Definition[]
The Trivial File Transfer Protocol (TFTP) is a file transfer program that permits the copying of files without logging in.
Overview[]
Some versions of this program had a well-known security hole that allowed users on the Internet to access a file containing encrypted passwords without logging into the system. Once the hackers accessed the password file, they (1) probed for accounts with no passwords or accounts where the username and password were identical, or (2) downloaded the password file to another computer and ran a password cracking program — a program that matches words found in the dictionary against the encrypted password file. Finally, the hackers entered the system, using an authorized account and password, and were granted the same privileges as the authorized user.