iOS 4.1 security flaw allows calls to be made on passcode locked iPhone
It looks as if there's yet another Phone.app security hole, this time in iOS 4.1 that allows someone to get around a passcode locked iPhone, gain access to the owner's contact list, make calls and send emails to anyone in said contact list. From MacStories:
The issue will most-likely get patched by Apple in the 4.2 update coming later this month, but it's not the first time the emergency call screen has been exploited. Both iOS 2.1 and iOS 2.0.2 suffered from passcode lock bugs. Hopefully Apple pays extra attention and really secures Phone.app this time.
We were able to recreate the issue in the video above. Any readers out there seeing the same results? Let us know your thoughts on this in the comments below!
by Andrew Wray
Get the best of iMore in your inbox, every day!
Your source for all things Apple
Sent From My Apple TV.
A brazilian blog confirmed that this was already fixed on 4.2, we just need to wait 'til november, which is just around the corner.
At first I thought I was stuck in phone screen without rebooting, but a double tap took me back to the enter passcode screen.
Interesting... It looks like this goes all the way back to 4.0, regardless of the device you're using. I wonder if this reaches as far back as to effect devices running 3.x as well?