Nessus Plugin #17341
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
TFTP file detection (Cisco IOS CA)
- Family:
- General
- Category:
- attack
- Copyright:
- This NASL script is Copyright 2005 Corsaire Limited.
- Summary:
- Determines if the remote host has sensitive files exposed via TFTP (Cisco IOS CA)
- Version:
- $Revision: 1.1 $
- Cve_id:
- -
- Bugtraq_id:
- -
- Xrefs:
- -
- Description:
The remote host has a TFTP server installed that is serving one or more
sensitive Cisco IOS Certificate Authority (CA) files.
These files potentially include the private key for the CA so should be considered
extremely sensitive and should not be exposed to unnecessary scrutiny.
Solution : If it is not required, disable the TFTP server. Otherwise restrict access to
trusted sources only.
Risk Factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.