Comprehensive Database of Computer Vulnerabilities Now Available

Aug 10, 2005

Cyber attackers are constantly scanning the Internet looking for vulnerabilities in computer systems that will enable them to take control and use the systems for illegal or unethical activities such as identity theft, industrial espionage or distributing spam. For those trying to prevent such attacks, keeping up with the 300 or so new vulnerabilities discovered each month can be an overwhelming task, especially since a single flaw can be known by numerous names.

The new National Vulnerability Database (NVD) from the National Institute of Standards and Technology (NIST) will make it easier for system administrators and other security professionals to learn about vulnerabilities and how to remediate them. The NVD is a comprehensive database that integrates all publicly available U.S. government resources on vulnerabilities and provides links to many industry resources. NVD is built upon a dictionary of standardized vulnerability names and descriptions called Common Vulnerabilities and Exposures.

Updated daily, NVD currently contains information on almost 12,000 vulnerabilities. It allows users to search by a variety of characteristics, including vulnerability type, severity and impact; software name and version number; and vendor name. NVD also can be used to research the vulnerability history of a product and view vulnerability statistics and trends.

NVD was developed by researchers in NIST’s Computer Security Division with support from the Department of Homeland Security’s National Cyber Security Division. For more information, go to nvd.nist.gov/ .

Explore further: EU holds largest-ever cyber security exercise

add to favorites email to friend print save as pdf

Related Stories

How Secure Is Your Network? NIST Model Knows

Jul 23, 2008

(PhysOrg.com) -- Data breaches are a recurring nightmare for IT managers responsible for securing not only their company’s confidential data, but possibly also sensitive information belonging to their clients, ...

Recommended for you

EU holds largest-ever cyber security exercise

54 minutes ago

A European Union cyber-security agency was in Athens to conduct the largest exercise ever held on the continent to prevent attacks on Europe's public utilities and communications networks.

Microsoft joins fitness bandwagon

1 hour ago

Microsoft unveiled its first fitness band Thursday, joining a crowded market of connected devices for tracking and analyzing personal health data.

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.