82.62.229.217
{
"scan_id": 1726480303,
"ip": "82.62.229.217",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "82.62.229.192/26",
"postal_code": "20064",
"coordinates": {
"latitude": "45.5292",
"longitude": "9.4062"
},
"geo_point": "45.5292, 9.4062",
"locale_code": "en",
"continent": "Europe",
"country_code": "IT",
"country_name": "Italy",
"city": "Gorgonzola"
},
"location_updated_at": "2024-03-21T11:12:44Z",
"asn": {
"number": "AS3269",
"organization": "Telecom Italia",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "82.62.224.0/19",
"organization": "AC_TELECOMITA",
"descr": "AC_TELECOMITA",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-09-16T16:18:39Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2024-03-21T11:12:44Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2024-09-16T06:12:43Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2024-03-21T11:12:44Z"
}
],
"hostnames": [
{
"name": "host-82-62-229-217.business.telecomitalia.it",
"last_updated_at": "2024-09-19T05:41:59.21606457Z"
}
],
"services": [
{
"port": 143,
"protocol": "tcp",
"name": "imap",
"version": "7.1.4 patch 1",
"product": "Kerio Connect imapd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:kerio:connect:7.1.4_patch_1",
"part": "a",
"vendor": "kerio",
"product": "connect",
"version": "7\\.1\\.4_patch_1",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"imap": {
"banner": "* OK Kerio Connect 7.1.4 patch 1 IMAP4rev1 server ready\r\n"
},
"tls": {
"certificate": {
"fingerprint_md5": "740A3E5FC8866FF5010F5C81F66BFC53",
"fingerprint_sha1": "91696BDE13800F9E8D989511F2A4B5FEF35ADA26",
"fingerprint_sha256": "7FE03135F0477A88917EF7BDF1A78CB49D2BEAB4FBA95287B67918EDF4865CD2",
"issuer": {
"common_name": [
"WIN-T79RMOKGDNK"
],
"country": [
"US"
]
},
"issuer_dn": "/CN=WIN-T79RMOKGDNK/C=US",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "1589448429",
"signature": {
"algorithm": {
"name": "SHA1-RSA",
"oid": "1.2.840.113549.1.1.5"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"WIN-T79RMOKGDNK"
],
"country": [
"US"
]
},
"subject_alt_name": {
"dns_names": [
"WIN-T79RMOKGDNK"
],
"extended_dns_names": []
},
"subject_dn": "/CN=WIN-T79RMOKGDNK/C=US",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a6c9eaef3c97ce20f477f84887cd73e312b4528a9c10c843aaa15454ff3bc4db",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "MHhhNzUyYTNlZDlhM2U2OWFhZTE4OTM5NDY2YTNmY2JlMzllMWEzOTE5NjhhMmIwNzQ4ZmUyNmZjMmEzOGI1ZTFiMzRhMjNkMzViMTg1NTRmNzQyZTI5NTViMmJmYjVjODY4NTU1ZDQ3ZDYyNDM3M2ZhMTM4ZmZhNDk1MTM4MzMwNTRlMmIwYjNmNzUxYTY2ZjlmZTA4YTkxODQ3MDNjODBlOTBhMGIwYmMzMmQyOTNhZWJjZDM1MWY0ZDA0OTNhZGY4ZjU2YmM2MmRjZmUxYWM1ZDg5MDQwOTgzZTE0NTk5Mjk4ZmY4YTM0MTI3ZjIxODhjZGUxY2ZhZTJjOTliMjVlNmVmMzY4MjcxOTBhMmE5NDcxZmViYzEzMjQ2NDZkNmE4ZmJjN2VkZjA2MDdmNjkyNTk3OGI3ZGJiN2JlOTkwYzg2MWRmMDZkMjBlNTQ5ODBkNTVjNWJmNjkxNTQ3MDVlNTIyNGQ5ZDU3MzY0NjBkZGFiNDE5OWU5ZGQzMmZlNGQwMmY2OTkyNDFmNzY4NTA5NzhkZDM2OTJmOTY1OWUxMGRkMWM0Yjk1NDU4N2VkNmY1MWQxYzk3YTg0Yjc2ZmEzMDhjYWE1MjMyYzYyYmVhMDFiZjg5MzNiNWFhNTQxYjBiMjcyMjE1ZGE2YzU3MTMzNjcwNTUxZjUzMjU2NTY4OQ=="
}
},
"tbs_fingerprint": "fd449a318d1f266015c08b8e44e46c78dafd086552143b951b285e18e8bbbbea",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2021-05-14T09:27:09",
"not_before": "2020-05-14T09:27:09"
},
"version": 2
},
"fingerprint_sha256": "7FE03135F0477A88917EF7BDF1A78CB49D2BEAB4FBA95287B67918EDF4865CD2",
"precert": false,
"raw": "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",
"tags": [
"ov",
"self_signed",
"root"
]
}
},
"url": "https://82.62.229.217:143/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-19T05:12:10.947Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<!DOCTYPE html>\n<html>\n <head>\n \n \n\n <meta charset=\"utf-8\"/>\n <meta http-equiv=\"X-UA-Compatible\" content=\"IE=Edge\" />\n <meta HTTP-EQUIV='Pragma' CONTENT='no-cache'>\n <meta HTTP-EQUIV='Cache-Control' CONTENT='no-cache'>\n <title>Logon - SINEMA Remote Connect</title>\n\n <link rel=\"stylesheet\" href=\"/static/css/normalize.css? 1726610244\"/>\n <link rel=\"stylesheet\" href=\"/static/css/layout.css? 1726610244\"/>\n <link rel=\"stylesheet\" href=\"/static/css/login.css? 1726610244\"/>\n <link rel=\"stylesheet\" href=\"/static/css/font-awesome.css? 1726610244\"/>\n\n <script type=\"text/javascript\" src=\"/static/js/jquery.js\"></script>\n <script type=\"text/javascript\" src=\"/static/js/sinemarc.js\"></script>\n\n </head>\n <body>\n\n \n\n\n\n<div class=\"header clearfix\">\n <img src=\"/static/img/logo.gif\" alt=\"SIEMENS\" class=\"logo\"/>\n <span class=\"product-name\">SINEMA Remote Connect</span>\n\n <div class=\"language-selector\">\n <form action=\"/i18n/setlang/\" method=\"POST\">\n <input type='hidden' name='csrfmiddlewaretoken' value='NcSWrscAfVifwFkeO6UboZs6w9QkHLLG' />\n\n <label for=\"id_language_selector\">Language</label>:\n <select id=\"id_language_selector\" name=\"language\" onChange=\"submit()\">\n \n \n <option value=\"de\">\n Deutsch\n </option>\n \n <option value=\"en\" selected=\"selected\">\n English\n </option>\n \n </select>\n </form>\n </div>\n\n <div class=\"clock\">1726610244#en#0#</div>\n\n <div class=\"online-help\">\n <a href=\"#\" onClick=\"openHelpWindow('/static/help/en/login_help.htm');\">Help<i class=\"fa fa-question-circle fa-fw\"></i></a>\n </div>\n</div>\n\n\n <div class=\"content\">\n <div class=\"login-form-wrapper\">\n <div class=\"tab\">\n <button id=\"localTab\" class=\"tablinks\" onclick=\"openLoginForm(event)\">Local</button>\n \n <button class=\"tablinks\" disabled>UMC</button>\n \n </div>\n <div id=\"local\" class=\"tabcontent\" style=\"display: block;\">\n <form action=\"/wbm/login/\" method=\"POST\" class=\"login-form\">\n <input type='hidden' name='csrfmiddlewaretoken' value='NcSWrscAfVifwFkeO6UboZs6w9QkHLLG' />\n <input id=\"id_utcoffset\" name=\"utcoffset\" type=\"hidden\" value=\"0\"/>\n\n <div class=\"form-row\">\n <label for=\"id_username\">User name:</label>\n <input id=\"id_username\" maxlength=\"254\" name=\"username\" type=\"text\" />\n </div>\n\n <div class=\"form-row\">\n <label for=\"id_password\">Password:</label>\n <input id=\"id_password\" name=\"password\" type=\"password\" autocomplete=\"off\"/>\n </div>\n\n \n\n <div class=\"form-row\">\n <label for=\"id_submit\"> </label>\n <button id=\"id_submit\" type=\"submit\"><span class=\"button\">Log on</span></button>\n </div>\n\n </form>\n </div>\n <div id=\"umc\" class=\"tabcontent\">\n \n </div>\n </div>\n\n \n\n \n\n \n\n <div class=\"sep\"></div>\n\n <div class=\"pki\">\n \n <img src=\"/static/img/chip-icon.png\">\n \n <p>PKI Login</p>\n </div>\n\n </div>\n\n <script type=\"text/javascript\">\n <!--\n var d = new Date();\n $(\"#id_utcoffset\").prop('value', d.getTimezoneOffset() * -1);\n\n var usernameInput = $(\"#id_username\");\n usernameInput.focus().val(usernameInput.val());\n\n -->\n </script>\n\n <script type=\"text/javascript\">\n var isUmcFailed = \"None\" === \"None\" ? false:true;\n var iUMCActive = \"False\" ===\"True\"? true:false;\n $(document).ready(function () {\n if (isUmcFailed) {\n if (!iUMCActive){\n toggleLoginForm(\"localTab\");\n } else{\n toggleLoginForm(\"umcTab\");\n }\n } else {\n toggleLoginForm(\"localTab\");\n }\n });\n\n function toggleLoginForm(formName) {\n if (formName === \"localTab\"){\n $('#umcTab').removeClass(\"active\");\n $('#localTab').addClass(\"active\");\n $(\"#umc\").css(\"display\", \"none\");\n $(\"#local\").css(\"display\", \"block\");\n } else {\n $('#localTab').removeClass(\"active\");\n $('#umcTab').addClass(\"active\");\n $(\"#local\").css(\"display\", \"none\");\n $(\"#umc\").css(\"display\", \"block\");\n }\n }\n\n function openLoginForm(e) {\n toggleLoginForm(e.currentTarget.id);\n }\n </script>\n </body>\n</html>\n",
"body_murmur": -2074924673,
"body_sha256": "6ce7cd6d47df8b71a0db38b5771af86249e38c4f7af439b4d84a4e29fbce9c2d",
"component": [
"Apache HTTP Server",
"Django",
"Python"
],
"content_length": -1,
"headers": {
"cache_control": [
"max-age=0"
],
"content_language": [
"en"
],
"content_type": [
"text/html; charset=utf-8"
],
"date": [
"Tue, 17 Sep 2024 21:57:24 GMT"
],
"expires": [
"Tue, 17 Sep 2024 21:57:24 GMT"
],
"last_modified": [
"Tue, 17 Sep 2024 21:57:24 GMT"
],
"server": [
"Apache"
],
"set_cookie": [
"csrftoken=NcSWrscAfVifwFkeO6UboZs6w9QkHLLG; expires=Tue, 16-Sep-2025 21:57:24 GMT; httponly; Max-Age=31449600; Path=/; secure",
"sessionid=7f7h56ch7b54dkxn0qo4vmgejvjhv8nj; httponly; Path=/; secure"
],
"strict_transport_security": [
"max-age=15768000"
],
"vary": [
"Cookie,Accept-Language,Accept-Encoding"
],
"x_content_type_options": [
"nosniff"
],
"x_frame_options": [
"sameorigin"
],
"x_xss_protection": [
"1; mode=block"
]
},
"protocol": "HTTP/1.1",
"redirects": [
{
"content_length": -1,
"headers": {
"content_language": [
"en"
],
"content_type": [
"text/html; charset=utf-8"
],
"date": [
"Tue, 17 Sep 2024 21:57:24 GMT"
],
"location": [
"https://82.62.229.217/wbm/login/"
],
"server": [
"Apache"
],
"strict_transport_security": [
"max-age=15768000"
],
"vary": [
"Accept-Language,Cookie"
],
"x_content_type_options": [
"nosniff"
],
"x_frame_options": [
"sameorigin"
],
"x_xss_protection": [
"1; mode=block"
]
},
"location": "https://82.62.229.217/wbm/login/",
"protocol": "HTTP/1.1",
"status_code": 302,
"status_line": "302 FOUND"
}
],
"request": {
"headers": {
"accept": [
"*/*"
],
"referer": [
"https://82.62.229.217"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "82.62.229.217",
"path": "/wbm/login/",
"scheme": "https"
}
},
"status_code": 200,
"title": "Logon - SINEMA Remote Connect",
"transfer_encoding": [
"chunked"
]
},
"tls": {
"certificate": {
"extensions": {
"basic_constraints": {
"is_ca": true
},
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": false,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"ip_address": [
"82.62.229.217",
"192.168.1.11"
]
}
},
"fingerprint_md5": "77206169949D05A60BAF8D6F7F930C61",
"fingerprint_sha1": "8532A0CDC8A2FE98F89DE36D84E03CE81FB8C470",
"fingerprint_sha256": "A1BD8FC5A3926E6E4AA5B3B8B09C32EA74A0FA071DBFAA4F551E108FEFD60DA7",
"issuer": {
"common_name": [
"CA 587412 SINEMA RC"
]
},
"issuer_dn": "/CN=CA 587412 SINEMA RC",
"jarm": "16d16d16d14d16d00016d16d16d16df572ac71996ec56855731b41418b2c77",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "71",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"subject": {
"common_name": [
"192.168.1.11"
]
},
"subject_alt_name": {
"dns_names": [
"192.168.1.11"
],
"extended_dns_names": []
},
"subject_dn": "/CN=192.168.1.11",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "999eb309fce41603e7c9acae9deda6ee07fb8455ffcf54e945a6cbfbb875678e",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "53c7f5d79123cd8877bd5c12be6fe0f988d02c19516cc3e6d742ef2fd21da70a",
"validation_level": "DV",
"validity": {
"length_seconds": 31708800,
"not_after": "2025-05-19T18:44:06",
"not_before": "2024-05-17T18:44:06"
},
"version": 2
},
"fingerprint_sha256": "A1BD8FC5A3926E6E4AA5B3B8B09C32EA74A0FA071DBFAA4F551E108FEFD60DA7",
"precert": false,
"raw": "MIIC+TCCAeGgAwIBAgIBRzANBgkqhkiG9w0BAQsFADAeMRwwGgYDVQQDDBNDQSA1ODc0MTIgU0lORU1BIFJDMB4XDTI0MDUxNzE4NDQwNloXDTI1MDUxOTE4NDQwNlowFzEVMBMGA1UEAwwMMTkyLjE2OC4xLjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fFdWo+uQO5+VGEauyveH9vTESpApBEjfzIFgLH4avpEkOLl85ieGohj+jftuz5qpoo5nMwflHU4g5VHWmJoRR9NFuhIJUB6X7XeeWeMp3IsuknJjZzrPfotDtyEeCNACNpV+uDwTKlSqpUa1WkIMc3RADBB+TuAbCl0f6sj5Ms6yeJq0uns11eEpxJz8UueG0gO6dHnogWe7273tMMk9uryJFRBENnZf4RO/PCCcQwQne+P+SbXxD0cvA4qTFg9SOfpT61YLAFtBUNCdSkG2d9U5/vpIWZm/x+vN8DF6nNo3kevtbyD10nR/q0wf0bcTKmvUp72N1FAZP2ZLqFEMQIDAQABo0kwRzAJBgNVHRMEAjAAMAsGA1UdDwQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAYBgNVHREBAf8EDjAMhwRSPuXZhwTAqAELMA0GCSqGSIb3DQEBCwUAA4IBAQA4IOf5tSgjZmMdxhVwIRxaNzAW1451M/fWycMhY5QjdZ9WIGOkhxkih3pKNIXNj25SUqYJWjytj7hRtefY0XXcoD8oC7gUFkDJBQ92vKBoI7ccPKc+ePzvhtMI3QXyrHHHegt8SxVeXdhqHpFPxbvEsiAdDyU/UGDf135g/Ysxil/nQp78htuImflqunW75YW8V9ENmU8ZkLOCexib11pCuDguDGtomJtNCcXE+Ltx301/jYrL/t/9gBGy6MRBPrOP2H+1X3T8oZB1PcGOZ4JBzqBYwJ/VQ15xNE6LAJgkEQUHJDo9WWk8tL7kYIpdR9k1kNoEbvCIIhx26tR/9pBv",
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
},
{
"id": "CVE-2023-27522",
"score": 7.5,
"severity": "high"
}
],
"url": "https://82.62.229.217/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-18T02:43:51.816Z"
},
{
"port": 465,
"protocol": "tcp",
"name": "smtp",
"version": "7.1.4 patch 1",
"product": "Kerio Connect smtpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:kerio:connect:7.1.4_patch_1",
"part": "a",
"vendor": "kerio",
"product": "connect",
"version": "7\\.1\\.4_patch_1",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-18T00:06:34.248Z"
},
{
"port": 993,
"protocol": "tcp",
"name": "imap",
"version": "7.1.4 patch 1",
"product": "Kerio Connect imapd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:kerio:connect:7.1.4_patch_1",
"part": "a",
"vendor": "kerio",
"product": "connect",
"version": "7\\.1\\.4_patch_1",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-18T05:50:34.729Z"
},
{
"port": 5001,
"protocol": "tcp",
"name": "commplex-link",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-17T21:25:45.757Z"
},
{
"port": 5443,
"protocol": "tcp",
"name": "spss",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-16T16:30:03.65Z"
},
{
"port": 7170,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Thomson DSL router TR-069",
"extra_info": "",
"tunnel": "",
"modules": {
"http": {
"headers": {
"content_length": [
"0"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "82.62.229.217:7170",
"path": "",
"scheme": "http"
}
},
"status_code": 404
}
},
"url": "http://82.62.229.217:7170/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-09-18T13:08:57.278Z"
},
{
"port": 8000,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Kerio MailServer http config",
"extra_info": "",
"tunnel": "",
"modules": {
"http": {
"body": "<html><head><meta name=\"viewport\" content=\"width=device-width, initial-scale=1, minimum-scale=1, maximum-scale=1\"/><meta http-equiv=\"Content-type\" content=\"text/html; charset=utf-8\"><title>Kerio Connect WebMail</title><script type=\"text/javascript\" src=\"loginDialog.js?v=xxcabfcf786a508fbe55f92879f7403d66\"></script><link href=\"loginBasic.css?v=xxcabfcf786a508fbe55f92879f7403d66\" rel=\"stylesheet\"/><link href=\"loginAdvanced.css?v=xxcabfcf786a508fbe55f92879f7403d66\" rel=\"stylesheet\"/></head><body onload=\"document.getElementById('x_abu').focus();\"><div id=\"x_abs\"></div><form action=\"/webmail/dologin.php\" method=\"post\"><table id=\"x_abr\" border=\"0\" cellpadding=\"0\" cellspacing=\"0\"><tr><td><img src=\"img/bubbleTop.gif?v=xxcabfcf786a508fbe55f92879f7403d66\" width=\"304\" height=\"23\" alt=\"\"></td></tr><tr><td id=\"x_abt\"><center><table border=\"0\" cellpadding=\"0\" cellspacing=\"0\"><tr><td><img id=\"x_abz\" width=\"220\" height=\"50\" src=\"img/logo.gif?v=xxcabfcf786a508fbe55f92879f7403d66\" alt=\"Kerio Connect WebMail\"></td></tr><tr><td></td></tr><tr><td class=\"x_abx\">Username<br><input id=\"x_abu\" name=\"kerio_username\" value=\"\" type=\"text\"></td></tr><tr><td class=\"x_abx\">Password<br><input id=\"x_abv\" name=\"kerio_password\" value=\"\" type=\"password\"></td></tr><tr><td><table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr><td><input id=\"x_3mk\" type=\"submit\" value=\"Login\"></td><td align=\"right\"><table border=\"0\" cellpadding=\"0\" cellspacing=\"0\"><tr><td valign=\"middle\"><input onchange=\"x_aci(this.checked)\" type=\"checkbox\" id=\"x_3mj\" name=\"kerio_useMini\" checked disabled></td><td valign=\"middle\"><label for=\"x_3mj\">Use WebMail Mini</label></td></tr></table></td></tr></table></td></tr></table></center></td></tr><tr><td><img src=\"img/bubbleBottom.gif?v=xxcabfcf786a508fbe55f92879f7403d66\" width=\"304\" height=\"83\" alt=\"\"></td></tr><tr><td id=\"x_abw\"><a href=\"/integration\">Integration tools</a></td></tr></table><input type=\"hidden\" name=\"x_88b\" value=\"1\"><input type=\"hidden\" name=\"kerio_mode\" value=\"mini\"></form></body></html>",
"body_murmur": -1697873452,
"body_sha256": "f0ed667cb5b1f4e5f936381fddaa28988185ee386b17f3b1c2750b3df13cde4c",
"content_length": -1,
"headers": {
"content_type": [
"text/html"
],
"date": [
"Sun, 11 Aug 2024 02:03:02 GMT"
],
"server": [
"Kerio Connect 7.1.4 patch 1"
],
"x_ua_compatible": [
"IE=8"
]
},
"protocol": "HTTP/1.1",
"redirects": [
{
"headers": {
"content_length": [
"0"
],
"content_type": [
"text/html"
],
"date": [
"Sun, 11 Aug 2024 02:03:01 GMT"
],
"location": [
"http://82.62.229.217:8000/webmail/login/"
],
"server": [
"Kerio Connect 7.1.4 patch 1"
],
"x_ua_compatible": [
"IE=8"
]
},
"location": "http://82.62.229.217:8000/webmail/login/",
"protocol": "HTTP/1.1",
"status_code": 302,
"status_line": "302 Found"
}
],
"request": {
"headers": {
"accept": [
"*/*"
],
"referer": [
"http://82.62.229.217:8000"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "82.62.229.217:8000",
"path": "/webmail/login/",
"scheme": "http"
}
},
"status_code": 200,
"title": "Kerio Connect WebMail"
}
},
"url": "http://82.62.229.217:8000/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2024-08-11T02:07:33.652Z"
}
],
"services_hash": "eafeae9e302f644541bed833d1166ad0ad7c1a0bc75b9b3444c8eeceb8fcb1e8",
"last_updated_at": "2024-09-19T05:12:10.947Z",
"banner": [
"imap",
"tls",
"http"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"443/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"443/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"443/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.\n\n\n",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"443/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.\n\nSpecial characters in the origin response header can truncate/split the response forwarded to the client.\n\n\n",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
}
}
}