CVE-2020-16899

HIGH

Windows 10 and Windows Server 2016/2019 - Denial of Service via ICMPv6 Router Advertisement Packet Handling

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-16899. PoCs published by advanced-threat-research.

AI-analyzed exploit summary This repository contains a Lua script for Suricata to detect exploitation attempts of CVE-2020-16899, a DoS vulnerability in the Windows IPv6 stack triggered by malformed ICMPv6 Router Advertisement packets with DNSSL options. The script parses ICMPv6 packets to identify malicious payloads that could cause a BSOD.

Description

<p>A denial of service vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could cause a target system to stop responding.</p> <p>To exploit this vulnerability, an attacker would have to send specially crafted ICMPv6 Router Advertisement packets to a remote Windows computer. The vulnerability would not allow an attacker to execute code or to elevate user rights directly.</p> <p>The update addresses the vulnerability by correcting how the Windows TCP/IP stack handles ICMPv6 Router Advertisement packets.</p>

Exploits (1)

nomisec WORKING POC 20 stars
by advanced-threat-research · poc
https://github.com/advanced-threat-research/CVE-2020-16899

This repository contains a Lua script for Suricata to detect exploitation attempts of CVE-2020-16899, a DoS vulnerability in the Windows IPv6 stack triggered by malformed ICMPv6 Router Advertisement packets with DNSSL options. The script parses ICMPv6 packets to identify malicious payloads that could cause a BSOD.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Windows 10, Windows Server 2019 (IPv6 stack)
No auth needed
Prerequisites: Network access to send crafted ICMPv6 packets to a vulnerable Windows host
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 7.5
EPSS 0.1335
EPSS Percentile 95.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

Status published
Products (10)
microsoft/windows_10 1709
microsoft/windows_10 1803
microsoft/windows_10 1809
microsoft/windows_10 1903
microsoft/windows_10 1909
microsoft/windows_10 2004
microsoft/windows_server_2016 1903
microsoft/windows_server_2016 1909
microsoft/windows_server_2016 2004
microsoft/windows_server_2019
Published Oct 16, 2020
Tracked Since Feb 18, 2026