[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [interesting-people Home]
Subject: [IP] Best. Vista. exploit. ever!
Begin forwarded message: From: Ethan Ackerman <eackerma@u.washington.edu> Date: February 9, 2007 12:07:51 PM EST To: David Farber <dave@farber.net> Subject: Best. Vista. exploit. ever! Greetings Dave, The SANS blog has a nice summary of an innovative exploit in MS Vista's speech recognition implementation - a malicious audio file can be used to give user-level control. It does so not in the usual buffer overflow or mileading header corruptions, but by actual voice recognition of spoken scripting commands.Playing a sound file featuring spoken commands to open a malicious website
http://isc.sans.org/diary.html?storyid=2148 - including a MSFT confirmation. (als written up on zdNet - http://blogs.zdnet.com/Ou/? p=420&tag=nl.e589 )
I wonder what William Gibson would have to say about oral viruses? -------------------------------------------
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [interesting-people Home]
Powered by eList eXpress LLC