CAS-005 · Question #296
CAS-005 Question #296: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #296. The question stem and answer options stay visible for context.
Question
A security analyst is performing a review of a web application. During testing as a standard user, the following error log appears: Error Message in Database Connection Connection to host USA-WebApp-Database failed Database "Prod-DB01" not found Table "CustomerInfo" not found Please retry your request later Which of the following best describes the analyst's findings and a potential mitigation technique?
Options
- AThe findings indicate unsecure references. All potential user input needs to be properly sanitized.
- BThe findings indicate unsecure protocols. All cookies should be marked as HttpOnly.
- CThe findings indicate information disclosure. The displayed error message should be modified.
- DThe findings indicate a SQL injection. The database needs to be upgraded.
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.