Summary
The remote host has a TFTP server installed that is serving one or more sensitive Cisco IOS Certificate Authority (CA) files.
Solution
If it is not required, disable the TFTP server. Otherwise restrict access to trusted sources only.
Insight
These files potentially include the private key for the CA so should be considered extremely sensitive and should not be exposed to unnecessary scrutiny.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apache Traffic Server Remote DNS Cache Poisoning Vulnerability
- Asterisk Missing ACL Check Remote Security Bypass Vulnerability
- Apple Safari Webkit Multiple Vulnerabilities - March 2011
- Adobe Reader Information Disclosure Vulnerability Jun05 (Mac OS X)
- Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Win)