Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GSNA Exam - Topic 1 Question 13 Discussion

Actual exam question for GIAC's GSNA exam
Question #: 13
Topic #: 1
[All GSNA Questions]

Which TCP and UDP ports can be used to start a NULL session attack in NT and 2000 operating systems?

Show Suggested Answer Hide Answer
Suggested Answer: C

A null session is an anonymous connection to a freely accessible network share called IPC$ on Windows-based servers. It allows immediate

read and write access with Windows NT/2000 and read-access with Windows XP and 2003.

The command to be inserted at the DOS-prompt is as follows:

net use \IP address_or_host nameipc$ '' '/user:'

net use

Port numbers 139 TCP and 445 UDP can be used to start a NULL session attack.


by Merlyn at May 04, 2022, 12:54 PM

Limited Time Offer

25%

Off

Get Premium GSNA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Willow
5 months ago
I thought NULL sessions were outdated, do they still work?
upvoted 0 times
...
Lashaunda
5 months ago
Definitely 139 and 445, classic ports for that attack.
upvoted 0 times
...
Jerry
5 months ago
Wait, are you guys sure? I thought it was different ports.
upvoted 0 times
...
Katlyn
6 months ago
Yeah, I agree with that!
upvoted 0 times
...
Sherrell
6 months ago
Pretty sure it's 139 and 445.
upvoted 0 times
...
Juliana
6 months ago
I thought NULL sessions used different ports, but now I'm second-guessing myself. Is it really C, or could it be something else?
upvoted 0 times
...
Gayla
6 months ago
I practiced a question like this, and I feel like 139 and 445 were mentioned as common ports for vulnerabilities.
upvoted 0 times
...
Dewitt
6 months ago
I'm not entirely sure, but I remember something about those ports being used for SMB. Could it be option C?
upvoted 0 times
...
Chauncey
6 months ago
I think the ports for a NULL session attack are related to file sharing, so maybe it's 139 and 445?
upvoted 0 times
...
Lewis
6 months ago
Hmm, I'm not entirely sure about this one. I know there are a few different command line tools related to table management, but I'm not positive which ones are used for determining data order. I'll have to think it through carefully.
upvoted 0 times
...
Adolph
6 months ago
Hmm, not sure about this one. I'll need to think carefully about the legal and ethical considerations around commitments to customers. Gotta make sure I don't miss anything important.
upvoted 0 times
...
Amalia
6 months ago
Hmm, I'm not too sure about the Value Index. I'll have to think this through carefully.
upvoted 0 times
...

Save Cancel