Sophos Firewall
tcp/443
xxxx
tcp/443
The following Sophos firewall is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible since multiple CVEs allow remote attackers to DoS or achieve RCE (Remote code execution) on the firewall. Those vulnerabilities are currently used in ransomware campaign and could damage your network.
Reference:
Severity: critical
Fingerprint: 0b25d4f0a9de5b4d45769e527b15558e7b15558e7b15558e7b15558e7b15558e
Found SOPHOS firewall user portal Vulnerable to CVE-2022-1040
Open service 117.239.14.80:443
2024-06-01 23:48
HTTP/1.1 302 Found Date: Sat, 01 Jun 2024 22:57:15 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Mon, 01 Jul 2024 22:57:15 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-06-01 23:48
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-31 22:48
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-31 22:48
HTTP/1.1 302 Found Date: Fri, 31 May 2024 21:57:28 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Sun, 30 Jun 2024 21:57:28 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-30 16:43
HTTP/1.1 302 Found Date: Thu, 30 May 2024 15:51:54 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Sat, 29 Jun 2024 15:51:54 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-30 16:43
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-29 21:59
HTTP/1.1 302 Found Date: Wed, 29 May 2024 21:07:50 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Fri, 28 Jun 2024 21:07:50 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-29 21:59
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-28 20:06
HTTP/1.1 302 Found Date: Tue, 28 May 2024 19:14:47 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Thu, 27 Jun 2024 19:14:47 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-28 20:06
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-27 21:29
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-27 21:29
HTTP/1.1 302 Found Date: Mon, 27 May 2024 20:38:13 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Wed, 26 Jun 2024 20:38:13 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-26 21:08
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-26 21:08
HTTP/1.1 302 Found Date: Sun, 26 May 2024 20:16:47 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Tue, 25 Jun 2024 20:16:47 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-25 23:11
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-25 23:11
HTTP/1.1 302 Found Date: Sat, 25 May 2024 22:19:56 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Mon, 24 Jun 2024 22:19:56 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-24 22:53
HTTP/1.1 302 Found Date: Fri, 24 May 2024 22:01:16 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Sun, 23 Jun 2024 22:01:16 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-24 22:53
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-23 22:40
HTTP/1.1 302 Found Date: Thu, 23 May 2024 21:48:31 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Sat, 22 Jun 2024 21:48:31 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-23 22:40
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-23 03:50
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-23 03:50
HTTP/1.1 302 Found Date: Thu, 23 May 2024 02:58:25 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Sat, 22 Jun 2024 02:58:25 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>
Open service 117.239.14.80:443
2024-05-22 21:53
Found SOPHOS firewall user portal
Open service 117.239.14.80:443
2024-05-22 21:53
HTTP/1.1 302 Found Date: Wed, 22 May 2024 21:01:16 GMT Server: xxxx X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000 Location: https://117.239.14.80/userportal/webpages/myaccount/login.jsp Cache-Control: max-age=2592000 Expires: Fri, 21 Jun 2024 21:01:16 GMT Content-Length: 245 Connection: close Content-Type: text/html; charset=iso-8859-1 Page title: 302 Found <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="https://117.239.14.80/userportal/webpages/myaccount/login.jsp">here</a>.</p> </body></html>