PCI DSS Requirement 11.2 - Vulnerable Hosts Based on Open Ports Report



Similar documents
TCP/UDP # General Name Short Description

Personal Firewall Default Rules and Components

Communication ports used by Citrix Technologies. July 2011 Version 1.5

Communication Ports Used by Citrix Technologies. April 2011 Version 1.5

Network Configuration Settings

Roles for Servers in the SCW Database

IBM. Vulnerability scanning and best practices

(d-5273) CCIE Security v3.0 Written Exam Topics

Windows Assessment. Vulnerability Assessment Course

41376 UDP performing get device status Command Workstation (CWS), Harmony, Bi-directional Driver TCP/UDP

Samba and Vista with IPv6

VPNSCAN: Extending the Audit and Compliance Perimeter. Rob VandenBrink

Managing Ports and System Services using BT NetProtect Plus firewall

Product Standard General Interworking: Internet Server

Basic Network Configuration

A host-based firewall can be used in addition to a network-based firewall to provide multiple layers of protection.

Protocol Specification & Design. The Internet and its Protocols. Course Outline (trivia) Introduction to the Subject Teaching Methods

Hardening Guide. Installation Guide

Planning and Maintaining a Microsoft Windows Server Network Infrastructure

Citrix TCP Ports Communication Ports Used By Citrix Technologies. August 2009 Version 1.0

PROTECTING DATA IN TRANSIT WITH ENCRYPTION IN M-FILES

MCITP MCITP: Enterprise Administrator on Windows Server 2008 (5 Modules)

Windows Server 2003 default services

Windows 7 Core Services: Application Experience. Application Information. Background Intelligent Transfer. Base Filtering Engine.

1 Data information is sent onto the network cable using which of the following? A Communication protocol B Data packet

Dell OpenManage Version Port Information Guide

Considerations In Developing Firewall Selection Criteria. Adeptech Systems, Inc.

System Administrator Guide Guide de l administrateur système

Pre Sales Communications

Service Name Startup Type Log On As. ActiveX Installer (AxInstSV) Manual Local System. Adaptive Brightness Manual Local Service

List of Common TCP/IP port numbers

ANNEXURE-1 TO THE TENDER ENQUIRY NO.: DPS/AMPU/MIC/1896. Network Security Software Nessus- Technical Details

SonicWALL PCI 1.1 Implementation Guide

CAC/PIV PKI Solution Installation Survey & Checklist

VMware vcenter Log Insight Security Guide

Before deploying SiteAudit it is recommended to review the information below. This will ensure efficient installation and operation of SiteAudit.

SKV PROPOSAL TO CLT FOR ACTIVE DIRECTORY AND DNS IMPLEMENTATION

Updating your Network Infrastructure and Active Directory Technology Skills to Windows Server 2008

ANS Monitoring as a Service. Customer requirements

FAQs for Oracle iplanet Proxy Server 4.0

SonicWALL WAN Acceleration FAQ Document

BlackBerry Enterprise Service 10. Version: Configuration Guide

Chapter 12 Supporting Network Address Translation (NAT)

Virtual Web Appliance Setup Guide

NETASQ MIGRATING FROM V8 TO V9

1 Introduction to the Axxess Server

Implementing, Managing and Maintaining a Microsoft Windows Server 2003 Network Infrastructure: Network Services Course No.

Designing and Implementing a Server Infrastructure

Implementing and Administering Security in a Microsoft Windows Server 2003 Network

Device Log Export ENGLISH

MCSE SYLLABUS. Exam : Managing and Maintaining a Microsoft Windows Server 2003:

Xerox WorkCentre 7755 / 7765 / System Administrator Guide Guide de l administrateur système Español Português 7755 / 7765 / 7775

NETASQ ACTIVE DIRECTORY INTEGRATION

MCSE Core exams (Networking) One Client OS Exam. Core Exams (6 Exams Required)

Designing a Windows Server 2008 Applications Infrastructure

How To Pass A Credit Course At Florida State College At Jacksonville

TCP/IP Ports and Protocols:

Secure Shell (SSH) used for secure logins, file transfers (scp, sftp) and port forwarding

Steps for Basic Configuration

Comodo MyDLP Software Version 2.0. Installation Guide Guide Version Comodo Security Solutions 1255 Broad Street Clifton, NJ 07013

Automatic Configuration and Service Discovery for Networked Smart Devices

Xerox Color 550/560 System Administrator Guide

MCSA/MCITP: Enterprise Windows Server 2008 Course 9952; 14 Days, Instructor-led

Review: Lecture 1 - Internet History

Colasoft Capsa Technical White Paper. Maximize Network Value

Virtual Managment Appliance Setup Guide

NETWORK USER S GUIDE MFC-7440N MFC-7345N DCP-7045N. Multi-Protocol On-board Ethernet Multi-function Print Server

ACE Management Server Deployment Guide VMware ACE 2.0

Windows Server. Introduction to Windows Server 2008 and Windows Server 2008 R2

User s Guide [Network Administrator]

OVERVIEW OF TYPICAL WINDOWS SERVER ROLES

Citrix - CXD Deploying Citrix XenDesktop 7 Solutions

MCITP Syllabus. Duration 1month

Sophos UTM. Remote Access via PPTP. Configuring UTM and Client

Configuring Notification for Business Glossary

ICANWK401A Install and manage a server

Copyright

F5 BIG-IP V9 Local Traffic Management EE Demo Version. ITCertKeys.com

VMware Identity Manager Connector Installation and Configuration

IBM Proventia Management SiteProtector. Configuring Firewalls for SiteProtector Traffic Version 2.0, Service Pack 8.1

Transport server data paths

CCIE Security Written Exam ( ) version 4.0

Click Studios. Passwordstate. Installation Instructions

Updating Your Network Infrastructure and Active Directory Technology Skills to Windows Server 2008

TECHNICAL NOTE 01/02 PROTECTING YOUR COMPUTER NETWORK

Security Guide for ActiveRoles Server 6.1

VNLINFOTECH JOIN US & MAKE YOUR FUTURE BRIGHT. mcsa (70-413) Microsoft certified system administrator. (designing & implementing server infrasturcure)

OPAS Prerequisites. Prepared By: This document contains the prerequisites and requirements for setting up OPAS.

Addresses, Protocols, and Ports

Creating the Conceptual Design by Gathering and Analyzing Business and Technical Requirements

IBM Security SiteProtector System Configuring Firewalls for SiteProtector Traffic

Administrator Guide. v 11

How To Set Up A Server On A Windows 7.5 (Windows) With A Powerline (Windows 7) On A Pc Orion (Windows 8) On An Ipm (Networking) On Your Pc Ornet (Netware)

Central Administration User Guide

IBM Security QRadar Version Common Ports Guide

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

Network Security Fundamentals

Owner of the content within this article is Written by Marc Grote

Transcription:

Report This report lists the most vulnerable host machines, based on the number of open ports found. Generated on Generated by 6/3/2011 2:27:16 PM calin Advanced Settings Report items Target Entire Network Grouped by Sorted by 'Computer' - Ascending AND '' - Ascending 'Port Number' - Ascending Reviewed by Reviewed Date Signature

BACKUP1 135 139 162 445 514 554 1080 2002 DCE endpoint resolution Simple Network Management Protocol Trap (SNMPTRAP) Microsoft-DS Active Directory, Windows shares Shell Real Time Streaming Protocol (RTSP) SOCKS proxy Duddie, Senna Spy Generator, Sensive Yes 123 137 138 Network Time Protocol (NTP) NetBIOS NetBIOS Datagram Service Page: 2 of 19

161 162 500 514 1434 1900 3702 4500 5004 5005 5355 Simple Network Management Protocol (SNMP) Simple Network Management Protocol Trap (SNMPTRAP) Internet Security Association and Key Management Protocol (ISAKMP) Syslog Microsoft SQL Server database management system Monitor Microsoft SSDP Enables discovery of UPnP devices Web Services Dynamic Discovery (WS-Discovery), used by various components of Windows Vista IPsec NAT traversal (RFC 3947) RTP (Real-time Transport Protocol) media data (RFC 3551, RFC 4571) RTP (Real-time Transport Protocol) control protocol (RFC 3551, RFC 4571) LLMNR - Link-Local Multicast Name Resolution FILESERVER 53 88 Domain Name System (DNS) Kerberos - authentication system Page: 3 of 19

88 Kerberos - authentication system 111 Sun Remote Procedure Call 135 DCE endpoint resolution 139 389 Lightweight Directory Access Protocol (LDAP) 445 Microsoft-DS Active Directory, Windows shares 464 Kerberos Change/Set password 593 HTTP RPC Ep Map, Remote procedure call over Hypertext Transfer Protocol 636 Lightweight Directory Access Protocol over TLS/SSL (LDAPS) 902 VMware Authentication, If this service is not installed beware could be trojan: Net-Devil, Pest 1039 tcpsvcs, If this service is not installed beware could be trojan: Dosh 1047 InetInfo, If this service is not installed beware could be trojan: RemoteNC 2049 NFS => Network File System 3268 msft-gc, Microsoft Global Catalog (LDAP service which contains data from Active Directory forests) Page: 4 of 19

3268 PCI DSS Port Requirement Type 11.2 - Vulnerable Hosts Based on Open msft-gc, Microsoft Global Catalog (LDAP service which contains data from Active Directory forests) 3269 msft-gc-ssl, Microsoft Global Catalog over SSL (similar to port 3268, LDAP over SSL) 3389 Terminal Services 53 67 68 88 111 123 137 138 389 464 500 Domain Name System (DNS) Bootstrap Protocol (BOOTP) Server; also used by Dynamic Host Configuration Protocol (DHCP) Bootstrap Protocol (BOOTP) Client; also used by Dynamic Host Configuration Protocol (DHCP) Kerberos 5 Sun Remote Procedure Call Network Time Protocol (NTP) NetBIOS NetBIOS Datagram Service Lightweight Directory Access Protocol (LDAP) Kerberos Change/Set password Internet Security Association and Key Management Protocol (ISAKMP) Page: 5 of 19

500 Internet Security Association and Key Management Protocol (ISAKMP) 2049 shilp 2104 zephyr-hm Project Athena Zephyr tification Service hostmanager 4500 IPsec NAT traversal (RFC 3947) 5355 LLMNR - Link-Local Multicast Name Resolution JAKE04 135 139 445 1027 1039 1081 3389 DCE endpoint resolution Microsoft-DS Active Directory, Windows shares Inetinfo, If this service is not installed beware could be trojan: Clandestine, DataSpy and others tcpsvcs, If this service is not installed beware could be trojan: Dosh WinHole Yes Terminal Services Page: 6 of 19

123 137 138 500 1900 2104 3702 4500 5355 Network Time Protocol (NTP) NetBIOS NetBIOS Datagram Service Internet Security Association and Key Management Protocol (ISAKMP) Microsoft SSDP Enables discovery of UPnP devices zephyr-hm Project Athena Zephyr tification Service hostmanager Web Services Dynamic Discovery (WS-Discovery), used by various components of Windows Vista IPsec NAT traversal (RFC 3947) LLMNR - Link-Local Multicast Name Resolution METEO 80 Service 135 139 Hypertext Transfer Protocol (HTTP) HTTP (Hyper Text Transfer Protocol) DCE endpoint resolution Page: 7 of 19

PCI DSS 139 Requirement 11.2 - Vulnerable Hosts Based on Open 445 Microsoft-DS Active Directory, Windows shares 1433 Microsoft SQL Server database management system Server 2002 Duddie, Senna Spy Generator, Sensive Yes 3389 Terminal Services 50551 R0xr4t Yes 123 137 138 500 1434 1900 2104 3702 Network Time Protocol (NTP) NetBIOS NetBIOS Datagram Service Internet Security Association and Key Management Protocol (ISAKMP) Microsoft SQL Server database management system Monitor Microsoft SSDP Enables discovery of UPnP devices zephyr-hm Project Athena Zephyr tification Service hostmanager Web Services Dynamic Discovery (WS-Discovery), used by various components of Windows Vista Page: 8 of 19

3702 Web Services Dynamic Discovery (WS-Discovery), used by various components of Windows Vista 4500 IPsec NAT traversal (RFC 3947) 5355 LLMNR - Link-Local Multicast Name Resolution MIRA 80 Service 135 139 443 445 2002 3389 Hypertext Transfer Protocol (HTTP) HTTP (Hyper Text Transfer Protocol) DCE endpoint resolution Hypertext Transfer Protocol over TLS/SSL (HTTPS) Microsoft-DS Active Directory, Windows shares Duddie, Senna Spy Generator, Sensive Yes Terminal Services 123 137 Network Time Protocol (NTP) Page: 9 of 19

137 138 NetBIOS NetBIOS Datagram Service 500 Internet Security Association and Key Management Protocol (ISAKMP) 1434 Microsoft SQL Server database management system Monitor 1900 Microsoft SSDP Enables discovery of UPnP devices 2104 zephyr-hm Project Athena Zephyr tification Service hostmanager 3702 Web Services Dynamic Discovery (WS-Discovery), used by various components of Windows Vista 4500 IPsec NAT traversal (RFC 3947) 5353 Multicast DNS (MDNS) 5355 LLMNR - Link-Local Multicast Name Resolution NODE1 25 Service 53 80 Service Simple Mail Transfer Protocol (SMTP) SMTP (Simple Mail Transfer Protocol) Domain Name System (DNS) Hypertext Transfer Protocol (HTTP) HTTP (Hyper Text Transfer Protocol) Page: 10 of 19

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information