CompTIA Exam PT0-003 Topic 3 Question 23 Discussion

Actual exam question for CompTIA's PT0-003 exam

Question #: 23
Topic #: 3

[Information Gathering and Vulnerability Scanning]

A penetration tester performs a service enumeration process and receives the following result after scanning a server using the Nmap tool:

PORT STATE SERVICE

22/tcp open ssh

25/tcp filtered smtp

111/tcp open rpcbind

2049/tcp open nfs

Based on the output, which of the following services provides the best target for launching an attack?

ADatabase

BRemote access

CEmail

DFile sharing

Show Suggested Answer

Suggested Answer: D

Based on the Nmap scan results, the services identified on the target server are as follows:

22/tcp open ssh:

Service: SSH (Secure Shell)

Function: Provides encrypted remote access.

Attack Surface: Brute force attacks or exploiting vulnerabilities in outdated SSH implementations. However, it is generally considered secure if properly configured.

25/tcp filtered smtp:

Service: SMTP (Simple Mail Transfer Protocol)

Function: Email transmission.

Attack Surface: Potential for email-related attacks such as spoofing, but the port is filtered, indicating that access may be restricted or protected by a firewall.

111/tcp open rpcbind:

Service: RPCBind (Remote Procedure Call Bind)

Function: Helps in mapping RPC program numbers to network addresses.

Attack Surface: Can be exploited in specific configurations, but generally not a primary target compared to others.

2049/tcp open nfs:

Service: NFS (Network File System)

Function: Allows for file sharing over a network.

Attack Surface: NFS can be a significant target for attacks due to potential misconfigurations that can allow unauthorized access to file shares or exploitation of vulnerabilities in NFS services.

Conclusion: The NFS service (2049/tcp) provides the best target for launching an attack. File sharing services like NFS often contain sensitive data and can be vulnerable to misconfigurations that allow unauthorized access or privilege escalation.

by Gracia at May 02, 2025, 11:39 AM

Limited Time Offer

25%

2 months ago

File sharing all the way, baby! I bet the system admin is so focused on the SSH and SMTP services, they'll never see the NFS attack coming. It's like a ninja in the shadows, ready to strike.

upvoted 0 times

Stephanie

1 months ago

User 3: Let's exploit that blind spot and see what we can find on the server.

upvoted 0 times

...

Alida

1 months ago

User 2: Yeah, the admin is probably not even thinking about the NFS service as a vulnerability.

upvoted 0 times

...

Rosamond

1 months ago

User 1: I agree, file sharing is definitely the best target for an attack.

upvoted 0 times

...

3 months ago

Hmm, I'd say the NFS service is the best target. Who doesn't love a good old-fashioned file-sharing attack, am I right? It's like a hacker's version of 'share and share alike'.

upvoted 0 times

Cristal

2 months ago

A: Absolutely, it's a prime opportunity for exploitation. We should definitely keep an eye on that service.

upvoted 0 times

...

Art

2 months ago

B: I agree, file sharing can be a goldmine for attackers. They could easily plant malicious files.

upvoted 0 times

...

Vincent

2 months ago

A: Yeah, NFS is definitely a juicy target. Easy access to files and potential for data theft.

upvoted 0 times

...