The default configuration of NCSA Telnet package for Macintosh and PC enables FTP, even though it does not include an "ftp=yes" line, which allows rem...
TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.