The Outline Designer module 5.x before 5.x-1.4 for Drupal changes each content reader's authentication level to match that of the content author, which might allow remote attackers to gain privileges.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3096)