LeakIX - Host 129.152.16.52

Host 129.152.16.52

Italy

ORACLE-BMC-31898

Software information

Microsoft-IIS 10.0

tcp/443 tcp/80

WSO2 product looks outdated
The following WSO2 product is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible since a vulnerability allow remote attackers to achieve RCE (Remote code execution) on the service. Those vulnerabilities are currently used in ransomware campaign and could damage your network.

Reference:

https://www.cvedetails.com/cve/CVE-2022-29464
IP: 129.152.16.52
Port: 9443
URL: https://129.152.16.52:9443

First seen 2023-07-27 17:09
Last seen 2024-12-22 00:51
Open for 513 days
- Severity: critical
  Fingerprint: 0ac2efb9e7a4e4a89a803d6200fae19000fae19000fae19000fae19000fae190
```
Found WSO2 product:
Vulnerable to CVE-2022-29464
```
  Found on 2024-12-22 00:51
Create report

Open service 129.152.16.52:9443

2024-12-22 00:51

HTTP/1.1 302 
Vary: Origin
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=3B6AFD8B001546EEAF1B51D8EF211D71; Path=/; Secure; HttpOnly
Location: https://129.152.16.52/carbon
Content-Length: 0
Date: Sun, 22 Dec 2024 00:51:29 GMT
Connection: close
Server: WSO2 Carbon Server

Found 10 hours ago by HttpPlugin

Create report

Open service 129.152.16.52:9443

2024-12-19 23:41

HTTP/1.1 302 
Vary: Origin
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=29C9CE507CA0885C718915EA200C525B; Path=/; Secure; HttpOnly
Location: https://129.152.16.52/carbon
Content-Length: 0
Date: Thu, 19 Dec 2024 23:41:31 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2 days ago by HttpPlugin

Create report

Open service 129.152.16.52:9443

2024-12-17 23:39

HTTP/1.1 302 
Vary: Origin
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=7367B1FDC0852E610A5710E5F3325072; Path=/; Secure; HttpOnly
Location: https://129.152.16.52/carbon
Content-Length: 0
Date: Tue, 17 Dec 2024 23:39:10 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-17 by HttpPlugin

Create report

Open service 129.152.16.52:9443

2024-12-15 22:56

HTTP/1.1 302 
Vary: Origin
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=653F45F07918A4E3031614E964BC1077; Path=/; Secure; HttpOnly
Location: https://129.152.16.52/carbon
Content-Length: 0
Date: Sun, 15 Dec 2024 22:56:01 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-15 by HttpPlugin

Create report

Open service 129.152.16.52:9443

2024-12-13 23:53

HTTP/1.1 302 
Vary: Origin
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=8751978481CAB7CD001BE0C12FF60870; Path=/; Secure; HttpOnly
Location: https://129.152.16.52/carbon
Content-Length: 0
Date: Fri, 13 Dec 2024 23:53:58 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-13 by HttpPlugin

Create report

Open service 129.152.16.52:9443

2024-12-12 00:37

HTTP/1.1 302 
Vary: Origin
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=6D840B3AF6C5E109B41DDCACB8C958F5; Path=/; Secure; HttpOnly
Location: https://129.152.16.52/carbon
Content-Length: 0
Date: Thu, 12 Dec 2024 00:37:13 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-12 by HttpPlugin

Create report

Open service 129.152.16.52:80 · bandierp-acer-pr-test.portalesepacom.it

2024-12-02 10:02

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Thu, 28 Apr 2022 14:48:49 GMT
Accept-Ranges: bytes
ETag: "95d1312f5bd81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Mon, 02 Dec 2024 10:02:00 GMT
Connection: close
Content-Length: 703

Page title: IIS Windows Server

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>IIS Windows Server</title>
<style type="text/css">
<!--
body {
	color:#000000;
	background-color:#0072C6;
	margin:0;
}

#container {
	margin-left:auto;
	margin-right:auto;
	text-align:center;
	}

a img {
	border:none;
}

-->
</style>
</head>
<body>
<div id="container">
<a href="http://go.microsoft.com/fwlink/?linkid=66138&amp;clcid=0x409"><img src="iisstart.png" alt="IIS" width="960" height="600" /></a>
</div>
</body>
</html>

Found 2024-12-02 by HttpPlugin

Create report

Open service 129.152.16.52:443 · bandierp-acer-pr-test.portalesepacom.it

2024-12-02 10:02

HTTP/1.1 302 Found
Transfer-Encoding: chunked
Content-Language: it
Location: /Account/Login
Server: Microsoft-IIS/10.0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Powered-By: ASP.NET
Date: Mon, 02 Dec 2024 10:02:02 GMT
Connection: close

Found 2024-12-02 by HttpPlugin

Create report

Open service 129.152.16.52:9443

2024-12-01 23:49

HTTP/1.1 302 
Vary: Origin
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=9EDD63CE9705B02D49501454278A84F7; Path=/; Secure; HttpOnly
Location: https://129.152.16.52/carbon
Content-Length: 0
Date: Sun, 01 Dec 2024 23:49:39 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-01 by HttpPlugin

Create report

Open service 129.152.16.52:9443

2024-11-29 21:50

HTTP/1.1 302 
Vary: Origin
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=7303F7E6E4070EF82C0623D0C96C9904; Path=/; Secure; HttpOnly
Location: https://129.152.16.52/carbon
Content-Length: 0
Date: Fri, 29 Nov 2024 21:50:48 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-11-29 by HttpPlugin