This is great!<br><br><div><span class="gmail_quote">On 2/2/07, <b class="gmail_sendername">Thierry Zoller</b> <<a href="mailto:Thierry@zoller.lu">Thierry@zoller.lu</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
---------------------------------------------------------------<br>Posting of your message titled "Re[2]: [Dailydave] Vista speach<br>recognition" has been rejected by the list moderator.<br>The moderator gave the following reason for rejecting
<br>your request: "No reason given"<br>---------------------------------------------------------------<br><br>Dear George,<br><br>With all due respect, I think you are crying wolf a tad bit too much.<br>Speech recognition is inherently unreliable, (btw remember the presentation
<br>they gave?). Since you deem the problem as remotely exploitable,let's ignore<br>for one that I have to actively browse to a website and as such be physically<br>in front of the PC and assume we use XSS to zombie the browser and play the
<br>audio 5 minutes later. Then we assume there is not too much background<br>noise, assume the audio level is ok, assume the microphone is on,<br>assume Speech recognition is used, assume audio is on, and so forth.<br><br>
Too many assumption to make it a real risk for me remotely, sorry. That's<br>my personal opinion. Is is a vulnerability ? Yes. Is it likely to work<br>100% like a good crafted exploit? No<br><br>GO> So<br>GO> I'm asking Microsoft to reconsider their stance that "there is little if any
<br>GO> need to worry" and implement some sort of safety mechanism rather than<br>GO> relying on the user to be self vigilant. It doesn't matter that there<br>GO> aren't that many people using this feature; Microsoft should fix it if
<br>GO> they're going to offer it and market it as a key Vista advantage.<br>I have not read they don't plan to, it's just that .. well they don't<br>consider it an emergency, and I can understand. The thing is they have
<br>a different scale than you, the next wormable exploit is something<br>they worry about, an exploit that immediately might compromise a system<br>is something I think they rate as Important, this thing is exploitable<br>
only if X+n conditions are met, if x+n assumptions are made. I don't<br>say it's not a problem, I say the probability of it being a problem<br>for a defined person is low to very low.<br><br>GO> Since<br>GO> Microsoft is promoting Voice recognition for healthcare, we should consider
<br>GO> the safety of patient health records.<br>[X] Hysteria<br><br>GO> At present time, Vista Speech Recognition wakes up to the command "start<br>GO> listening". How hard would it be for Microsoft to make that a
<br>GO> user-definable phrase or word? For example: A user would pick "Zelda" as<br>GO> the word to wake speech mode while someone else picks "439" as their wake<br>GO> word. How hard would it be for Microsoft to implement a wake timeout so
<br>GO> that Speech Recognition would sleep after 5 minutes idle?<br>I haven't seen any mention that they don't plan to do so, maybe I have<br>not read everything. My opinion: they will implement this, BUT hopefully make it an option.
<br><br>GO> I'm also running a poll at the end asking if Microsoft should patch this<br>GO> with a pass phrase and echo cancellation.<br>Why would that make sense? People will vote for a fix.<br><br><br>--<br><a href="http://secdev.zoller.lu">
http://secdev.zoller.lu</a><br>Thierry Zoller<br>Fingerprint : 5D84 BFDC CD36 A951 2C45 2E57 28B3 75DD 0AC6 F1C7<br><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html">
http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/">http://secunia.com/</a><br></blockquote></div><br><br clear="all"><br>-- <br><a href="http://www.goldwatches.com">
http://www.goldwatches.com</a><br><a href="http://www.wazoozle.com">http://www.wazoozle.com</a>