Navigate

Check: WN10-00-000120

Microsoft Windows 10 STIG: WN10-00-000120 (in versions v2 r9 through v1 r7)

Title

The TFTP Client must not be installed on the system. (Cat II impact)

Discussion

Some protocols and services do not support required security features, such as encrypting passwords or traffic.

Check Content

The "TFTP Client" is not installed by default. Verify it has not been installed. Navigate to the Windows\System32 directory. If the "TFTP" application exists, this is a finding.

Fix Text

Uninstall "TFTP Client" from the system. Run "Programs and Features". Select "Turn Windows Features on or off". De-select "TFTP Client".

Additional Identifiers

Rule ID: SV-220722r569187_rule

Vulnerability ID: V-220722

Group Title: SRG-OS-000096-GPOS-00050

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000382	The organization configures the information system to prohibit or restrict the use of organization-defined functions, ports, protocols, and/or services.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-7	Least Functionality