TFTP File Detection (Cisco IOS) Network Vulnerability

Summary

The remote host has a TFTP server installed that is serving one or more sensitive Cisco IOS files.\n\nThese files potentially include passwords and other sensitive information, so should not be exposed to unnecessary scrutiny.

Solution

If it is not required, disable the TFTP server. Otherwise restrict access to trusted sources only.

Severity

Classification

CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

WebLogic Server /%00/ bug
Check for Apache Multiple / vulnerability
VMware Products Directory Traversal Vulnerability
Samba Root File System Access Security Vulnerability
TheServer clear text password

TFTP file detection (Cisco IOS)

Take action and discover your vulnerabilities