UDP ports of interest from a remote security assessment perspective are listed in Table A-2. I have included references to chapters within this book, along with other details that I deem appropriate, including MITRE CVE references to known issues.
Table A-2. UDP ports
| Port | Name | Notes |
|---|
| 53 | domain | Domain Name Service (DNS); see Chapter 5 |
| 67 | bootps | BOOTP (commonly known as DHCP) server port |
| 68 | bootpc | BOOTP (commonly known as DHCP) client port |
| 69 | tftp | Trivial File Transfer Protocol (TFTP), a historically weak protocol used to upload configuration files to hardware devices |
| 111 | sunrpc | RPC portmapper (also known as rpcbind); see Chapter 12 |
| 123 | ntp | Network Time Protocol (NTP), often on Cisco IOS devices |
| 135 | loc-srv | Microsoft RPC server service; see Chapter 9 |
| 137 | netbios-ns | Microsoft NetBIOS name service; see Chapter 9 |
| 138 | netbios-dgm | Microsoft NetBIOS datagram service; see Chapter 9 |
| 161 | snmp | Simple Network Management Protocol (SNMP); see Chapter 5 |
| 259 | fw1-rdp | Check Point Reliable Data Protocol (RDP); see Chapter 11 |
| 445 | cifs | Common Internet File System (CIFS); see Chapter 9 |
| 513 | rwho | Unix rwhod service; see Chapter 5 |
| 514 | syslog | Unix syslogd service for remote logging over a network |
| 520 | route | Routing Information Protocol (RIP) service. BSD-derived systems, including IRIX, are susceptible to a routed trace file attack; see CVE-1999-0215 |
| 1434 | ms-sql-ssrs | SQL Server Resolution Service (SSRS); see Chapter 8 |
| 2049 | nfs | Unix Network File System (NFS) server port; see Chapter 12 |
| 4045 | mountd | Unix mountd server port; see Chapter 12 |