Vulnerabilities > CVE-2007-2998 - Local Denial of Service vulnerability in HP Openvms 8.3
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
The Pascal run-time library (PAS$RTL.EXE) before 20070418 on OpenVMS for Integrity Servers 8.3, and PAS$RTL.EXE before 20070419 on OpenVMS Alpha 8.3, does not properly restore PC and PSL values, which allows local users to cause a denial of service (system crash) via certain Pascal code.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
References
- http://mail.openvms.org:8100/Lists/alerts/Message/503.html
- http://mail.openvms.org:8100/Lists/alerts/Message/504.html
- http://osvdb.org/36800
- http://secunia.com/advisories/25486
- http://www.securityfocus.com/bid/24252
- http://www.vupen.com/english/advisories/2007/2001
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34635