As Internet grows, people employ it in daily lives more and more, thus issues about network security become popular recently. If there was a poor design or negligence occurred at implementation stage of a program (e.g. software, hardware, or firmware) which made the program carry vulnerabilities, it would lead to security leaks of system which are the way the system to be intruded. Nowadays there are mainly two ways to defense against intrusions, which are “vulnerability auditing” and “intrusion detection.” “Vulnerability auditing” is one kind of precautions. Users utilize auditing tools to check if they employed some programs carried vulnerabilities, and then apply patches to those programs or monitor them in advance. “Intrusion detection” is used when a system is under operation. It monitors system and network activities to find malicious ones that could be considered as intrusions by employing some analysis methods, and notices users to take some further actions on them. Because vulnerabilities are the chances of successful intrusions, we must have enough materials for “vulnerability auditing” and “intrusion detection” to improve degree of security. 　　At present vulnerability databases are the general data sources of vulnerabilities on the Internet. According to their capabilities, there are three kinds. They are “data management of intrusion events and vulnerabilities,” “vulnerability data for security auditing,” and “attack patterns for intrusion detection.” There are common problems about these databases: users must traverse several databases on the internet to find out data about the same one vulnerability, and users also must have enough network security related skills to apply these data to their applications, that will greatly defeat the degree of security. 　　To overcome these problems, we tried to integrate the data requirements of “vulnerability auditing” and “intrusion detection” by designing a data model of vulnerability, and used which to set up a vulnerability database. Applying off-the-shelf agent tools, we designed a data retrieval mechanism to let our database have ability to automatically obtain sufficient data about vulnerabilities from Internet. We also designed an application supporting mechanism that directly connects applications and vulnerability database to feed necessary materials to vulnerability auditing systems and intrusion detection systems from our database. In thesis we described each component’s functions, including some issues during the design phase, and the current states of our prototype system.