Apply suggestions from code review

Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
2026-05-01 11:45:14 +02:00 · 2022-03-25 11:06:46 +00:00
parent 95a63a69a5
commit 6b6ee61d3f
1 changed files with 2 additions and 2 deletions
--- a/cpp/ql/src/Security/CWE/CWE-497/ExposedSystemData.qhelp
+++ b/cpp/ql/src/Security/CWE/CWE-497/ExposedSystemData.qhelp
@@ -3,13 +3,13 @@
  "qhelp.dtd">
 <qhelp>
 <overview>
-<p>Exposing system data or debugging information may help an adversary to learn about the system and form an attack plan.  An attacker can use error messages that reveal technologies, operating systems, and product versions to tune their attack against known vulnerabilities in these technologies.</p>
+<p>Exposing system data or debugging information may help a malicious user learn about the system and form an attack plan.  An attacker can use error messages that reveal technologies, operating systems, and product versions to tune their attack against known vulnerabilities in these technologies.</p>

 <p>This query finds locations where system configuration information might be revealed to a remote user.</p>
 </overview>

 <recommendation>
-<p>Do not expose system configuration information to remote users.  Be wary of the difference between information that could be helpful to users, and unnecessary details that could be useful to an adversary.</p>
+<p>Do not expose system configuration information to remote users.  Be wary of the difference between information that could be helpful to users, and unnecessary details that could be useful to a malicious user.</p>
 </recommendation>

 <example>