Which of the following ports are used by null sessions on your network?

Prepare for the EC-Council Certified Ethical Hacker (CEH) Certification. Master concepts with flashcards and multiple choice questions, each enriching your understanding. Ready yourself to succeed in your exam!

Multiple Choice

Which of the following ports are used by null sessions on your network?

Explanation:
Null sessions are unauthenticated connections to Windows file sharing services, often used to enumerate resources such as shares and user names. These connections reach SMB either through NetBIOS over TCP/IP (port 139) or directly over TCP/IP SMB (port 445). Because no credentials are provided, these sessions can reveal information about the server’s shares and users, which is why these ports are specifically associated with null sessions. The other port pairs correspond to different services (FTP on 21, SSH on 22, web traffic on 80/443, and SQL Server on 1433/1434) and are not used for null SMB sessions. So, the ports used by null sessions are 139 and 445.

Null sessions are unauthenticated connections to Windows file sharing services, often used to enumerate resources such as shares and user names. These connections reach SMB either through NetBIOS over TCP/IP (port 139) or directly over TCP/IP SMB (port 445). Because no credentials are provided, these sessions can reveal information about the server’s shares and users, which is why these ports are specifically associated with null sessions. The other port pairs correspond to different services (FTP on 21, SSH on 22, web traffic on 80/443, and SQL Server on 1433/1434) and are not used for null SMB sessions. So, the ports used by null sessions are 139 and 445.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy