CVE-2020-16898(aka”Bad Neighbor”): Windows TCP/IP Remote Code Execution Vulnerability

by CIRT Team

DESCRIPTION
A remote code execution vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could gain the ability to execute code on the target server or client.

To exploit this vulnerability, an attacker would have to send specially crafted ICMPv6 Router Advertisement packets to a remote Windows computer.


IMPACT
An attacker who successfully exploited this vulnerability could gain the ability to execute code on the target server or client.


RECOMMENDATIONS
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16898


REFERENCE:
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16898
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/cve-2020-16898-bad-neighbor/
https://blog.rapid7.com/2020/10/14/there-goes-the-neighborhood-dealing-with-cve-2020-16898-a-k-a-bad-neighbor/
https://blog.qualys.com/product-tech/2020/10/14/microsoft-windows-tcp-ip-remote-code-execution-vulnerability-cve-2020-16898-automatically-discover-prioritize-and-remediate-using-qualys-vmdr

CIRT Team

Recommended Posts

Situational Awareness for Eid-ul-Adha Holidays

04 Jun 2025 - Security Advisories & Alerts

Situational Awareness for Eid-Ul-Fitr 2025 Holidays

27 Mar 2025 - Security Advisories & Alerts

Critical Vulnerability (CVE-2018-19410) Exposes 600 PRTG Instances in Bangladesh

18 Feb 2025 - Security Advisories & Alerts