Valid CAS-004 Dumps shared by ExamDiscuss.com for Helping Passing CAS-004 Exam! ExamDiscuss.com now offer the newest CAS-004 exam dumps, the ExamDiscuss.com CAS-004 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com CAS-004 dumps with Test Engine here:
A security architect discovers the following page while testing a website for vulnerabilities: 404 - page not found: /gy67162 The page you have requested is no. avai.able on .his server. Apache Tomcat 7.0.52 Which of the following best describes why this issue should be corrected?
Correct Answer: D
Step by Step Explanation: * The information disclosed in the error message (e.g., "Apache Tomcat 7.0.52") provides attackers insights into the software version, which may have known vulnerabilities. * Correcting this issue ensures that attackers cannot use the disclosed information to tailor more sophisticated or targeted attacks. * Best practices include suppressing unnecessary error details to mitigate the risk of information disclosure. Reference: CASP+ Exam Objectives 5.3 - Mitigate vulnerabilities related to service information leakage.