• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • Lockscreen Bug May Lead to iOS 4.1.1
    [ame]http://vimeo.com/16179929[/ame]


    A recently discovered lockscreen glitch may force Apple to push out a firmware upgrade ahead of the arrival of iOS 4.2 next month. [UPDATE: Apparently not, an Apple spokeswoman told Wired.com that “We’re aware of this issue and we will deliver a fix to customers as part of the iOS 4.2 software update in November.”] The bug - which allows anyone to do things like make calls, send SMS messages and access the photo library on a locked phone - appears to affect phones running 4.0.1 and 4.1, jailbroken and non-jailbroken.

    This appears to be a nuisance issue only; your friend can use it to annoy you, and if your phone is stolen you have bigger problems than people making calls to your contacts. The way it works is completely straightforward: you press "Emergency Call" from the lockscreen and then enter a nonsense sequence of digits/symbols like ###. Once the phone starts dialing, you immediately press the lock button and you're dropped into the Phone app, with access to call history and contacts. Additionally, if you go to an entry in your address book choose to share a contact via MMS, by tapping the camera icon you can go into the photo library.

    The flaw recalls a similar bug back in iPhone OS 2.0.2 which allowed you to jump from the Emergency Call screen directly to the Favorites screen of the Phone app by double-tapping the Home button. Email addresses in Favorite contacts then gave access to the Mail app, exposing all your messages.

    As usual, the only way around this built-in security hole is to jailbreak your phone. My Typophone 4 lockscreen doesn't have an Emergency Call button, nor do other lockscreen replacements like Android Lock.

    Source: [ame=http://forums.macrumors.com/showthread.php?t=1035879]MacRumors[/ame]
    This article was originally published in forum thread: Lockscreen Bug May Lead to iOS 4.1.1 started by Paul Daniel Ash View original post
    Comments 30 Comments
    1. MikeThomson's Avatar
      MikeThomson -
      I cant get my 3gs to do this
    1. l0k0's Avatar
      l0k0 -
      Quote Originally Posted by MikeThomson View Post
      I cant get my 3gs to do this
      Your timing hitting the call button and the lock button has to be perfect. I had to try it a few times before i finally got it to work.

      But the androidlock fixed that problem hehe
    1. dsg's Avatar
      dsg -
      yeah I got it to work, you have to hit the lock button quick after tapping the call button to get it to work
    1. Zokunei's Avatar
      Zokunei -
      "We’re aware of this issue and we will deliver a fix to customers as part of the iOS 4.2 software update in November."

      No iOS 4.1.1
    1. MikeThomson's Avatar
      MikeThomson -
      Quote Originally Posted by l0k0 View Post
      Your timing hitting the call button and the lock button has to be perfect. I had to try it a few times before i finally got it to work.

      But the androidlock fixed that problem hehe
      i tried probably 60 times.. it just wont do it if i type *** in it looks like its about to work but it doesnt... oh well i dont lock my phone anyways
    1. EskimoRuler's Avatar
      EskimoRuler -
      thats cool, might do this to my friend to mess with him like the post said
    1. rhekt's Avatar
      rhekt -
      Didn't work, tried it. Several times several combinations. All it would do is say emergency calls only. Bunch of crotch.
    1. Amraam's Avatar
      Amraam -
      Quote Originally Posted by MikeThomson View Post
      i tried probably 60 times.. it just wont do it if i type *** in it looks like its about to work but it doesnt... oh well i dont lock my phone anyways

      Because it's not *** you have to type; it's ###. His video is revervsed for some reason.

      Gonna do this to my mates phone, who works for the Apple store. I bet he says something like "oh I already knew about that - we have already fixed it..." haha
    1. sziklassy's Avatar
      sziklassy -
      Quote Originally Posted by Funked View Post
      It's a security hole, I don't think it should of been 'released' by the person who found it. Now every major iPhone blog, website, forum etc has wrote about this. And at that, it's described (in detail) on how to preform the bug. This just makes it easier for anyone who has found/stole an iPhone to abuse it. Just my thoughts on it...
      On that same token we shouldn't release any news that could possibly in any way harm someone somewhere in the world. If we don't talk about bugs, they don;t get fixed. Simple as that.

      Quote Originally Posted by l0k0 View Post

      But the androidlock fixed that problem hehe
      Didn't even know about this. Loving it! Thanks!
    1. therandy's Avatar
      therandy -
      Quote Originally Posted by madczech View Post
      This reminds me of the good old jailbreakme.com times and I don't mean the on from 4.0
      LMAO I remember those days, entering in a code to access safari from the lock screen. Ahh the beginning was fun and not so crowded with little 10 year olds asking questions about jailbreaking. That was when It was mainly adults who owned $600 phones...now everyone has a damn iphone.

      Quote Originally Posted by Amraam View Post
      Because it's not *** you have to type; it's ###. His video is revervsed for some reason.

      Gonna do this to my mates phone, who works for the Apple store. I bet he says something like "oh I already knew about that - we have already fixed it..." haha
      You dont have to use "###" or "***" you can type in any number and as soon as you tap call, lock the phone.

      On a more important note: I also have "Multifl0w" installed and I can access ANYTHING that is running in the background by double tapping the home button. I opened setting, set a code, closed settings.app (natively backgrounded) and then locked my phone. swiped to unlock...tap emergency call, dialed a random number "8713#8" tap call, pressed lock button....contacts came up. Double tapped home button, settings.app still running in background, switched over to the setting.app with the ability to remove unlock code, and the mother of all dangers "Erase All Content and Settings" <--to include your nifty "iGotya" app that was just released or MobileMe's "Find my Phone" feature! Your ******!

      Hope this helped =)