|
Port 69 Details
known port assignments
threat/application/port search:
| Port(s) |
Protocol |
Service |
Details |
Source |
| 69 |
udp |
TFTP |
Trivial File Transfer Protocol - A less secure version of FTP, generally used in maintaining and updating systems, for configuration file transfers between LAN systems, firmware updates on routers, etc.
Many trojans also use this port: BackGate Kit, Nimda, Pasana, Storm, Storm worm, Theef...
W32.Blaster.Worm is a widely spread worm that exploits the MS DCOM RPC vulnerability described in MS Security Bulletin MS03-026. The worm allows remote access to an infected computer via ports 4444/tcp and 69/UDP, and spreads through port 135/tcp. To avoid being infected consider closing those ports.
W32.Welchia.Worm - a wildly spread worm that removes the W32.Blaster.Worm and installs a TFTP server.
W32.Cycle (05.10.2004). Exploits a MS vulnerability on port 445, Listens on ports 3332/tcp and 69/udp.
W32.Zotob.E (08.16.2005) - a worm that opens a backdoor and exploits the MS Plug and Play Buffer Overflow vulnerability (MS Security Bulletin MS05-039) on port 445/tcp. It runs and spreads using all current Windows versions, but only infects Windows 2000.
The worm connects to IRC servers and listens for remote commands on port 8080/tcp. It opens port 69/udp to initiate TFTP transfers. It also opens a bacdoor on remote compromised computers on port 8594/tcp. Port 69/udp also used by the W32.Zotob.H variant of the worm. |
SG |
| 69,70 |
tcp |
trojans |
W32.Evala.Worm - backdoor trojan, 07.2002. Affects Windows 9x/Me/NT/2k/XP, listens on ports 69 and 70.
Other trojans that use these ports: ADM worm, BackGate Kit, Nimda, Pasana, Storm, Theef
Note: port 69/udp is used by TFTP. |
SG |
| 69 |
udp |
|
Trivial File Transfer Protocol (TFTP) (official) |
Wikipedia |
| 69 |
tcp |
trojan |
BackGate Kit, Nimda, Pasana, Storm, Storm worm, Theef |
Trojans |
| 69 |
udp |
trojan |
Pasana |
Trojans |
| 69 |
tcp,udp |
tftp |
Trivial File Transfer |
IANA |
| 69 |
tcp |
BackGate |
[trojan] BackGate |
SANS |
| 69,5060,6000-6006,6010-6016,6020-6026,6030-6036 |
udp |
applications |
TalkSwitch |
Portforward |
| 69,5060,16384-16392 |
udp |
applications |
Verizon VoiceWing |
Portforward |
| 69,5060-5061,10000-20000 |
udp |
applications |
Viatalk |
Portforward |
10 records found
« back to SG Ports
External Resources
SANS Internet Storm Center: port 69
tantalo.net port assignments: port 69
GRC: port 69
Notes:
Well Known Ports: 0 through 1023.
Registered Ports: 1024 through 49151.
Dynamic/Private : 49152 through 65535.
TCP ports use the Transmission Control Protocol. TCP is one of the main protocols in
TCP/IP networks. Whereas the IP protocol deals only with packets, TCP enables two hosts
to establish a connection and exchange streams of data. TCP guarantees delivery of data
and that packets will be delivered in the same order in which they were sent.
Guaranteed communication is the key difference between TCP and UDP.
UDP ports use the Datagram Protocol, a communications protocol for the Internet network,
transport, and session layers. Like TCP (Transmission Control Protocol),
UDP is used with IP (the Internet Protocol) and makes possible the transmission of datagrams
from one computer to applications on another computer, but unlike TCP, UDP is connectionless
and does not guarantee reliable communication; it's up to the application that received
the message to process any errors and verify correct delivery.
|
