摘要 |
PROBLEM TO BE SOLVED: To determine only software highly affecting security among pieces of softyware, for which vulnerability information is disclosed, to efficiently improve security. SOLUTION: In a vulnerability determination device 40, when a vulnerability information acquiring part 41 acquires vulnerability information from a vulnerability information disclosing site device 30 and writes it in a vulnerability information storage part 42 and a configuration information requiring part 43 acquires configuration information from an electronic computer 20<SB>1</SB>and writes it in a configuration information storage part 44, a matching part 45 determines whether or not the configuration information in the configuration information storage part 44 relates to the vulnerability information in the vulnerability information storage part 42. According to the determination result by the matching part 45, an influence determination part 46 determines whether or not the configuration information related to the vulnerability information, is related to service setting information acquired from the electronic computer 20<SB>1</SB>. Based on this determination result, configuration information related to the service setting information is output. COPYRIGHT: (C)2010,JPO&INPIT |