Port 1999 Details
known port assignments and vulnerabilities
threat/application/port search:
Port(s) |
Protocol |
Service |
Details |
Source |
1999 |
tcp |
tcp-id-port |
Cisco identification port.
Citrix Command Center Server uses ports 1099 and 2014 TCP to communicate with High Availability (HA) servers. May also use port 6011 TCP when there is a firewall between the primary and secondary servers.
Some trojans also use this port: Back Door, SubSeven, TransScout
Backdoor.Bifrose.C [Symantec-2005-051912-0450-99] (2005.05.19) - trojan that opens a backdoor on port 1999/tcp, and sends information to a remote server.
An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol (CDP).
References: [CVE-1999-0453]
RunExeFile.exe in the installer for DEWESoft X3 SP1 (64-bit) devices does not require authentication for sessions on TCP port 1999, which allows remote attackers to execute arbitrary code or access internal commands, as demonstrated by a RUN command that launches a .EXE file located at an arbitrary external URL, or a "SETFIREWALL Off" command.
References: [CVE-2018-7756], [EDB-44275] |
SG
|
1999 |
tcp |
trojan |
Back Door, SubSeven , TransScout |
Trojans
|
1999 |
tcp |
BackDoor |
[trojan] BackDoor |
SANS
|
1999 |
tcp |
BackDoor |
[trojan] Back Door |
SANS
|
1999 |
tcp |
SubSeven |
[trojan] SubSeven |
SANS
|
1999 |
tcp |
TransScout |
[trojan] TransScout |
SANS
|
1999 |
tcp |
threat |
Bifrose |
Bekkoame
|
1999 |
tcp,udp |
tcp-id-port |
cisco identification port |
IANA
|
|
8 records found
Related ports: 2000 2014 6011
|