Port 4567 Details
known port assignments and vulnerabilities
threat/application/port search:
Port(s) |
Protocol |
Service |
Details |
Source |
4567 |
tcp |
trojans |
Verizon Actiontec Routers have a web server listening to this port. Verizon FiOS uses it for "secure server connection to automatically monitor/upgrade the router firmware when connected to the FiOS network using a MOTIVE server connection on port 4567". The firmware shipped with Verizon's CPE does not allow port 4567 to be blocked easily.
To possibly block this port, enter the router's admin interface and navigate to:
1. Home -> Advanced-> Protocols-> Add
2. Type any service name, add server ports: protocol -> TCP, source -> any, destination -> single=4567 , then Apply.
3. Navigate to Home -> Security -> Advanced Filtering
4. Input Rule Sets -> Broadband Connection (Ethernet) Rules -> Add
Sinatra default server port in development mode (HTTP)
Trojans that use this port: File Nail, BackDoor-IW.
Backdoor.Win32.Visiotrol.10 / Insecure Password Storage - the malware listens by default on TCP port 4567. The default password "vc" is very weak and stored in a plaintext file named "config.vcs" on disk.
References: [MVID-2021-0431]
A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service.
References: [CVE-2023-5157]
TRAM (IANA official) |
SG
|
4567 |
udp |
applications |
The agent in Bradford Network Sentry before 5.3.3 does not require authentication for messages, which allows remote attackers to trigger the display of arbitrary text on a workstation via a crafted packet to UDP port 4567, as demonstrated by a replay attack.
References: [CVE-2012-2606] |
SG
|
4567 |
tcp |
trojan |
[trojan] File Nail |
Trojans
|
4567 |
tcp |
FileNail |
[trojan] File Nail |
SANS
|
4567 |
tcp,udp |
tram |
TRAM |
IANA
|
|
5 records found
Related ports: 3306
|