|
Family: General --> Category: attack
TFTP file detection (HP Ignite-UX passwd) Vulnerability Scan
Vulnerability Scan Summary Acertains if the remote host has sensitive files exposed via TFTP (HP Ignite-UX passwd)
Detailed Explanation for this Vulnerability Test
The remote host has a vulnerable version of the HP Ignite-UX application installed
that exposes the /etc/passwd file to anonymous TFTP access.
Solution: Upgrade to a version of the Ignite-UX application that does not exhibit this
behaviour. If it is not required, disable or uninstall the TFTP server.
Otherwise restrict access to trusted sources only.
See also : http://www.corsaire.com/advisories/c041123-001.txt
Risk factor: High
Click HERE for more information and discussions on this network vulnerability scan.
|