3 matches found
CVE-2008-1883
The server in Blackboard Academic Suite 7.x stores MD5 password hashes that are provided directly by clients, which makes it easier for remote attackers to access accounts via a modified client that skips the javascript/md5.js hash calculation, and instead sends an arbitrary MD5 string...
CVE-2008-1883
The server in Blackboard Academic Suite 7.x stores MD5 password hashes that are provided directly by clients, which makes it easier for remote attackers to access accounts via a modified client that skips the javascript/md5.js hash calculation, and instead sends an arbitrary MD5 string...
CVE-2008-1883
Blackboard Academic Suite 7.x stores MD5 password hashes provided directly by clients, enabling remote attackers to access accounts by sending an arbitrary MD5 string instead of the client-side hashed value. The server accepts client-provided hashes without validating the JavaScript/MD5 step. Aff...