LAB 236 – Defending Java Applications Against Sensitive Information in Error Messages
Course Overview
The Defending Against Sensitive Information in Error Messages lab assesses the learner’s ability to prevent disclosing sensitive information in error messages.
In this lab the learner will fix a vulnerability that discloses sensitive information in error messages. The lab features an authentication page that discloses whether a specific username is valid or not when invalid authentication credentials are provided, thus allowing valid username enumeration.
Course Details
Course Number: LAB 236
Course Duration: 10 minutes
Course CPE Credits: 0.25
NICE Specialty Areas
Available Languages
- English