Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC Exam GSNA Topic 6 Question 43 Discussion

Actual exam question for GIAC's GSNA exam
Question #: 43
Topic #: 6
[All GSNA Questions]

Which TCP and UDP ports can be used to start a NULL session attack in NT and 2000 operating systems?

Show Suggested Answer Hide Answer
Suggested Answer: C

A null session is an anonymous connection to a freely accessible network share called IPC$ on Windows-based servers. It allows immediate

read and write access with Windows NT/2000 and read-access with Windows XP and 2003.

The command to be inserted at the DOS-prompt is as follows:

net use \IP address_or_host nameipc$ '' '/user:'

net use

Port numbers 139 TCP and 445 UDP can be used to start a NULL session attack.


by Becky at Apr 08, 2024, 09:36 PM

Limited Time Offer

25%

Off

Get Premium GSNA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Kaitlyn
6 months ago
I've read that C) 139 and 445 have been exploited in the past for NULL session attacks.
upvoted 0 times
...
Arthur
6 months ago
I'm not sure, I was leaning towards B) 203 and 333.
upvoted 0 times
...
Carey
6 months ago
I agree with those ports are commonly used for NULL session attacks.
upvoted 0 times
...
Kaitlyn
7 months ago
I think the answer is C) 139 and 445.
upvoted 0 times
...
Jade
7 months ago
Definitely, understanding which ports are vulnerable is crucial for network security.
upvoted 0 times
...
Ernie
7 months ago
I'm not sure, but I think it's important to know how to prevent such attacks.
upvoted 0 times
...
Ernest
7 months ago
I agree with Jade, because these ports are commonly used for NULL session attacks.
upvoted 0 times
...
Jade
7 months ago
I think the answer is C) 139 and 445.
upvoted 0 times
...
Arminda
8 months ago
Hmm, I'm going to go with C) 139 and 445. Seems like the most logical choice, and I don't want to risk messing with any other ports. Although, if I had a time machine, I'd go back and punch the guy who came up with NULL session attacks.
upvoted 0 times
...
Luther
8 months ago
Ah, the old NULL session trick. I'm pretty sure the answer is C) 139 and 445. Though, to be honest, I'd rather not even think about how to do a NULL session attack. Sounds like a good way to get in trouble!
upvoted 0 times
...
Adaline
8 months ago
I bet the answer is C) 139 and 445. Those are the classic ports used for SMB, which is what the NULL session attack targets. Plus, I heard the exam proctors love throwing these kinds of security-related questions in there.
upvoted 0 times
...
Dick
8 months ago
Hmm, I'm not too familiar with NULL session attacks. Is that like when you try to log in without a password or something? Seems kind of sketchy to me.
upvoted 0 times
...
Madonna
8 months ago
Ooh, I've heard about these NULL session attacks before. I think the answer is C) 139 and 445. Those were the ports used in the old days to exploit the file sharing features in NT and 2000.
upvoted 0 times
Kaycee
7 months ago
User 2
upvoted 0 times
...
Lavonne
7 months ago
User 1
upvoted 0 times
...
...
Denae
8 months ago
Whoa, a NULL session attack question? This is going to be tricky. I'm not sure I even want to attempt this one, it seems like a potential minefield.
upvoted 0 times
...

Save Cancel