CVE-2007-2998

Name of the Vulnerable Software and Affected Versions: OpenVMS for Integrity Servers versions 8.3 before 20070418 OpenVMS Alpha versions 8.3 before 20070419

Description: The issue allows local users to cause a denial of service, resulting in a system crash, by executing certain Pascal code. This is due to the Pascal run-time library not properly restoring PC and PSL values.

Recommendations: For OpenVMS for Integrity Servers version 8.3, update the Pascal run-time library to a version dated 20070418 or later. For OpenVMS Alpha version 8.3, update the Pascal run-time library to a version dated 20070419 or later.