CVE-2007-2998

HP OpenVMS 8.3 - Denial of Service via Pascal Runtime Library

Title source: llm

Description

The Pascal run-time library (PAS$RTL.EXE) before 20070418 on OpenVMS for Integrity Servers 8.3, and PAS$RTL.EXE before 20070419 on OpenVMS Alpha 8.3, does not properly restore PC and PSL values, which allows local users to cause a denial of service (system crash) via certain Pascal code.

References (7)

Core 7

Core References

Various Sources mailing-list x_refsource_mlist

http://mail.openvms.org:8100/Lists/alerts/Message/503.html

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2007/2001

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/34635

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/24252

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/36800

Various Sources mailing-list x_refsource_mlist

http://mail.openvms.org:8100/Lists/alerts/Message/504.html

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/25486

Scores

EPSS 0.0008

EPSS Percentile 22.6%

Details

Status published

Products (1)

hp/openvms 8.3 (2 CPE variants)

Published Jun 04, 2007

Tracked Since Feb 18, 2026