216.49.102.122
{
"scan_id": 1726480303,
"ip": "216.49.102.122",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "216.49.102.0/23",
"postal_code": "47546",
"coordinates": {
"latitude": "38.36",
"longitude": "-86.9286"
},
"geo_point": "38.36, -86.9286",
"locale_code": "en",
"continent": "North America",
"country_code": "US",
"country_name": "United States",
"city": "Jasper"
},
"location_updated_at": "2024-03-21T11:32:35Z",
"asn": {
"number": "AS19008",
"organization": "PSCI",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "216.49.96.0/19",
"organization": "PSC",
"descr": "PSC\n,P.O. Box 126\n,Saint Meinrad IN 47577-0126\n,United States",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-09-17T23:37:55Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2024-03-21T11:32:35Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2024-09-16T05:33:47Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2024-03-21T11:32:35Z"
}
],
"hostnames": [
{
"name": "whatsup.psci.net",
"last_updated_at": "2024-09-18T23:21:24.150202163Z"
}
],
"services": [
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "8.5",
"product": "Microsoft IIS httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:microsoft:internet_information_services:8.5",
"part": "a",
"vendor": "microsoft",
"product": "internet_information_services",
"version": "8\\.5",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body_murmur": 1051506744,
"body_sha256": "de82800c9a8cb52233d9a32ddb01c9984f54bcc72df131b192e7b7d2bbf8dd84",
"component": [
"IIS:8.5",
"Windows Server"
],
"content_length": -1,
"headers": {
"cache_control": [
"private"
],
"content_type": [
"text/html; charset=utf-8"
],
"date": [
"Wed, 18 Sep 2024 21:48:10 GMT"
],
"server": [
"Microsoft-IIS/8.5"
],
"set_cookie": [
"ASP.NET_SessionId=djtughrzy254jsjluznp2cwx; path=/; HttpOnly; SameSite=Lax"
],
"unknown": [
{
"key": "x_aspnet_version",
"value": [
"4.0.30319"
]
},
{
"key": "x_aspnetmvc_version",
"value": [
"3.0"
]
}
],
"vary": [
"Accept-Encoding"
],
"x_frame_options": [
"SAMEORIGIN"
],
"x_powered_by": [
"ASP.NET"
]
},
"protocol": "HTTP/1.1",
"redirects": [
{
"body_murmur": -1505047288,
"body_sha256": "2e011810ac7702b3fbb601da1e15811b070f72f9dd2640810e8b9e3e07905edb",
"content_length": 173,
"location": "/NmConsole/Workspace/HomeWorkspace/HomeWorkspace.asp",
"status_code": 302,
"status_line": "302 Object moved"
},
{
"body_murmur": 914020368,
"body_sha256": "e268ea3926369a6da6062b0df73b8b977e3258888c713658c6b64072ed35cf7d",
"content_length": 248,
"location": "/NmConsole/User/LogIn?ReturnUrl=http%3A%2F%2F216.49.102.122%3A80%2FNmConsole%2FWorkspace%2FHomeWorkspace%2FHomeWorkspace.asp%3F",
"status_code": 302,
"status_line": "302 Object moved"
},
{
"body_murmur": -622045061,
"body_sha256": "ac91ef51124583f11ffff11441976568b8f8c0cb9da81ae08d028263e7907747",
"content_length": 278,
"location": "/NmConsole/User/LogIn?ReturnUrl=http%3A%2F%2F216.49.102.122%3A80%2FNmConsole%2FWorkspace%2FHomeWorkspace%2FHomeWorkspace.asp%3F&AspxAutoDetectCookieSupport=1",
"status_code": 302,
"status_line": "302 Found"
}
],
"status_code": 200,
"title": "Log In - WhatsUp Gold"
}
},
"cve": [
{
"id": "CVE-2014-4078",
"severity": "medium"
}
],
"url": "http://216.49.102.122/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-18T21:50:13.414Z"
},
{
"port": 135,
"protocol": "tcp",
"name": "msrpc",
"version": "",
"product": "Microsoft Windows RPC",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-08-22T01:38:02.32Z"
},
{
"port": 139,
"protocol": "tcp",
"name": "netbios-ssn",
"version": "",
"product": "Microsoft Windows netbios-ssn",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-17T05:28:50.361Z"
},
{
"port": 445,
"protocol": "tcp",
"name": "microsoft-ds",
"version": "",
"product": "Microsoft Windows Server 2008 R2 - 2012 microsoft-ds",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smb": {
"capabilities": {
"dfs_support": true,
"leasing_support": true,
"multicredit_support": true
},
"has_ntlm": true,
"negotiation": {
"authentication_types": [
"1.3.6.1.4.1.311.2.2.30",
"1.3.6.1.4.1.311.2.2.10"
],
"capabilities": 7,
"credits": 1,
"dialect_revision": 528,
"flags": 1,
"protocol_id": "AAAAAP5TTUI=",
"security_mode": 1,
"server_guid": "AAAAAAAAAAAAAAAAAAAAAPcCF58CBvtMgWU7ZyynvNk=",
"server_start_time": "2024-06-12T13:11:20Z",
"system_time": "2024-09-13T11:33:12Z"
},
"smbv1_support": false,
"version": "2.1.0"
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-16T05:46:04.717Z"
},
{
"port": 3389,
"protocol": "tcp",
"name": "ms-wbt-server",
"version": "",
"product": "Microsoft Terminal Services",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-17T20:18:16.134Z"
}
],
"services_hash": "f268523c76028c53d9bccdc7f4c5129c8e061cce86bca0e7a67a61e9ee5da9e1",
"last_updated_at": "2024-09-18T21:50:13.414Z",
"banner": [
"http",
"smb"
],
"is_vuln": true,
"cveDetails": {
"CVE-2014-4078": {
"id": "CVE-2014-4078",
"references": [
"http://www.securityfocus.com/bid/70937",
"http://www.securitytracker.com/id/1031194",
"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-076"
],
"score": 5.1,
"services": [
"80/http"
],
"severity": "medium",
"summary": "The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the \"IP Address and Domain Restrictions\" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka \"IIS Security Feature Bypass Vulnerability.\"",
"vector_string": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"weakness": "CWE-264"
}
}
}