Freigeben über

Shout Hacking! Ok, I'll Bite...

  • Artikel

ARN is carrying a story - Vista hole opens door to 'shout hacking', from an earlier report Vista Speech Command exposes remote exploit

The Microsoft Security Response Center responds - Issue regarding Windows Vista Speech Recognition

I'm sure this won't be the last we "hear" of it.

Technorati tags: Windows Vista

Comments

  • Anonymous
    February 02, 2007
    ROFL! I find it hard enough to try and get Vista to do what I want it first time through the speech interface (not to mention I have to shut myslf away in a closet) - people in the corridor has suggested variously that I have a sill accent or that I'm not forceful enough! The thought of someone being able to trigger something remotely and doing significant damage is amusing. The vectors to actually deliver this are pretty limited, and the chance of success means there are other more significant threats. Still, noone mentioned Dragon Dictate or any of the other speech engines as being a problem... does this mean the Vista engine is significantly betterm or was it just a slow press day? UAC doesn't respond to speech anyway so you can't do anything critical

  • Anonymous
    February 02, 2007
    OffBeatMammal, the speech recognition almost never does what you want the first time, but that doesn't prevent it from being vulnerable because an attacker could record and test a sound file before they use it to attack a Vista machine. As for other speech recognition systems, I'm not sure, but it's possible they did what all speech recognition systems should do and subtracted the audio output from the input so that they didn't listen to orders given by the speakers.

  • Anonymous
    February 04, 2007
    The comment has been removed