新书推介:《语义网技术体系》
作者:瞿裕忠,胡伟,程龚
   XML论坛     >>W3CHINA.ORG讨论区<<     计算机科学论坛     SOAChina论坛     Blog     开放翻译计划     新浪微博  
 
  • 首页
  • 登录
  • 注册
  • 软件下载
  • 资料下载
  • 核心成员
  • 帮助
  •   Add to Google

    >> 计算机英语求助,计算机英语翻译互助
    [返回] W3CHINA.ORG讨论区 - 语义网·描述逻辑·本体·RDF·OWL休息区『 计算机英语 』 → Vista has speech recognition hole (from bbc) 查看新帖用户列表

      发表一个新主题  发表一个新投票  回复主题  (订阅本版) 您是本帖的第 3824 个阅读者浏览上一篇主题  刷新本主题   树形显示贴子 浏览下一篇主题
     * 贴子主题: Vista has speech recognition hole (from bbc) 举报  打印  推荐  IE收藏夹 
       本主题类别:     
     struppimm 帅哥哟,离线,有人找我吗?
      
      
      等级:大一(猛啃高等数学)
      文章:16
      积分:110
      门派:XML.ORG.CN
      注册:2007/2/3

    姓名:(无权查看)
    城市:(无权查看)
    院校:(无权查看)
    给struppimm发送一个短消息 把struppimm加入好友 查看struppimm的个人资料 搜索struppimm在『 计算机英语 』的所有贴子 引用回复这个贴子 回复这个贴子 查看struppimm的博客楼主
    发贴心情 Vista has speech recognition hole (from bbc)


    Vista has speech recognition hole
    Vista
    Vista was launched to consumers on Tuesday
    Microsoft has admitted that speech recognition features in Vista could be hijacked so that a PC tells itself to delete files or folders.

    Vista can respond to vocal commands and concern has been raised about malicious audio on websites or sent via e-mail.

    In one scenario outlined by users an MP3 file of voice instructions was used to tell the PC to delete documents.

    Microsoft said the exploit was "technically possible" but there was no need to worry.

    The firm has pointed out that in order for the flaw to be exploited the speech recognition feature would need to be activated and configured and both microphone and speakers would have to be switched on.

     
    There are also additional barriers that would make an attack difficult
    Microsoft security researcher

    "The exploit scenario would involve the speech recognition feature picking up commands through the microphone such as 'copy', 'delete', 'shutdown', etc. and acting on them," a Microsoft security researcher wrote on the team's official blog.

    Some Vista users have already tested the exploit and were able to delete files and empty the trash can so that the documents were not retrievable.

    Microsoft has said that even if the machine was primed to accept voice commands it would be unlikely the user would not be in the room to hear the file with malicious instructions being played.

    The firm also said that voice commands could not be used for privileged functions such as creating a new user or formatting a drive.

    "There are also additional barriers that would make an attack difficult including speaker and microphone placement, microphone feedback, and the clarity of the dictation," wrote the Microsoft researcher.

    While speech recognition was a feature of Windows XP, in Vista the use has been widened.

    "While we are taking the reports seriously and investigating them accordingly I am confident in saying that there is little if any need to worry about the effects of this issue on your new Windows Vista installation," said the researcher.


       收藏   分享  
    顶(0)
      




    点击查看用户来源及管理<br>发贴IP:*.*.*.* 2007/2/4 17:19:00
     
     hjx_221 帅哥哟,离线,有人找我吗?
      
      
      威望:7
      等级:博士一年级
      文章:4607
      积分:24021
      门派:XML.ORG.CN
      注册:2004/8/30

    姓名:(无权查看)
    城市:(无权查看)
    院校:(无权查看)
    给hjx_221发送一个短消息 把hjx_221加入好友 查看hjx_221的个人资料 搜索hjx_221在『 计算机英语 』的所有贴子 引用回复这个贴子 回复这个贴子 查看hjx_221的博客2
    发贴心情 
    Vista has speech recognition hole

    ----------------------------------------------
    初从文,三年不中;后习武,校场发一矢,中鼓吏,逐之出;遂学医,有所成。自撰一良方,服之,卒~ 
    http://hjx221.blogger.org.cn/

    点击查看用户来源及管理<br>发贴IP:*.*.*.* 2007/2/4 17:36:00
     
     GoogleAdSense
      
      
      等级:大一新生
      文章:1
      积分:50
      门派:无门无派
      院校:未填写
      注册:2007-01-01
    给Google AdSense发送一个短消息 把Google AdSense加入好友 查看Google AdSense的个人资料 搜索Google AdSense在『 计算机英语 』的所有贴子 访问Google AdSense的主页 引用回复这个贴子 回复这个贴子 查看Google AdSense的博客广告
    2024/11/29 19:35:15

    本主题贴数2,分页: [1]

    管理选项修改tag | 锁定 | 解锁 | 提升 | 删除 | 移动 | 固顶 | 总固顶 | 奖励 | 惩罚 | 发布公告
    W3C Contributing Supporter! W 3 C h i n a ( since 2003 ) 旗 下 站 点
    苏ICP备05006046号《全国人大常委会关于维护互联网安全的决定》《计算机信息网络国际联网安全保护管理办法》
    46.875ms