Navigate

Check: WN10-00-000120

Microsoft Windows 10 STIG: WN10-00-000120 (in versions v3 r2 through v1 r7)

Title

The TFTP Client must not be installed on the system. (Cat II impact)

Discussion

Some protocols and services do not support required security features, such as encrypting passwords or traffic.

Check Content

The "TFTP Client" is not installed by default. Verify it has not been installed. Navigate to the Windows\System32 directory. If the "TFTP" application exists, this is a finding.

Fix Text

Uninstall "TFTP Client" from the system. Run "Programs and Features". Select "Turn Windows Features on or off". De-select "TFTP Client".

Additional Identifiers

Rule ID: SV-220722r958480_rule

Vulnerability ID: V-220722

Group Title: SRG-OS-000096-GPOS-00050

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000382	Configure the system to prohibit or restrict the use of organization-defined prohibited or restricted functions, system ports, protocols, software, and/or services.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-7	Least Functionality