EUVD-2003-0821

Malware in sbrugna...

CVE-2003-0830

Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable...

Missing TTLS Encryption

github.com/edgelesssys/marblerun is vulnerable to Missing TTLS Encryption. The vulnerability is due to unsecured plain TCP connections between Marbles if the parameters don't include an environment variable. This flaw allows an attacker intercept and manipulate the communication between Marbles...

Transparent TLS may not be applied to Marbles with certain manifest configurations

Transparent TLS TTLS is a MarbleRun feature that wraps plain TCP connections between Marbles in TLS. In the manifest, a user defines the connections that should be considered. Impact If a Marble is configured for TTLS, but doesn't have an environment variable defined in its parameters, TTLS is no...

GHSA-X5R5-2QRX-RQJ8 Transparent TLS may not be applied to Marbles with certain manifest configurations

Transparent TLS TTLS is a MarbleRun feature that wraps plain TCP connections between Marbles in TLS. In the manifest, a user defines the connections that should be considered. Impact If a Marble is configured for TTLS, but doesn't have an environment variable defined in its parameters, TTLS is no...

marbles 1.0.1 - Local Home Environment Variable Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8710/info A problem in the handling of data in the Home environment variable has been reported in the marbles program. This may make it possible for a local attacker to gain elevated privileges. / c-marbles.c PoC exploit...

Debian Security Advisory DSA 390-1 (marbles)

The remote host is missing an update to marbles announced via advisory DSA 390-1. OpenVAS Vulnerability Test $Id: deb3901.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 390-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-390)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-390-1 : marbles - buffer overflow

Steve Kemp discovered a buffer overflow in marbles, when processing the HOME environment variable. This vulnerability could be exploited by a local user to gain gid 'games'. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

CVE-2003-0830

Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable...

CVE-2003-0830

Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable...

CVE-2003-0830

CVE-2003-0830 describes a local privilege escalation in marbles (versions up to 1.0.2 and earlier) caused by a buffer overflow when processing the HOME environment variable. The issue allows a local user to gain privileges (e.g., gid 'games' on Debian woody) due to unsafe handling of HOME. Public...

marbles buffer overflow

Buffer overflow on HOME parsing...

[SECURITY] [DSA-390-1] New marbles packages fix buffer overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 390-1 [email protected] http://www.debian.org/security/ Matt Zimmerman September 26th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA-390-1] New marbles packages fix buffer overflow

-------------------------------------------------------------------------- Debian Security Advisory DSA 390-1 [email protected] http://www.debian.org/security/ Matt Zimmerman September 26th, 2003 http://www.debian.org/security/faq -...

marbles 1.0.1 - Local Home Environment Variable Buffer Overflow

marbles 1.0.1 - Local Home Environment Variable Buffer Overflow // source: https://www.securityfocus.com/bid/8710/info A problem in the handling of data in the Home environment variable has been reported in the marbles program. This may make it possible for a local attacker to gain elevated...

marbles 1.0.1 - Local Home Environment Variable Buffer Overflow

// source: https://www.securityfocus.com/bid/8710/info A problem in the handling of data in the Home environment variable has been reported in the marbles program. This may make it possible for a local attacker to gain elevated privileges. / c-marbles.c PoC exploit made for advisory based uppon a...