[ipv6hackers] CVE-2020-16898: "Bad Neighbor" (IPv6 SLAAC/RDNSS)

Gert Doering gert at space.net
Wed Oct 14 17:42:14 UTC 2020


Hi,

On Wed, Oct 14, 2020 at 07:06:19PM +0200, Marc Heuse wrote:
> Everywhere it???s classified as remote and wormable - but I would expect it to only work on the local lan due hop count security.

This assumes that Windows does the (required...) HopCount=255 check
on reception.

Given that other OSes have been found to neglect this check in the past, I
wouldn't bet my Windows VMs on this...

Gert Doering
        -- NetMaster
-- 
have you enabled IPv6 on something today...?

SpaceNet AG                      Vorstand: Sebastian v. Bomhard, Michael Emmer
Joseph-Dollinger-Bogen 14        Aufsichtsratsvors.: A. Grundner-Culemann
D-80807 Muenchen                 HRB: 136055 (AG Muenchen)
Tel: +49 (0)89/32356-444         USt-IdNr.: DE813185279


More information about the Ipv6hackers mailing list