CVE-2007-2998

3 documents3 sources
Severity
4.9MEDIUM
EPSS
0.1%
top 77.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP Openvms
Timeline
PublishedJun 4
Latest updateMay 1

Description

The Pascal run-time library (PAS$RTL.EXE) before 20070418 on OpenVMS for Integrity Servers 8.3, and PAS$RTL.EXE before 20070419 on OpenVMS Alpha 8.3, does not properly restore PC and PSL values, which allows local users to cause a denial of service (system crash) via certain Pascal code.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages1 packages

NVDhp/openvms8.3

Patches

Patch: secunia.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-3j5p-c9jq-rrfh: The Pascal run-time library (PAS$RTL2022-05-01
CVEList
CVE-2007-2998: The Pascal run-time library (PAS$RTL2007-06-04
CVE-2007-2998 (MEDIUM CVSS 4.9) | The Pascal run-time library (PAS$RT | cvebase.io