Cisco IOS TFTP File Disclosure
Medium Nessus Plugin ID 17342
SynopsisThe remote TFTP daemon is serving potentially sensitive content.
DescriptionThe remote host has a TFTP server installed that is serving one or more Cisco IOS files. These files may contain passwords and other sensitive information. A remote attacker could use this information to mount further attacks.
SolutionDisable the TFTP service if it is not being used. Otherwise, restrict access to trusted sources only.