lighttpd 1.4.39
tcp/8080
Malicious users exploiting this vulnerability may be able to read and/or write information to shared directories.
This may also include IPC services and lead to remote code execution.
Severity: high
Fingerprint: 22420ce026fa767d3962741ccf3f2cc6cf3f2cc6cf3f2cc6cf3f2cc6cf3f2cc6
Found open SMB shares with Guest login IPC$
Open service 76.189.48.246:445
2024-04-28 18:44
SMB NTLMSSP handshake results: Found Windows 6.1 build 1 NbComputerName: LINKSYS02147 NbDomainName: LINKSYS02147 DNSComputerName: LINKSYS02147 DNSDomainName: LINKSYS02147
Open service 76.189.48.246:445
2024-04-25 10:39
SMB NTLMSSP handshake results: Found Windows 6.1 build 1 NbComputerName: LINKSYS02147 NbDomainName: LINKSYS02147 DNSComputerName: LINKSYS02147 DNSDomainName: LINKSYS02147
Open service 76.189.48.246:445
2024-04-24 10:40
SMB NTLMSSP handshake results: Found Windows 6.1 build 1 NbComputerName: LINKSYS02147 NbDomainName: LINKSYS02147 DNSComputerName: LINKSYS02147 DNSDomainName: LINKSYS02147
Open service 76.189.48.246:8080
2024-04-23 21:50
HTTP/1.1 403 Forbidden Content-Type: text/html Content-Length: 345 Connection: close CONTENT-LANGUAGE: en Date: Tue, 23 Apr 2024 21:50:37 GMT Server: lighttpd/1.4.39 Page title: 403 - Forbidden <?xml version="1.0" encoding="iso-8859-1"?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <title>403 - Forbidden</title> </head> <body> <h1>403 - Forbidden</h1> </body> </html>