UDP ports of interest from a remote security assessment perspective are listed in Table A-2. I have included references to chapters within this book, along with other details that I deem appropriate, including MITRE CVE references to known issues.
Table A-2. UDP ports
Port
Name
Notes
53
domain
Domain Name Service (DNS); see Chapter 5
67
bootps
BOOTP (commonly known as DHCP) server port
68
bootpc
BOOTP (commonly known as DHCP) client port
69
tftp
Trivial File Transfer Protocol (TFTP), a historically weak protocol used to upload configuration files to hardware devices
111
sunrpc
RPC portmapper (also known as rpcbind); see Chapter 12
123
ntp
Network Time Protocol (NTP), often on Cisco IOS devices
135
loc-srv
Microsoft RPC server service; see Chapter 9
137
netbios-ns
Microsoft NetBIOS name service; see Chapter 9
138
netbios-dgm
Microsoft NetBIOS datagram service; see Chapter 9
161
snmp
Simple Network Management Protocol (SNMP); see Chapter 5
259
fw1-rdp
Check Point Reliable Data Protocol (RDP); see Chapter 11
445
cifs
Common Internet File System (CIFS); see Chapter 9
513
rwho
Unix rwhod service; see Chapter 5
514
syslog
Unix syslogd service for remote logging over a network
520
route
Routing Information Protocol (RIP) service. BSD-derived systems, including IRIX, are susceptible to a routed trace file attack; see CVE-1999-0215
1434
ms-sql-ssrs
SQL Server Resolution Service (SSRS); see Chapter 8
2049
nfs
Unix Network File System (NFS) server port; see Chapter 12