Microsoft Addresses Windows TCP/IP RCE/DoS Vulnerability

guest · Oct 14, 2020

Microsoft Addresses Windows TCP/IP RCE/DoS Vulnerability
October 14, 2020
https://us-cert.cisa.gov/ncas/curre...-addresses-windows-tcpip-rcedos-vulnerability

Microsoft has released a security update to address a protocol vulnerability—CVE-2020-16898—in Windows Transmission Control Protocol (TCP)/IP stack handling of Internet Control Message Protocol version 6 (ICMPv6) Router Advertisement packets. A remote attacker could exploit this vulnerability to take control of an affected system or cause a denial-of-service condition.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review Microsoft’s Security Advisory for more information, and apply the necessary updates or workaround.
Click to expand...

guest · Oct 15, 2020

US Cyber Command: Patch Windows 'Bad Neighbor' TCP/IP bug now
October 14, 2020
https://www.bleepingcomputer.com/ne...nd-patch-windows-bad-neighbor-tcp-ip-bug-now/

US Cyber Command warns Microsoft customers to immediately patch their systems against the critical and remotely exploitable CVE-2020-16898 vulnerability addressed during this month's Patch Tuesday.

"Update your Microsoft software now so your system isn't exploited: CVE-2020-16898 in particular should be patched or mitigated immediately, as vulnerable systems could be compromised remotely," US Cyber Command said in a tweet earlier today,
Microsoft states that the CVE-2020-16898 bug, also known as 'Bad Neighbor', is a remote code execution (RCE) vulnerability in the Windows TCP/IP stack that can also be used to trigger a denial of service (DoS) leading to a Blue Screen of Death (BSoD).
Click to expand...

CVE-2020-16898 mitigation
Microsoft provides a workaround for all customers who can't immediately apply the security update that addresses this critical security bug.
Microsoft advises customers who can't install the update to disable the ICMPv6 Recursive DNS Server (RDNSS) option using the following PowerShell command on systems running Windows 1709 and above (no reboot is needed): [...]

However, it should be noted that this is only a short term fix that blocks known attack vectors, and that you can fully mitigate the vulnerability and protect vulnerable systems only by applying the security update.
Click to expand...

Log in or Sign up

Microsoft Addresses Windows TCP/IP RCE/DoS Vulnerability

guest Guest

guest Guest

Log in or Sign up

Microsoft Addresses Windows TCP/IP RCE/DoS Vulnerability

guest Guest

guest Guest

Useful Searches