CVE-2008-6908

2009-08-06T17:30:00
ID CVE-2008-6908
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:29:00

Description

Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, uses an insecure hash when signing requests, which allows remote attackers to impersonate other users and gain privileges.