CompTIA Security Exam Practice Questions Sample SY0 501 Q219

Joe, the security administrator, sees this in a vulnerability scan report:

“The server 10.1.2.232 is running Apache 2.2.20 which may be vulnerable to a mod_cgi exploit.”

Joe verifies that the mod_cgi module is not enabled on 10.1.2.232. This message is an example of:

A. a threat.
B. a risk.
C. a false negative.
D. a false positive.

Correct Answer: D