:87:c2:58:0a:
                    80:b7:1e:4d:ba:bf:dd:9c:69:f7:90:3b:2b:82:09:
                    e0:7f:7f:a5:77:ba:05:bb:78:0e:bf:7e:c1:eb:1c:
                    f3:33:ce:38:4e:c2:3b:8b:0b:00:82:01:5f:f1:89:
                    86:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                B6:30:D2:8E:41:55:2A:AD:1F:F3:0D:4E:BC:A1:3E:A4:6A:34:32:F7
            X509v3 Authority Key Identifier: 
                B6:30:D2:8E:41:55:2A:AD:1F:F3:0D:4E:BC:A1:3E:A4:6A:34:32:F7
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3f:6c:05:72:4c:23:59:c5:8f:a6:b4:70:8b:61:bc:36:0a:2e:
        57:dd:da:2d:eb:ce:c6:1b:07:89:65:eb:c6:a9:3a:ee:31:17:
        dc:74:b4:3c:d8:a1:3a:bf:31:55:92:3d:8e:bc:55:bd:a0:f3:
        06:c8:e1:69:94:f0:ee:35:68:3c:31:c9:8c:b4:fe:ce:07:e2:
        5f:bb:19:53:20:04:ab:93:c1:ea:24:ff:17:34:aa:c0:61:0d:
        5e:d7:fa:71:55:84:5e:c5:73:bc:6a:60:d1:04:7d:d0:87:e8:
        c5:dc:97:6f:d3:62:eb:67:79:88:5b:4f:46:95:72:17:60:1b:
        e8:5d:7d:6b:84:a7:fc:de:86:dd:b8:ff:1a:2e:5a:12:12:a7:
        48:e8:7c:68:ec:a2:80:34:ed:bc:c0:31:77:0c:77:f4:0c:9c:
        8e:d4:8d:c5:df:d9:53:93:02:cd:cf:5e:52:45:0d:d3:e9:09:
        b6:04:67:5f:84:37:27:a4:69:e1:57:71:c3:90:c3:bb:57:4e:
        88:65:97:ac:d4:85:d4:88:b4:31:81:1a:d7:eb:62:47:db:74:
        9e:73:28:5b:02:07:23:2f:bf:20:6f:bf:11:02:cc:73:7d:02:
        6e:64:e6:91:10:b7:37:d8:76:00:cd:06:5e:69:4f:f6:62:f7:
        8b:d5:dd:c5

179.87.167.206

Last Seen: 2024-04-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1934945467 | 2024-04-27T15:49:17.727758
161 / udp

MikroTik

48661938 | 2024-04-26T09:01:15.154842
1024 / tcp

-1538260461 | 2024-04-26T15:56:37.439724
2000 / tcp

MikroTik bandwidth-test server

-1236513614 | 2024-04-23T12:48:03.776584
8081 / tcp

lighttpd1.4.51

-1536851003 | 2024-04-24T01:15:07.908507
8082 / tcp

lighttpd1.4.51

-1079361436 | 2024-04-29T22:12:44.007126
8086 / tcp

862914229 | 2024-04-24T18:11:21.995452
8089 / tcp

-835393077 | 2024-04-27T17:39:48.947796
8443 / tcp

1084366962 | 2024-04-28T03:35:31.405931
8889 / tcp

Products

Pricing

Contact Us

179.87.167.206

Last Seen: 2024-04-29

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1934945467 | 2024-04-27T15:49:17.727758 161 / udp

MikroTik

48661938 | 2024-04-26T09:01:15.154842 1024 / tcp

-1538260461 | 2024-04-26T15:56:37.439724 2000 / tcp

MikroTik bandwidth-test server

-1236513614 | 2024-04-23T12:48:03.776584 8081 / tcp

lighttpd1.4.51

-1536851003 | 2024-04-24T01:15:07.908507 8082 / tcp

lighttpd1.4.51

-1079361436 | 2024-04-29T22:12:44.007126 8086 / tcp

862914229 | 2024-04-24T18:11:21.995452 8089 / tcp

-835393077 | 2024-04-27T17:39:48.947796 8443 / tcp

1084366962 | 2024-04-28T03:35:31.405931 8889 / tcp

Products

Pricing

Contact Us

1934945467 | 2024-04-27T15:49:17.727758
161 / udp

48661938 | 2024-04-26T09:01:15.154842
1024 / tcp

-1538260461 | 2024-04-26T15:56:37.439724
2000 / tcp

-1236513614 | 2024-04-23T12:48:03.776584
8081 / tcp

-1536851003 | 2024-04-24T01:15:07.908507
8082 / tcp

-1079361436 | 2024-04-29T22:12:44.007126
8086 / tcp

862914229 | 2024-04-24T18:11:21.995452
8089 / tcp

-835393077 | 2024-04-27T17:39:48.947796
8443 / tcp

1084366962 | 2024-04-28T03:35:31.405931
8889 / tcp