-1
1
We have a Windows Server 2012R2.
How can we be sure that the patch needed for WannaCry is installed and we are protected from it?
And How can we install the patch if it turns out we are still vulnerable?
Peter
Posted 2017-05-24T14:18:03.710
Reputation: 23
-2
KB4019215 cumulative patch has the wannacry fix.
Peter
Posted 2017-05-24T14:18:03.710
Reputation: 23
Thanks for closing the loop on your question. Can you post a link to your source that this is the case? It isn't obvious from the Microsoft description that it is. – fixer1234 – 2017-05-26T01:54:46.563
0
There's a few ways to check if the update is installed, from going into
Or you can query your system as this answer shows.
E.g.
wmic qfe get hotfixid | find "KB99999"
wmic qfe | find "KB99999"
If you need the update: So you can either install just the update KB4012213
Or you can install ALL THE UPDATES KB4012216,
Eitherway, you want to look at automating/having control over patching so you're not trying to manually patch things after an attack occurs.
More infomation on microsoft updates: Microsoft Security Update Guide
djsmiley2k TMW
Posted 2017-05-24T14:18:03.710
Reputation: 5 937
Windows update says it has no updates, but if I check with: Get-hotfix -computername dc8sftptst03 -ID KB4012216 and Get-hotfix -computername dc8sftptst03 -ID KB4012213 it still says they are not installed – Peter – 2017-05-24T14:36:26.577
@Peter are you using a WSUS server or something else to control which patches get applied? It maybe that the patch needs authorising for install first. – djsmiley2k TMW – 2017-05-24T14:37:16.373
1How can we be sure that the patch needed for WannaCry is installed and we are protected from it? - You either install the patch or you verify that either KB4012213 or KB4012217 is installed. How can we install the patch if it turns out we are still vulnerable? - Download and install the patch. – Ramhound – 2017-05-24T16:11:58.247