nerdexam
EC-Council

312-50V10 · Question #557

An NMAP scan of a server shows port 69 is open. What risk could this pose?

The correct answer is A. Unauthenticated access. Port 69 is used by TFTP (Trivial File Transfer Protocol), which has no built-in authentication, allowing anyone to read or write files without credentials.

Scanning Networks

Question

An NMAP scan of a server shows port 69 is open. What risk could this pose?

Options

  • AUnauthenticated access
  • BWeak SSL version
  • CCleartext login
  • DWeb portal data leak

How the community answered

(43 responses)
  • A
    88% (38)
  • B
    7% (3)
  • C
    2% (1)
  • D
    2% (1)

Why each option

Port 69 is used by TFTP (Trivial File Transfer Protocol), which has no built-in authentication, allowing anyone to read or write files without credentials.

AUnauthenticated accessCorrect

TFTP (Trivial File Transfer Protocol) operates on UDP port 69 and was designed without any authentication or access control mechanism. An open port 69 means any client can potentially request or upload files to the server without providing a username or password, posing a significant unauthorized access risk.

BWeak SSL version

TFTP does not use SSL or TLS in any form, so weak SSL version is not a relevant risk for this protocol.

CCleartext login

Cleartext login implies a protocol with a login mechanism transmitted in plaintext (e.g., Telnet or FTP); TFTP has no login mechanism at all.

DWeb portal data leak

TFTP is not a web-based protocol and does not expose a web portal, making web portal data leakage inapplicable.

Concept tested: TFTP port 69 unauthenticated access risk

Source: https://datatracker.ietf.org/doc/html/rfc1350

Topics

#port 69#TFTP#unauthenticated access#open port risks

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice