CVE-2008-5127

Name of the Vulnerable Software and Affected Versions Ocean12 Contact Manager Pro version 1.02

Description The issue allows remote attackers to obtain sensitive information due to insufficient access control. Sensitive information is stored under the web root, making it accessible via a direct request to the "o12con.mdb" file.

Recommendations For Ocean12 Contact Manager Pro version 1.02, consider restricting access to the "o12con.mdb" file to minimize the risk of exploitation. As a temporary workaround, limit direct requests to this file until a more permanent solution is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.