Cisco SIP TFTP Server Detection

Medium Nessus Network Monitor Plugin ID 3764


The remote host is running an inherently insecure protocol or application.


The remote host is running a Cisco SIP VOIP server. The device is configured to allow TFTP access. An attacker can guess the name of the image files and download the device configuration. Such information would include passwords and IDs.


Ensure that the TFTP server and associated ACLs are in alignment with corporate policies and guidelines.

Plugin Details

Severity: Medium

ID: 3764

File Name: 3764.prm

Family: Generic

Published: 2006/10/02

Modified: 2016/01/15

Dependencies: 1174, 3347, 3348

Risk Information

Risk Factor: Medium