Internet TCP port 111 is primarily used by the Sun RPC (Remote Procedure Call) system, which allows procedures to be called on a remote computer over a network. This system is integral to Network File System (NFS), a distributed file system protocol developed by Sun Microsystems. Other services such as NIS (Network Information Service) and NIS+ also use this port. However, due to its association with numerous security vulnerabilities, its use is often discouraged in favor of more secure alternatives.
TCP port 111 is associated with the RPCbind service, which can be exploited if not properly secured. In the past, hackers have used this port to gain unauthorized access to systems by exploiting vulnerabilities in the RPCbind service. For instance, they could use a buffer overflow attack to execute arbitrary code on the target system. Additionally, port 111 can be used for DDoS attacks, where a large number of requests are sent to the port, causing the system to become overwhelmed and unresponsive. Furthermore, hackers can use port scanning techniques to identify systems with port 111 open, making them potential targets for further attacks.
