I saw that George Ou is reporting a remote exploit in Vista based on it Speech Control functionality, wherein a malicious sound file (for example, on a web page) can trigger arbitrary commands.
For a second, I couldn’t believe no one had thought of this exploit before – and then I remembered this old chestnut dating back to at least 1997:
At a recent Sacramento PC User’s Group meeting, a company was demonstrating its latest speech-recognition software. A representative from the company was just about ready to start the demonstration and asked everyone in the room to quiet down.
Just then someone in the back of the room yelled, “Format C: Return.”
Someone else chimed in: “Yes, Return!”
Unfortunately, the software worked.