vulnerability
Microsoft CVE-2020-16898: Windows TCP/IP Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:A/AC:L/Au:N/C:P/I:P/A:P) | 2020-11-10 | 2020-11-10 | 2021-11-18 |
Severity
6
CVSS
(AV:A/AC:L/Au:N/C:P/I:P/A:P)
Published
2020-11-10
Added
2020-11-10
Modified
2021-11-18
Description
A remote code execution vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could gain the ability to execute code on the target server or client. To exploit this vulnerability, an attacker would have to send specially crafted ICMPv6 Router Advertisement packets to a remote Windows computer. The update addresses the vulnerability by correcting how the Windows TCP/IP stack handles ICMPv6 Router Advertisement packets.
Solution(s)
msft-kb4577668-965a8ede-1eb7-46d6-83a6-7246ea98aae0msft-kb4577668-b815915f-3e4f-46ae-adc9-b90cd4b04100msft-kb4577671-4bc3ccc3-fcb0-4bbd-a2a5-cbbd40369d41msft-kb4577671-60a68333-26ce-47b6-9254-89d69caedfdfmsft-kb4577671-a4f7dcc3-65f1-4a75-8635-ea596100c299msft-kb4577671-c4223a46-1f35-41d8-ac8e-d2772d017f90msft-kb4577671-c42dc613-fb5b-4c45-925c-4f508584a635msft-kb4577671-ddbf4c81-6ca7-4986-999e-9275ef508017msft-kb4579311-d5cbc800-cb34-49c3-bde8-aa2f0ee05b2emsft-kb4579311-e9f0550d-b150-4eeb-bf5e-1a08b117e7afmsft-kb4579311-fa30a6bc-24ef-47b0-a6fa-d7971053e058msft-kb4580328-ebb00bd7-bff6-4567-8b7c-300728513137msft-kb4580328-f01aa891-eec2-4390-9974-dc226f4d6bf4msft-kb4580330-c2c988c8-cbbe-4a10-a26f-365b656443f3msft-kb4580330-fc2b1c51-dad6-4170-ba4d-85c43ed047d1
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.