Port 3 Details
known port assignments and vulnerabilities
threat/application/port search:
Port(s) |
Protocol |
Service |
Details |
Source |
3 |
tcp,udp |
compressnet |
Delta Force uses port 3 (TCP)
Midnight Commander
SynDrop trojan
Backdoor.Win32.Quux / Weak Hardcoded Credentials - the malware listens on TCP port 3. Authentication is required, however the password "Faraon" translated from Romanian as "Pharaoh" is weak and hardcoded in cleartext within the PE file. Third-party adversaries who can reach an infected host can call commands made available by the backdoor. Commands include uploading files and code execution. Theres a need to code a custom client to communicate with the infected host as nc64.exe and telnet send LF characters and will fail authentication when sending credentials containing "\n" etc. Once connected if we send any files they will be written to Windows\System unless calling the "SetCurrDir" commmand.
References: [MVID-2022-0656]
Compression Process (IANA official) |
SG
|
3 |
tcp,udp |
|
Compression Process (official) |
Wikipedia
|
3 |
tcp,udp |
compressnet |
Midnight Commander Sometimes this program is assigned to this port |
Bekkoame
|
3 |
tcp,udp |
compressnet |
Compression Process |
IANA
|
|
4 records found
Related ports: 2 4 31 35 310 683
|