|
Family: General --> Category: attack
TFTP file detection (Cisco IOS CA) Vulnerability Scan
Vulnerability Scan Summary Acertains if the remote host has sensitive files exposed via TFTP (Cisco IOS CA)
Detailed Explanation for this Vulnerability Test
The remote host has a TFTP server installed that is serving one or more
sensitive Cisco IOS Certificate Authority (CA) files.
These files potentially include the private key for the CA so should be considered
extremely sensitive and should not be exposed to unnecessary scrutiny.
Solution : If it is not required, disable the TFTP server. Otherwise restrict access to
trusted sources only.
Risk Factor : High
Click HERE for more information and discussions on this network vulnerability scan.
|