Shortcuts
|
Vulnerable Ports
This list (a very small part of our SG Ports database) includes TCP/UDP ports currently tested by our Security Scanner, and corresponding potential security threats.
We update the list on a regular basis, however if you feel we should add other port(s) to the list or modify their descriptions, please .
Any feedback and suggestions can also be posted to our Security forum.
| Port(s) |
Protocol |
Service |
Scan level |
Description |
| 25001 |
tcp |
icl-twobase2 |
not scanned |
Default port for Unity3D game engine networking
icl-twobase2 (IANA official) |
| 25002 |
tcp,udp |
trojan |
not scanned |
MOTD trojan |
| 25003 |
tcp |
applications |
not scanned |
Teamware Office client notifier |
| 25005 |
tcp |
applications |
not scanned |
Teamware Office message transfer |
| 25007 |
tcp |
applications |
not scanned |
Teamware Office MIME Connector |
| 25010 |
tcp |
applications |
not scanned |
Teamware Office Agent server |
| 25025 |
tcp |
trojans |
not scanned |
Backdoor.Kodalo [Symantec-2003-070115-1200-99] - a backdoor trojan horse that gives an attacker full access to an infected computer, listens on ports 25025, 25026, or 25044/tcp by default. |
| 25026 |
tcp |
trojans |
not scanned |
Backdoor.Kodalo [Symantec-2003-070115-1200-99] - a backdoor trojan horse that gives an attacker full access to an infected computer, listens on ports 25025, 25026, or 25044/tcp by default. |
| 25042 |
tcp,udp |
applications |
not scanned |
BitComet |
| 25044 |
tcp |
trojans |
not scanned |
Backdoor.Kodalo [Symantec-2003-070115-1200-99] - a backdoor trojan horse that gives an attacker full access to an infected computer, listens on ports 25025, 25026, or 25044/tcp by default. |
| 25072 |
tcp,udp |
applications |
not scanned |
radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access.
References: [CVE-2004-2048] [BID-10794] [SECUNIA-12154] [OSVDB-8246] |
| 25080 |
tcp,udp |
applications |
not scanned |
Ninja Email Security - port for checking against phishing attacks, spam, and malware. |
| 25100 |
tcp |
db2c-tls |
not scanned |
IBM Db2 Client Interface - Encrypted (IANA official) |
| 25105 |
tcp |
applications |
not scanned |
Default port for Insteon Hub |
| 25120 |
tcp,udp |
applications |
not scanned |
DMW Scanner |
| 25121 |
tcp,udp |
applications |
not scanned |
VOISpeed VoIP |
| 25123 |
tcp |
trojan |
Premium scan |
Goy'Z TroJan
DMW Scanner also uses this port (TCP/UDP) |
| 25150 |
tcp,udp |
games |
not scanned |
R.U.S.E. uses ports 25150-25199 |
| 25199 |
tcp,udp |
games |
not scanned |
R.U.S.E. uses ports 25150-25199 |
| 25226 |
tcp |
trojans |
Premium scan |
Backdoor.Delf.F [Symantec-2003-040117-4857-99] backdoor trojan that gives a hacker access to your computer. By default, it opens TCP ports 25226 and 45672. The existence of the file Svced.exe is an indication of a possible infection. |
| 25332 |
tcp,udp |
games |
not scanned |
Emperor: Rise of the Middle Kingdom |
| 25333 |
tcp |
games |
not scanned |
Emperor: Rise of the Middle Kingdom |
| 25386 |
tcp |
trojan |
Premium scan |
MoonPie trojan |
| 25471 |
sctp |
rna |
not scanned |
IANA registered for: RNSAP User Adaptation for Iurh |
| 25486 |
tcp |
trojan |
Premium scan |
MoonPie trojan |
| 25555 |
tcp |
trojan |
Premium scan |
FreddyK trojan |
| 25556 |
tcp |
trojan |
Premium scan |
FreddyK trojan |
| 25560 |
tcp |
applications |
not scanned |
codeheart.js Relay Server |
| 25565 |
tcp |
applications |
not scanned |
MySQL Standard port
Minecraft Dedicated Server (IANA official) |
| 25566 |
tcp |
applications |
not scanned |
Datto Backup Agent 1.0.6.0 and earlier does not authenticate incoming connections. This allows an attacker to impersonate a Datto Backup Appliance to "pair" with the agent and issue requests to this agent, if the attacker can reach the agent on TCP port 25566 or 25568, and send unspecified "specific information" by which the agent identifies a network device that is "appearing to be a valid Datto."
References: [CVE-2017-16673] |
| 25568 |
tcp |
applications |
not scanned |
Datto Backup Agent 1.0.6.0 and earlier does not authenticate incoming connections. This allows an attacker to impersonate a Datto Backup Appliance to "pair" with the agent and issue requests to this agent, if the attacker can reach the agent on TCP port 25566 or 25568, and send unspecified "specific information" by which the agent identifies a network device that is "appearing to be a valid Datto."
References: [CVE-2017-16673] |
| 25570 |
tcp,udp |
applications |
not scanned |
Manic Digger default single player port |
| 25575 |
udp |
games |
not scanned |
Minecraft multiplayer server RCON |
| 25576 |
tcp |
sauterdongle |
not scanned |
IANA registered for: Sauter Dongle |
| 25600 |
tcp,udp |
games |
not scanned |
Serious Sam - All Games
SamsidParty operational ports (25600 - 25700) |
| 25601 |
tcp,udp |
games |
not scanned |
Serious Sam - All Games |
| 25604 |
tcp |
idtp |
not scanned |
Identifier Tracing Protocol |
| 25630-25650 |
tcp,udp |
games |
not scanned |
SamsidParty Operational Ports |
| 25637 |
tcp,udp |
motocast |
not scanned |
Motorola MotoCast listening & receiving port |
| 25672 |
tcp |
solarwinds |
not scanned |
SolarWinds Server & Application Monitor (SAM) uses the following ports:
4369 TCP - RabbitMQ messaging (EMPD)
5671 TCP - RabbitMQ messaging (AMQP over TLS/SSL)
5672 TCP - RabbitMQ messaging (AMQP unencrypted backup port)
17777 TCP - Orion module traffic, RSA handshake, AES 256 communication using WCF
17778 TCP - SolarWinds Information Service API
17779 TCP - SolarWinds Toolset Integration over HTTP
17790 TCP - Agent communication with the Orion server
17791 TCP - Agent communication with the Orion server
25672 TCP - RabbitMQ messaging (Erlang distribution)
SolarWinds also uses the following standard ports: 22/TCP, 25/TCP, 135/TCP, 161-162/UDP, 443/TCP, 445/TCP, 465/TCP, 587/TCP, 1801/TCP
Zulip, an open-source team collaboration tool. Zulip Server installs RabbitMQ for internal message passing. In versions of Zulip Server prior to 4.9, the initial installation (until first reboot, or restart of RabbitMQ) does not successfully limit the default ports which RabbitMQ opens; this includes port 25672, the RabbitMQ distribution port, which is used as a management port. RabbitMQ's default "cookie" which protects this port is generated using a weak PRNG, which limits the entropy of the password to at most 36 bits; in practicality, the seed for the randomizer is biased, resulting in approximately 20 bits of entropy. If other firewalls (at the OS or network level) do not protect port 25672, a remote attacker can brute-force the 20 bits of entropy in the "cookie" and leverage it for arbitrary execution of code as the rabbitmq user. They can also read all data which is sent through RabbitMQ, which includes all message traffic sent by users. Version 4.9 contains a patch for this vulnerability. As a workaround, ensure that firewalls prevent access to ports 5672 and 25672 from outside the Zulip server.
References: [CVE-2021-43799] |
| 25685 |
tcp |
trojan |
Premium scan |
MoonPie trojan |
| 25686 |
tcp |
trojans |
Premium scan |
DarkFace, MoonPie trojans |
| 25700 |
tcp,udp |
games |
not scanned |
SamsidParty operational ports (25600 - 25700) |
| 25734 |
tcp,udp |
applications |
not scanned |
SOLIDWORKS SolidNetworkLicense Manager |
| 25735 |
tcp,udp |
applications |
not scanned |
SOLIDWORKS SolidNetworkLicense Manager |
| 25777 |
tcp,udp |
applications |
not scanned |
Xfire Chat
Xfire 1.64 and earlier allows remote attackers to cause a denial of service (client application crash) via a long string to UDP port 25777.
References: [CVE-2006-5391], [BID-20548] |
| 25793 |
|
vocaltec-hos |
not scanned |
Vocaltec Address Server |
| 25799 |
tcp |
trojan |
Premium scan |
FreddyK trojan |
| 25826 |
udp |
collectd |
not scanned |
Collectd (system statistics collection daemon) network plugin uses port 25826 UDP by default. |
| 25857 |
tcp |
trojan |
not scanned |
W32.Frethem.R [Symantec-2002-091915-2134-99] - a member of W32.Frethem family, coded in MS C/C++ and compressed using UPX and PE-Pack. This variant has backdoor capabilities that also allow it to send itself through email. |
| 25867 |
tcp,udp |
applications |
not scanned |
Remote Buffer Overflow in the Kolban Webcam32 Program. Systems listening on this port are likely to be
vulnerable to this attack, although new versions of Webcam32 with the remote administration feature explicitly enabled on the default port may also be listening and are not vulnerable.
References: [CVE-1999-1292] |
| 25885 |
tcp |
trojan |
Premium scan |
MOTD trojan |
| 25888 |
udp |
applications |
not scanned |
Xfire IP Address (206.220.40.146) resolves to gameservertracking.xfire.com |
| 25954 |
udp |
bf-game |
not scanned |
Bitfighter game server [Christopher_Eykamp] (IANA official) |
| 25955 |
udp |
bf-master |
not scanned |
Bitfighter master server [Christopher_Eykamp] (IANA official) |
| 25982 |
tcp |
trojans |
Premium scan |
DarkFace, MoonPie trojans |
| 25999 |
tcp |
applications |
not scanned |
Xfire |
| 26000 |
tcp,udp |
quake |
not scanned |
CCP's EVE Online Online gaming MMORPG
Quake-based games (e.g. Half-Life, Quakeworld, QuakeIII, etc.), Empire Earth 2 (TCP), Star Trek Voyager: Elite Force (UDP)
Multiple buffer overflows in the client and server in Racer 0.5.3 beta 5 allow remote attackers to execute arbitrary code via a long string to UDP port 26000.
References: [CVE-2007-4370], [BID-25297]
The VStr::Resize function in str.cpp in Vavoom 1.24 and earlier allows remote attackers to cause a denial of service (daemon crash) via a string with a negative NewLen value within a certain UDP packet that triggers an assertion error.
References: [CVE-2007-4535], [EDB-30527]
quake (IANA official) |
| 26001 |
udp |
applications |
not scanned |
Vulnerabilities in IGI 2: Covert Strike can be exploited to compromise a vulnerable system. A format string error within the logging functionality when processing RCON commands can be exploited by sending a specially crafted command containing format specifiers to the RCON service (default port 26001/UDP).
References: [SECUNIA-11299] |
| 26002 |
tcp |
pokerstars |
not scanned |
Port used by PokerStars software. It may also use ports 22 and 443. Additionally the update uses HTTP port 80. |
| 26005 |
udp |
games |
not scanned |
James Bond 007: NightFire |
| 26015 |
udp |
games |
not scanned |
James Bond 007: NightFire |
| 26025 |
udp |
games |
not scanned |
James Bond 007: NightFire |
| 26026 |
udp |
games |
not scanned |
James Bond 007: NightFire |
| 26100 |
tcp,udp |
games |
not scanned |
Dead Island |
| 26101 |
tcp |
samsung |
not scanned |
Samsung Gear Fit2 Pro debug port |
| 26103 |
tcp |
malware |
not scanned |
Backdoor.Win32.RemServ.d / Unauthenticated Remote Command Execution - the malware creates a service "RSMSS" that runs as SYSTEM and listens on TCP port 26103. Remote attackers who can connect to an infected host will get back a shell as "nt authority\system".
References: [MVID-2022-0655] |
| 26214 |
tcp,udp |
games |
not scanned |
Dark Reign 2 |
| 26220 |
tcp,udp |
games |
not scanned |
Rome: Total War |
| 26257 |
tcp |
cockroach |
not scanned |
CockroachDB (IANA official) |
| 26264 |
tcp,udp |
gserver |
not scanned |
Gserver |
| 26274 |
udp |
trojan |
not scanned |
Delta Source trojan |
| 26418 |
tcp |
trojans |
Premium scan |
W32.Mytob.HH@mm [2005-071116-2302-99] - a mass-mailing worm with backdoor capabilities. Connects to an IRC server and listens for remote commands on port 26418/tcp. Also opens a backdoor on port 5000/tcp. |
| 26675 |
tcp,udp |
applications |
not scanned |
ActiveSync - data synchronization between a mobile computer and a desktop computer, connected to the Internet. |
| 26681 |
tcp |
trojan |
Premium scan |
Voice Spy trojan |
| 26822 |
udp |
applications |
not scanned |
MSI MysticLight |
| 26850 |
tcp |
applications |
not scanned |
War of No Return Server Port |
| 26880 |
udp |
games |
not scanned |
Auto Assault |
| 26900 |
udp |
games |
not scanned |
ToCA Race Driver 3, Hexen II (TCP/UDP) |
| 26900 |
tcp |
applications |
not scanned |
CCP's EVE Online Online gaming MMORPG |
| 26901 |
tcp,udp |
games |
not scanned |
Hoyle Games
CCP's EVE Online Online gaming MMORPG |
| 27000 |
tcp,udp |
games |
not scanned |
id Software's QuakeWorld master server
FLEXlm (Network License Manager) uses ports 27000-27009 tcp.
Autodesk Network License Manager (adskflex.exe) also needs port 2080 tcp in addition to 27000-27009.
Citrix License Server uses ports 7279 and 27000 TCP.
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client) |
| 27000-27050 |
tcp,udp |
games |
not scanned |
Ports 27000 to 27050 are typically used by some online games.
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client) |
| 27001 |
tcp,udp |
flex-lm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27002 |
tcp,udp |
flexlm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27003 |
tcp,udp |
flex-lm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27004 |
tcp,udp |
flex-lm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27005 |
tcp,udp |
flex-lm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27006 |
tcp,udp |
flex-lm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27007 |
tcp,udp |
flex-lm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27008 |
tcp,udp |
flex-lm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27009 |
tcp,udp |
flex-lm |
not scanned |
Ports 27000+ are used by some online games:
Team Fortress 2, Day of Defeat, Counter Strike use ports 27000-27015
Left 4 Dead 2 (Valve Software) uses ports 27000-27040
Vindictus MMORPG (devCAT/Nexon) uses ports 27000-27025, 36567, and 47611 tcp/udp
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
FLEXlm (Network License Manager) uses ports 27000-27009 tcp |
| 27010 |
udp |
games |
not scanned |
Half Life, Auto Assault, Source engine dedicated server port
Ports 27000 to 27050 are typically used by some online games.
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client) |
| 27011 |
udp |
applications |
not scanned |
Ports 27000 to 27040 are typically used by some online games.
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
Half-Life Mod Master |
| 27014 |
tcp |
games |
not scanned |
Source engine dedicated server port (rare)
Ports 27000 to 27040 are typically used by some online games.
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
Games: Breach, Left 4 Dead and Team Fortress 2 use ports 27014-27050 |
| 27015 |
tcp |
steam |
Premium scan |
GoldSrc and Source engine dedicated server port
Ports 27000 to 27040 are typically used by online games.
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
Games:
Half-Life and its mods, such as Counter-Strike
Empire: Total War (The Creative Assembly)
Left 4 Dead (Valve Corporation)
Team Fortress 2 (Valve Corporation) |
| 27015 |
udp |
applications |
not scanned |
Ports 27000 to 27040 are typically used by some online games.
Steam (Valve gaming platform) uses these ports:
27000-27015 udp (Steam client game client traffic)
27015-27030 tcp/udp (typically matchmaking and HLTV, also used to download Steam content)
27031 udp, 27036 tcp/udp, and 27037 tcp (incoming for in-home streaming)
3478 udp, 4379 udp, 4380 udp (outbound - Steamworks P2P networking and voice chat)
4380 udp (Steam client)
The SV_CheckForDuplicateNames function in Valve Software Half-Life CSTRIKE Dedicated Server 1.6 and earlier allows remote authenticated users to cause a denial of service (infinite loop and daemon hang) via a backslash character at the end of a connection string to UDP port 27015.
References: [CVE-2006-0734] [BID-16619]
The SV_CheckForDuplicateNames function in Valve Software Half-Life CSTRIKE Dedicated Server 1.1.1.0 and earlier allows remote authenticated users to cause a denial of service (infinite loop and daemon hang) via a certain connection string to UDP port 27015 that represents "absence of player informations," a related issue to CVE-2006-0734.
References: [CVE-2003-1325]
Call of Duty: Modern Warfare is vulnerable to a denial of service, caused by an error in the online multiplayer functionality. By sending a specially-crafted datagram to UDP port 27015, a remote attacker could exploit this vulnerability to cause the server to crash.
References: [XFDB-80011], [BID-56475], [SECUNIA-51280] |
| 27016 |
tcp |
applications |
Premium scan |
Space Engineers dedicated servers
Ace Attorney Online dedicated servers
Magicka game uses ports 7331, 27016
Cloud hosting environment network (IANA official) |
| 27017 |
udp |
steam |
not scanned |
Port used by Valve Steam Friends, an instant messaging protocol that is built into Steam, Counter-Strike, Xpire, MBL TF2 Tango.
IBM PowerVC 1.2.0.x through 1.2.0.4, 1.2.1.x through 1.2.1.2, and 1.2.2.x through 1.2.2.2 does not require authentication for the ceilometer NoSQL database, which allows remote attackers to read or write to arbitrary database records, and consequently obtain administrator privileges, via a session on port 27017.
References: [CVE-2015-1937] |
| 27017 |
tcp |
mongodb |
not scanned |
IANA registered for: Mongo database system |
Vulnerabilities listed: 100 (some use multiple ports)
|
