HardOCP News
[H] News
- Joined
- Dec 31, 1969
- Messages
- 0
Here’s one for you. Let’s say you have Speech Recognition turned on, a microphone plugged in and your speakers turned up. Then, you surf a website with a sound file embedded in it that says something to trigger your speech recognition. That is what this whole flap is over. I’m not sure how you should classify this one…well, except for maybe “funny.”
Microsoft’s initial investigation reveals that this vulnerability could allow an attacker to use the speech recognition feature in Windows Vista to verbally execute commands on a user’s computer. The attackers’ commands are limited to the rights of the logged on user. User Account Control prohibits the attacker from executing any administrative level commands.