Security News > 2020 > October > US Cyber Command: Patch Windows 'Bad Neighbor' TCP/IP bug now
US Cyber Command warns Microsoft customers to immediately patch their systems against the critical and remotely exploitable CVE-2020-16898 vulnerability addressed during this month's Patch Tuesday.
"Update your Microsoft software now so your system isn't exploited: CVE-2020-16898 in particular should be patched or mitigated immediately, as vulnerable systems could be compromised remotely," US Cyber Command said in a tweet earlier today,.
Bad Neighbor impacts both client and server platforms, making it a critical vulnerability for all modern Windows environments.
Microsoft's October 2020 Patch Tuesday fixed 87 vulnerabilities in total, 12 of them classified as Critical, 74 as Important, and one as moderate severity.
Based on the details provided by Microsoft, British security firm Sophos has also been able to create a denial of service POC which causes a BSOD on any vulnerable Windows 10 or Windows Server devices.
News URL
Related news
- Windows Patch Tuesday hits snag with Citrix software, workarounds published (source)
- 7-Zip fixes bug that bypasses Windows MoTW security warnings, patch now (source)
- Don't want your Kubernetes Windows nodes hijacked? Patch this hole now (source)
- US Cyber Command reportedly pauses cyberattacks on Russia (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-16 | CVE-2020-16898 | Unspecified vulnerability in Microsoft products <p>A remote code execution vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. | 0.0 |