312-50V10 · Question #557
An NMAP scan of a server shows port 69 is open. What risk could this pose?
The correct answer is A. Unauthenticated access. Port 69 is used by TFTP (Trivial File Transfer Protocol), which has no built-in authentication, allowing anyone to read or write files without credentials.
Question
An NMAP scan of a server shows port 69 is open. What risk could this pose?
Options
- AUnauthenticated access
- BWeak SSL version
- CCleartext login
- DWeb portal data leak
How the community answered
(43 responses)- A88% (38)
- B7% (3)
- C2% (1)
- D2% (1)
Why each option
Port 69 is used by TFTP (Trivial File Transfer Protocol), which has no built-in authentication, allowing anyone to read or write files without credentials.
TFTP (Trivial File Transfer Protocol) operates on UDP port 69 and was designed without any authentication or access control mechanism. An open port 69 means any client can potentially request or upload files to the server without providing a username or password, posing a significant unauthorized access risk.
TFTP does not use SSL or TLS in any form, so weak SSL version is not a relevant risk for this protocol.
Cleartext login implies a protocol with a login mechanism transmitted in plaintext (e.g., Telnet or FTP); TFTP has no login mechanism at all.
TFTP is not a web-based protocol and does not expose a web portal, making web portal data leakage inapplicable.
Concept tested: TFTP port 69 unauthenticated access risk
Source: https://datatracker.ietf.org/doc/html/rfc1350
Topics
Community Discussion
No community discussion yet for this question.