“Bad Neighbor” Remote Code Execution (RCE) Vulnerability
With October’s Patch Tuesday on October 13th, 2020, Microsoft released an update to fix a vulnerability being dubbed as “Bad Neighbor”. This vulnerability has been given CVE-2020-16898 and carries a CVSSv3 base score of 9.8. Currently, the vulnerability has a Proof of Concept (POC) that easily can trigger a Blue Screen of Death, but it is expected that a likely wormable exploit will emerge allowing for full RCE capability. This vulnerability is present based on how Windows handles IPv6 ICMP Router Advertisements, and is described as very easy and consistent. Please patch immediately, and if not possible, consider disabling ICMPv6 RDNSS via Powershell. For more details on how to do so, please visit https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16898
Frontline.Cloud is releasing authenticated check “MS20-OCT: Microsoft Windows Security Update (142682)” with release 3.0.63.0 on Friday Oct 16th.