Technology Solutions Centre - IT Security

Vulnerability Listings

There are a lot of excellent sites posting vulnerabilites for network devices, operating systems and programs.  For reference, we use the SANS Institute, CERT, Secunia and a variety of mailing lists including Full Disclosure to determine what the more serious vulnerabilities are.

A weekly wrap of vulnerabilites for operating systems and major applications is posted by SANS with CERT posting some of the more widespread vulnerabilities.  They include technical descriptions of the vulnerability and suggestions for remediation / mitigation.

Microsoft Vulnerabilities and patch listings

Weekly Vulnerability Listings from SANS @RISK

Other Security Reference Sites

US-CERT Cyber Security Alerts - Thorough details on posted vulnerabilities from the CERT team.

Secunia Advisories List - A very extensive listing of known vulnerabilities in over 4000 products.

Microsoft Advisory List - A complete list of all critical advisories Microsoft has put out.

Common Vulnerabilities and Exposures - An extensive open source project used by major security companies around the world.