Democratic Underground Latest Greatest Lobby Journals Search Options Help Login
Google

Microsoft confirms Vista Speech Recognition remote execution flaw - hacked by audio files

Printer-friendly format Printer-friendly format
Printer-friendly format Email this thread to a friend
Printer-friendly format Bookmark this thread		 This topic is archived.
Home » Discuss » Archives » General Discussion (1/22-2007 thru 12/14/2010) Donate to DU
 
muriel_volestrangler Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 12:46 PM
Original message
Microsoft confirms Vista Speech Recognition remote execution flaw - hacked by audio files
Edited on Thu Feb-01-07 12:49 PM by muriel_volestrangler
Thanks for your patience as I looked into this. I heard back from the folks at the MSRC, and they let me know that Microsoft is investigating public reports of a possible vulnerability in Windows Vista’s speech recognition feature. Microsoft’s initial investigation reveals that this vulnerability could allow an attacker to use the speech recognition feature in Windows Vista to verbally execute commands on a user’s computer. The attackers’ commands are limited to the rights of the logged on user. User Account Control prohibits the attacker from executing any administrative level commands.

In order for an attack to be successful, the user would have to have a microphone and speakers connected to their system. In addition, the user would have had to configure the speech recognition feature. The attackers’ audio file would then issue verbal commands via the systems speakers that could potentially be carried out by the speech recognition feature. Based on the initial investigation, Microsoft recommends customers take the following action to protect themselves from potential exploitation of the reported vulnerability:

* A user can turn off their computer speakers and/or microphone.
* If a user does run an audio file that attempts to execute commands on their system, they should close the Windows Media Player, turn off speech recognition and restart their computer.

A Microsoft spokesperson, ZDNet blog


Handy, huh? George Ou, the blogger, goes on to say:

I've also done some further experimentation that this exploit can be very nasty even if it can't execute with administrative privileges or bypass UAC. I have verified that I can create a sound file that can wake Vista speech recognition, open Windows Explorer, delete the documents folder, and then empty the trash. Then we have to consider the fact that people do leave many webpages open over night and some of those may have rotating flash ads that can play sounds. If that's not a serious exploit, I don't know what is. One can always rebuild system files by reinstalling the Operating System, data files can't be recovered since the vast majority of people don't backup.
Printer Friendly | Permalink |  | Top
Ian David Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 12:52 PM
Response to Original message
1. So, you could conceivably be sitting on a webpage...
Edited on Thu Feb-01-07 01:08 PM by IanDB1
and an animated flash-ad comes up and starts speaking commands to your computer?

Or you could download a song, and in the middle of the song it starts issuing commands to your computer?

Or, you could be listening to Bill O'Reilly's show, and if he wanted to, he could start issuing commands to your computer THROUGH THE RADIO (or through the television!)

THIS IS WORSE THAN WHAT HAPPENS WHEN A COMMERCIAL FOR "THE CLAPPER" COMES ON, WHEN YOU HAVE "THE CLAPPER" ATTACHED TO YOUR TV!
Printer Friendly | Permalink |  | Top
 
MidwestTransplant Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 01:03 PM
Response to Reply #1
2. Just imagine if it told your compter to kill you!
Edited on Thu Feb-01-07 01:43 PM by MidwestTransplant
:silly:
Printer Friendly | Permalink |  | Top
 
Ian David Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 01:13 PM
Response to Reply #2
4. Scary thoughts about things that can be done to your computer
Computer: Launch Internet Explorer
Computer: go to virus download dot com.
Computer: select trojan horse

Or even:

Computer: Launch Outlook
Computer: compose message to president at white house dot gov
Computer: Dear Mister President...
Printer Friendly | Permalink |  | Top
 
AndyTiedye Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 01:19 PM
Response to Reply #2
6. I Don't Know What Kind of Peripherals You Have Attached to YOUR Computer
Printer Friendly | Permalink |  | Top
 
MidwestTransplant Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 01:42 PM
Response to Reply #6
7. I could tell you but then I would have to have your computer kill you too.
;)
Printer Friendly | Permalink |  | Top
 
muriel_volestrangler Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 01:06 PM
Response to Reply #1
3. That's what it seems to say
Also note you can attach audio (eg .wav) files to emails in Outlook Express as the 'background' (I've used that occasionally, most memorably in an email to Dick Cheney's office. See if you can guess what the audio message was?)
Printer Friendly | Permalink |  | Top
 
AndyTiedye Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 01:17 PM
Response to Reply #1
5. Kiddies, Hold the Phone Up to the TV While We Play the Magic Sounds, & You Can Talk to Captain Bob
1900$$$$$$$
Printer Friendly | Permalink |  | Top
 
Xipe Totec Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Feb-01-07 07:43 PM
Response to Original message
8. Nothing to worry about...
Good luck getting it to recognize the right command...

http://www.youtube.com/watch?v=2Y_Jp6PxsSQ :rofl:
Printer Friendly | Permalink |  | Top
 
DU AdBot (1000+ posts) Click to send private message to this author Click to view this author's profile Click to add this author to your buddy list Click to add this author to your Ignore list Thu Apr 25th 2024, 05:23 AM
Response to Original message
Advertisements [?]
 Top

Home » Discuss » Archives » General Discussion (1/22-2007 thru 12/14/2010) Donate to DU

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators

Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.

Home  |  Discussion Forums  |  Journals |  Store  |  Donate

About DU  |  Contact Us  |  Privacy Policy

Got a message for Democratic Underground? Click here to send us a message.

© 2001 - 2011 Democratic Underground, LLC