Microsoft Speech Hit by Serious Flaws

Microsoft's speech-control engines have been hit by major security flaws, according to researchers. Microsoft Speech is the company's software for voice recognition and text-to-voice, a technology the company is modernising with the acquisition of Tellme Networks a month ago. Besides allowing visually impaired users to interact with Windows, the technology is designed to run automated […]

Share online:

Microsoft's speech-control engines have been hit by major security flaws, according to researchers. Microsoft Speech is the company's software for voice recognition and text-to-voice, a technology the company is modernising with the acquisition of Tellme Networks a month ago. Besides allowing visually impaired users to interact with Windows, the technology is designed to run automated telephone response systems.

The ActiveX controls used by Microsoft Speech version 4.0a to interact with Internet Explorer, xlisten.dll and xvoice.dll, could be exploited by a specially crafted ActiveX object triggering memory corruption, according to researchers. This corruption could allow attackers to take full control of a victim's system, according to Fortinet, which discovered the xvoice.dll bug. The controls are used by Internet Explorer 7 and older versions.

Full article

Microsoft, Microsoft Speech, Security, Flaw, Vulneratbilities

About The Author

Deepak Gupta is a IT & Web Consultant. He is the founder and CEO of diTii.com & DIT Technologies, where he's engaged in providing Technology Consultancy, Design and Development of Desktop, Web and Mobile applications using various tools and softwares. Sign-up for the Email for daily updates. Google+ Profile.