Welcome to Ask A Pentester, where you can get your security questions answered by members of the IT Security community!

Spread the word!

Links

Vulnerable Ports?

0 votes

Im reently getting into nmap and such. and i want to know can ports be hacked? or attacked? anyone have some articles for me to see about it? and if so anything wrong or vulnerable about these ones:

21/tcp    open     ftp
25/tcp    open     smtp
53/tcp    open     domain
80/tcp    open     http
110/tcp   open     pop3
111/tcp   open     rpcbind
143/tcp   open     imap
443/tcp   open     https
587/tcp   open     submission
993/tcp   open     imaps
995/tcp   open     pop3s
2222/tcp  open     unknown
3011/tcp  open     unknown
3306/tcp  open     mysql
8888/tcp  open     sun-answerbook
12000/tcp open     cce4x
asked 10 months ago by Konvict amateur (200 points)

2 Answers

+1 vote

Since this is kind of a generic question, here comes a generic answer.

The important thing from an attacker perspective is the software running "behind" this port. It's a huge difference between an old Microsoft IIS 5.0 or the latest version of Apache but both of them listen on the same port.

Although is true that some ports are more "appealing" than others, since the corresponding services are known to had a lot of problems in the past (for example, ftp, smtp, dns, web...) you really need to fingerprint *what* is running on those ports.

There is a couple of interesting related questions here and here where Marc Ruef presents his cool NSE script.

 

Best,

Carlos
answered 10 months ago by m0n0sapiens pro pentester (830 points)
Very nice reply! (And not just because you mentioned my script ;) !)
commented 10 months ago by Marc Ruef enthusiast (480 points)
0 votes

thanks very much, i saw the script earlier and tried it out its very good
answered 10 months ago by Konvict amateur (200 points)

Please log in or register to answer this question.

Powered by Question2Answer
Designed by Axiologic SaaS