| VID |
24086 |
| Severity |
40 |
| Port |
69 |
| Protocol |
UDP |
| Class |
BackDoor |
| Detailed Description |
The TFTP server seems to act as a backdoor. Trivial File Transfer Protocol (TFTP) allows remote users to copy, read, or write to files without requiring authentication. TFTP is sometimes legitimately used for bootstrapping by diskless workstations.
While trying to fetch some file through the affected TFTP server, this check obtained an executable file. This may be probably a backdoor.
* Platforms Affected:
TFTP Any version
Any operating system Any version |
| Recommendation |
Remove infected files immediately. Most antivirus software companies have updates their software to keep various backdoors at bay, so you should download any available updates through its Live Update feature and remove the backdoors using antivirus software.
-- AND --
You ensure that all patches for your operating system are applied in order to minimize the threat of a system compromise. And enforce a password policy for all user accounts. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
