Security firm eEye has created what's described as the industry's first site designed solely to track zero-day vulnerabilities, flaws where exploits are available prior to the release of security patches.

eEye's zero-day tracking site (http://research.eeye.com/html/alerts/zeroday/index.html) provides detailed information on flaws and remediation strategies to users. The site will be maintained by security researchers at eEye Research, who have a track record of unearthing new security bugs, and is essentially an eEye gig rather than a cross-industry effort.

However, eEye invites other interested parties to contribute suggestions on flaws that merit inclusion on its list. eEye said it created the site, which includes information on how long flaws have remained unfixed, in response to the growing number of zero-day exploits.

In other security tracking news, security notification firm Secunia has released a tool designed to determine insecure versions of popular software packages (such as browsers, IM clients, and media players) on consumer's PC.

Secunia's Software Inspector (http://secunia.com/software_inspector) provides users with advice on what to do if they are running insecure software packages.

Both eEye zero-day tracking site and Secunia's Software Inspector are available free of charge. ®

Related stories

One in five apps are insecure (21 December 2007)
http://www.channelregister.co.uk/2007/12/21/patching_woes_survey/
Hackers target unpatched Office flaw (5 February 2007)
http://www.theregister.co.uk/2007/02/05/0-day_office_flaw/
IE 'unsafe' for 284 days last year (5 January 2007)
http://www.theregister.co.uk/2007/01/05/ie_unsafe/
Third unpatched vuln menaces Word (15 December 2006)
http://www.theregister.co.uk/2006/12/15/word_flaw_three/
Trojan targets unpatched Word flaw (again) (11 December 2006)
http://www.theregister.co.uk/2006/12/11/0-day_word_flaw/
Unpatched Word flaw menaces civilisation (6 December 2006)
http://www.theregister.co.uk/2006/12/06/unpatched_word_flaw/
Web viruses drop off despite IE exploit flap (18 October 2006)
http://www.theregister.co.uk/2006/10/18/malware_trends_scansafe/
Targeted Trojan attacks on the rise (15 October 2006)
http://www.theregister.co.uk/2006/10/15/targeted_trojan_attacks_on_the_rise/
Unofficial patches defend against further IE flaw (3 October 2006)
http://www.theregister.co.uk/2006/10/03/zero-day_ie_fix_encore/
Another day, another zero-day MS exploit (28 September 2006)
http://www.theregister.co.uk/2006/09/28/0-day_powerpoint_threat/
Unpatched enterprise security bugs proliferate (24 August 2006)
http://www.theregister.co.uk/2006/08/24/0-day_manace/