Rpcbind - 111

Should not be exposed externally. we could write up a Low finding for Unnecessary Exposed Services or similar.

rpcinfo $HOST
   program version netid     address                service    owner
    100000    4    tcp6      ::.0.111               portmapper superuser
    100000    3    tcp6      ::.0.111               portmapper superuser
    100000    4    udp6      ::.0.111               portmapper superuser
    100000    3    udp6      ::.0.111               portmapper superuser
    100000    4    tcp       0.0.0.0.0.111          portmapper superuser
    100000    3    tcp       0.0.0.0.0.111          portmapper superuser
    100000    2    tcp       0.0.0.0.0.111          portmapper superuser
    100000    4    udp       0.0.0.0.0.111          portmapper superuser
    100000    3    udp       0.0.0.0.0.111          portmapper superuser
    100000    2    udp       0.0.0.0.0.111          portmapper superuser
    100000    4    local     /run/rpcbind.sock      portmapper superuser
    100000    3    local     /run/rpcbind.sock      portmapper superuser

Nothing Interesting.

111/TCP/UDP - Pentesting Portmapper - HackTricksbook.hacktricks.wiki

According to HackTricks, we could exploit it if we had services like: nfs, ypbind, rusersd running.

PreviousMail - 25,110,143,993,995 NextWeb Enumeration

Last updated 1 year ago