UDP ports of interest from a remote security assessment perspective are listed in Table A-2. I have included references to chapters within this book, along with other details that I deem appropriate, including MITRE CVE references to known issues.
Port |
Name |
Notes |
---|---|---|
53 |
domain |
Domain Name Service (DNS); see Chapter 5 |
67 |
bootps |
BOOTP (commonly known as DHCP) server port |
68 |
bootpc |
BOOTP (commonly known as DHCP) client port |
69 |
tftp |
Trivial File Transfer Protocol (TFTP), a historically weak protocol used to upload configuration files to hardware devices |
111 |
sunrpc |
RPC portmapper (also known as rpcbind); see Chapter 12 |
123 |
ntp |
Network Time Protocol (NTP), often on Cisco IOS devices |
135 |
loc-srv |
Microsoft RPC server service; see Chapter 9 |
137 |
netbios-ns |
Microsoft NetBIOS name service; see Chapter 9 |
138 |
netbios-dgm |
Microsoft NetBIOS datagram service; see Chapter 9 |
161 |
snmp |
Simple Network Management Protocol (SNMP); see Chapter 5 |
259 |
fw1-rdp |
Check Point Reliable Data Protocol (RDP); see Chapter 11 |
445 |
cifs |
Common Internet File System (CIFS); see Chapter 9 |
513 |
rwho |
Unix rwhod service; see Chapter 5 |
514 |
syslog |
Unix syslogd service for remote logging over a network |
520 |
route |
Routing Information Protocol (RIP) service. BSD-derived systems, including IRIX, are susceptible to a routed trace file attack; see CVE-1999-0215 |
1434 |
ms-sql-ssrs |
SQL Server Resolution Service (SSRS); see Chapter 8 |
2049 |
nfs |
Unix Network File System (NFS) server port; see Chapter 12 |
4045 |
mountd |
Unix mountd server port; see Chapter 12 |