Enumerating Missing Patches

Enumerating the patches a Windows host missed is useful to uncover lesser known vulnerabilities that are harder to spot than common CVEs

C:\hacker> wmic qfe list brief

Description      FixComments  HotFixID   InstallDate  InstalledBy          InstalledOn  Name  ServicePackInEffect  Status
Update                        KB4601056               NT AUTHORITY\SYSTEM  3/27/2021                                    
Update                        KB4513661                                    1/9/2020                                     
Security Update               KB4516115                                    1/9/2020                                     
Update                        KB4517245                                    1/9/2020                                     
Security Update               KB4528759                                    1/9/2020                                     
Security Update               KB4535680               NT AUTHORITY\SYSTEM  3/27/2021                                    
Security Update               KB4580325               NT AUTHORITY\SYSTEM  3/27/2021                                    
Security Update               KB5000908               NT AUTHORITY\SYSTEM  3/27/2021                                    
Security Update               KB5000808               NT AUTHORITY\SYSTEM  3/27/2021

We can search for each KB (Microsoft Knowledge Base ID number) in the Microsoft Update Catalog (or use Google) to get a better idea of what fixes have been installed and how far behind the system may be on security updates.

PreviousKernel Exploits NextCVE-2021-36934 HiveNightmare

Last updated 2 years ago