CVE-2020-16898

This repository contains a Lua script for detecting CVE-2020-16898, a critical vulnerability in the Windows IPv6 stack. The script parses ICMPv6 Router Advertisement packets to identify malformed RDNSS options that could trigger a BSOD or potential RCE.

The repository claims to be a PoC for CVE-2020-16898 but only provides a binary without source code. The README includes a warning about not trusting binaries and references unrelated exploits, raising suspicion.

This PoC exploits CVE-2020-16898 (Bad Neighbor) by crafting malicious IPv6 Router Advertisement packets with smuggled options to trigger a stack overflow in Windows 10 version 2004, resulting in a BSOD.

This PoC exploits CVE-2020-16898, a Windows TCP/IP RCE vulnerability, by sending malformed ICMPv6 Router Advertisement packets with fragmented extensions to trigger a BSOD or potential code execution. The exploit leverages Scapy to craft and send the packets.

This repository contains multiple PoC exploits for CVE-2020-16898, a Windows TCP/IP RCE vulnerability (Bad Neighbor). The exploits leverage crafted IPv6 packets with fragmented ICMPv6 Router Advertisement messages to trigger a stack overflow, leading to a BSOD or potential RCE.

This repository provides a Zeek-based detection package for CVE-2020-16898, a Windows TCP/IP RCE vulnerability. It includes scripts to identify exploit attempts but does not contain actual exploit code.

This PoC exploits CVE-2020-16898 (Bad Neighbor) by sending malformed IPv6 Router Advertisement packets with fragmented extensions to trigger a BSOD on vulnerable Windows systems. The script uses Scapy to craft and send the packets.

This repository contains proof-of-concept exploits for CVE-2020-16898, a Windows TCP/IP remote code execution vulnerability. The exploits leverage crafted IPv6 packets to trigger a stack overflow in the Windows TCP/IP stack, leading to a BSOD or potential RCE.

The repository contains only a minimal Makefile with a placeholder test target, lacking any functional exploit code or technical details related to CVE-2020-16898 (Bad Neighbor).

This PowerShell script checks for interfaces vulnerable to CVE-2020-16898 by verifying if RA-Based DNS Config (RFC6106) is enabled on Windows 10 systems with a release ID greater than 1707. It does not exploit the vulnerability but scans for vulnerable configurations.

This repository contains a proof-of-concept exploit for CVE-2020-16898, a vulnerability in Windows TCP/IP stack that allows an attacker to cause a Blue Screen of Death (BSOD) via a specially crafted ICMPv6 packet. The exploit is a simple command-line tool that targets a specified IP address.

This repository contains a functional PoC for CVE-2020-16898, which exploits a vulnerability in the Windows IPv6 stack by sending malformed ICMPv6 Router Advertisement packets with invalid RDNSS option lengths. The PoC includes a Lua script for Suricata detection and a Python script to generate and send malformed packets.

This PowerShell script checks for the presence of CVE-2020-16898 and CVE-2020-16899 vulnerabilities by examining IPv6 interfaces for the presence of the vulnerable '6106' setting. It does not exploit the vulnerability but scans for its presence.

This PowerShell script mitigates CVE-2020-16898 by disabling IPv6 Router Advertisement-based DNS configuration on all local network interfaces. It is a workaround rather than an exploit, addressing the 'Bad Neighbor' vulnerability in Windows TCP/IP stack.

This repository contains documentation and helper scripts for CVE-2020-16898, a vulnerability in Zeek (formerly Bro). The provided files include installation scripts, environment setup, and Sphinx documentation configuration, but no actual exploit code or proof-of-concept is present.