Loading...
[get complete service list]
Top of page
Port Information
Protocol Service Name
tcp redis Redis
Top IPs Scanning
Today Yesterday
101.91.107.40 (49)89.248.163.200 (447)
3.15.169.123 (35)45.84.89.2 (444)
47.113.186.206 (30)101.91.107.40 (416)
121.43.128.131 (28)66.240.236.116 (226)
115.29.105.57 (26)66.240.236.109 (198)
103.164.77.156 (23)47.113.186.206 (158)
139.196.42.154 (21)106.227.68.128 (136)
47.93.249.177 (20)222.188.79.124 (134)
61.153.189.65 (20)183.248.129.180 (133)
47.93.247.196 (20)121.41.46.50 (132)
Port diary mentions
URL
Anatomy of a Redis mining worm
Top of page
User Comments
Submitted By Date
Comment
Johannes 2018-05-18 12:09:53
Redis by default allows arbitrary file uploads, which can easily be leveraged to execute code. See http://blog.knownsec.com/2015/11/analysis-of-redis-unauthorized-of-expolit/
Sunny Dhabhai 2013-03-12 13:17:55
Redis Server Port which client can run queries. Default Port Exposed to Internet Could Face Brute Force Attacks. Nmap Brute Force Script For Radis: http://nmap.org/nsedoc/scripts/redis-brute.html
Top of page
CVE Links
CVE # Description
CVE-2015-8080 Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number, which triggers a stack-based buffer overflow.
Top of page