0

I am trying to eliminate the SMBv1 vulnerability from a Windows 7 box. I do keep the machine patched with Windows updates, however, I would like to install the proper update because I was unable to confirm it was installed.

One can query which MS updates have been applied with:

wmic qfe

Results were piped into a file and a search for update 4013389 was negative. If this is not the correct technique to determine if the vulnerability patched please state this.

If it is a valid technique, is there a command to specifically to retrieve and install security update 4013389?

gatorback
  • 1,191
  • 6
  • 17
  • 36
  • 1
    Why don't you just download the kb from the windows catalog? Why are you making it harder on yourself? – Ramhound Jun 28 '17 at 02:15
  • http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012215 – Ramhound Jun 28 '17 at 02:15
  • I marked it as answer because it applies to you too. Check [win7 history](https://support.microsoft.com/en-us/help/4009469/windows-7-sp1-windows-server-2008-r2-sp1-update-history) and look if you have the last KB update installed. – magicandre1981 Jun 28 '17 at 14:21
  • I mean duplicate. Here you see that the way to check for a KB is crap and [only a check for the file version is correct](https://superuser.com/a/1209007/174557) – magicandre1981 Jul 01 '17 at 07:16

0 Answers0