Pascal Run-Time Library Vulnerability on OpenVMS for Integrity and Alpha Servers
CVE-2007-2998

Currently unrated

Key Information:

Vendor: HP
Status: Openvms
Vendor: CVE Published:; 4 June 2007

What is CVE-2007-2998?

The Pascal run-time library on OpenVMS for Integrity Servers and Alpha versions is susceptible to a vulnerability that fails to properly restore the Program Counter (PC) and Processor Status Longword (PSL) values. This oversight allows local users to execute specific Pascal codes that can trigger a denial of service, causing the system to crash. It is essential for users of OpenVMS to be aware of this vulnerability and implement necessary protections.

References

http://mail.openvms.org:8100/Lists/alerts/Message/503.html

mailing-listx_refsource_MLIST

http://www.vupen.com/english/advisories/2007/2001

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/34635

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 4, 2007
Vulnerability Reserved
Jun 4, 2007

HP

What is CVE-2007-2998?

References

Timeline