CVE-2020-16898(aka”Bad Neighbor”): Windows TCP/IP Remote Code Execution Vulnerability

by CIRT Team

15 Oct 2020

in Security Advisories & Alerts

No Comments

1703

DESCRIPTION
A remote code execution vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could gain the ability to execute code on the target server or client.

To exploit this vulnerability, an attacker would have to send specially crafted ICMPv6 Router Advertisement packets to a remote Windows computer.

IMPACT
An attacker who successfully exploited this vulnerability could gain the ability to execute code on the target server or client.

RECOMMENDATIONS
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16898

REFERENCE:
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16898
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/cve-2020-16898-bad-neighbor/
https://blog.rapid7.com/2020/10/14/there-goes-the-neighborhood-dealing-with-cve-2020-16898-a-k-a-bad-neighbor/
https://blog.qualys.com/product-tech/2020/10/14/microsoft-windows-tcp-ip-remote-code-execution-vulnerability-cve-2020-16898-automatically-discover-prioritize-and-remediate-using-qualys-vmdr

CIRT Team

Recommended Posts

সাইবার নিরাপত্তা সংক্রান্ত সতর্কতা (২৩ নভেম্বর ২০২৩)

23 Nov 2023 - Security Advisories & Alerts

Cyber Threat Advisory: CISCO Zero-Day Vulnerabilities Exploitation in Bangladesh

26 Oct 2023 - Security Advisories & Alerts

Enhancing Situational Awareness on Emerging Cyber Threats

09 Sep 2023 - English articles, News, Security Advisories & Alerts, Uncategorized