[ipv6hackers] CVE-2020-16898: "Bad Neighbor" (IPv6 SLAAC/RDNSS)
Gert Doering
gert at space.net
Wed Oct 14 17:42:14 UTC 2020
Hi,
On Wed, Oct 14, 2020 at 07:06:19PM +0200, Marc Heuse wrote:
> Everywhere it???s classified as remote and wormable - but I would expect it to only work on the local lan due hop count security.
This assumes that Windows does the (required...) HopCount=255 check
on reception.
Given that other OSes have been found to neglect this check in the past, I
wouldn't bet my Windows VMs on this...
Gert Doering
-- NetMaster
--
have you enabled IPv6 on something today...?
SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer
Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann
D-80807 Muenchen HRB: 136055 (AG Muenchen)
Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279
More information about the Ipv6hackers
mailing list