Re: website for applications and versions?

[Wade Baker <wbaker () VT EDU>]

Peter,

I'm not sure if this addresses your question, but it is a helpful and concise
lists of hardware/software products containing released
vulnerabilities/exploits.
http://secunia.com/product/

I find this site a little easier to search than CVE.mitre.org
http://icat.nist.gov/icat.cfm

Another nice one...
http://www.osvdb.org/

Hope it's of some help,

Wade H. Baker
Virginia Tech
Phone: 540-250-3996


> -----Original Message-----
> From: The EDUCAUSE Security Discussion Group Listserv
> [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Peter Charbonneau
> Sent: Wednesday, February 09, 2005 9:04 AM
> To: SECURITY () LISTSERV EDUCAUSE EDU
> Subject: [SECURITY] website for applications and versions?
>
> Do any of you know if a website that lists various applications, the
> various versions, and whether or not that particular version is
> exploitable?
>
> I would like to be able to run AMAP against a machine - see which
> applications are bound to a port - and check this "uber" site to see
> if the machine is MOST LIKELY not exploitable (if there even IS such a
> thing in our business).
>
>
> PeteC
>
> Peter Charbonneau
> Sr. Network and Systems Administrator
> Williams College
> (413) 597-3408 (desk)
> (413) 822-2922 (cell)

Wade H. Baker
Virginia Tech
Phone: 540.231.9128
Office: Pamplin 2071
Web: http://www.whbaker.com

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/groups/.