also @ TechSpot: Apple claims Samsung violates Siri patents with Google Now

Flaw in iOS 6.1 lets you bypass password-protected lock screen

By

On February 14, 2013, 9:30 AM With Video

A security flaw recently discovered in iOS 6.1 lets anyone bypass your iPhone password lock and access some of your data after following a series of steps. The method is detailed in the YouTube video below and involves making and immediately canceling an emergency call, holding down the power button a couple of times during the process, and pushing the home button after getting into the phone’s contact list.

Once the lock is bypassed you won’t actually have full access to every app on the phone but it’s still possible to snoop around local device data. Particularly, users will be limited to the Phone app, and from there it’s possible to browse contact information, make calls, check voicemails, and look through photos (by attempting to add a photo to a contact). You can even send emails and texts through the sharing-a-contact feature.

Exactly how someone came up with such a combination of button holding and tapping is beyond me, but I was able to verify the method on an iPhone 4 running iOS 6.1 and it works. No word on whether iPads and iPods are vulnerable too but it seems unlikely since the process involves making an emergency call.

This isn't the first time a lock screen vulnerability in iOS has become public. A very similar bug affected iOS 4.1 back in 2010 and was fixed in iOS 4.2. The company hasn’t commented on the latest loophole yet.

Here are the detailed steps:

  1. Lock device.
  2. Slide to unlock.
  3. Tap emergency call and type in your emergency number (911, 112, ...).
  4. Tap the call button and immediately cancel the call.
  5. Lock device again with the sleep button and then turn it on using the home button.
  6. Slide to unlock.
  7. While on the lock screen hold the sleep button for three seconds and quickly tap emergency call before the switch off slider shows up. This will cause your phone’s screen to flicker and then show the phone app.

Update: Apple has issued a statement saying it plans to fix the exploit in a future software update. The company did not offer a timeline of when such an update would arrive.

, , , , , ,

13 comments

Related Products from Product Finder

Apple iPhone 5 88

Apple iPhone 5

The Apple iPhone 5 features a 4-inch display retains the same 326 PPI density as its predecessor with an effective resolution of 1,126 x 640, and a new Lightning connector. The new handset now features 802.11a/b/g/n Wi-Fi with 802.11n supporting dual-band 2.4GHz and 5GHz frequencies. Bluetooth 4.0 is back in addition to GPS and GLONASS for location services.

61 Reviews
Price: $99.99

Apple iPhone 4S 88

Apple iPhone 4S

The iPhone 4S looks identical to last year's model but comes in a new 64GB flavor and upgrades the camera to include an 8-megapixel sensor with improved low-light performance and 1080p video capture. In terms of performance the new iPhone is reportedly up to 2x faster and is also capable of running on faster HSPA+ networks, reaching theoretical download speeds of up to 14.4Mbps.

93 Reviews

Apple iPhone 4 89

Apple iPhone 4

Read expert reviews, pros & cons, and product information about Apple iPhone 4. There are 192 reviews available so far.

109 Reviews

User Comments: 13

Got something to say? Post a comment
  1. February 14, 2013 9:49 AM
    captainawesome
    captainawesome said:

    Yeah how did he come up with that? He was practicing his Mortal Combat combo's!

    Reply
  2. February 14, 2013 9:52 AM
    Guest said:

    Did they just move the same team responsible for Apple Maps out and over to the iOS side of the house? I can't believe how problematic updates have become. Apple has not even acknowledged they broke ActiveSync integration in this last release. C'mon, you guys can't afford to screw-up with so many other vendors at your heals.

    Reply
  3. February 14, 2013 10:26 AM
    Skidmarksdeluxe
    Skidmarksdeluxe said:

    Yeah how did he come up with that? He was practicing his Mortal Combat combo's!

    Nah. Being an iPhone he was probably just trying to switch it off.

    Reply
  4. February 14, 2013 10:48 AM
    Guest said:

    Heh, I keep hearing of iphones being accessed easily and "bad" programming all around... And companies want to replace more secure phones with this?

    Reply
  5. February 14, 2013 10:50 AM
    Divvet said:

    Awesome, just tried this on my friends iPhone, hilarious.

    Reply
  6. February 14, 2013 11:50 AM
    misor
    misor said:

    Noooo!, you are tapping it wrong...

    "Exactly how someone came up with such a combination of button holding and tapping is beyond me, but I was able to verify the method on an iPhone 4 running iOS 6.1 and it works."

    LOL.

    when would my favorite "up, up, down, down, left, right, left, right, A, B, A, B, shift, start" make a comeback?

    Reply
  7. February 14, 2013 1:55 PM
    tonylukac said:

    This reminds me of the payphone days when they were first putting in ess (electonic switching system). If you placed a toll call (one that costs more than 10 cents), an operator would come on asking for more money. If you depressed the switchhook for about 2 seconds and released, the operator would go away and the call would go thru. All money was returned and the call was absolutely free. There was another bug in the later version of ess (ess 5) where you could place a call from the payphone and talk for less than 3 minutes, even long distance. When done, you pressed the switchhook and the operator would come on. You'd tell her you were done with the call, hang up, and the money would return like you were at a slot machine. What did att do about it when they found out? Instead of hiring some technicians they banned long distance dialing from all payphones and then got rid of payphones entirely.

    There was a trick at verizon (formerly gte) payphones. If you were placing a 10 cent call, some primative systems allowed you to dial the call and then deposit the money if the party answered, in case the line was busy. You could just talk thru the earpiece and never deposit 10 cents.

    Reply
  8. February 14, 2013 3:06 PM
    SNGX1275
    SNGX1275, TS Special Forces, said:

    This doesn't work if the user has turned off the "simple passcode" option.

    Reply
  9. February 14, 2013 3:07 PM
    spydercanopus
    spydercanopus said:

    These "flaws" are purposefully integrated to help law enforcement.

    Reply
  10. February 14, 2013 6:47 PM
    hahahanoobs said:

    This reminds me of the payphone days when they were first putting in ess (electonic switching system). If you placed a toll call (one that costs more than 10 cents), an operator would come on asking for more money. If you depressed the switchhook for about 2 seconds and released, the operator would go away and the call would go thru. All money was returned and the call was absolutely free.

    Good one. I remember 10 or so years ago I could send text msgs for free by putting a "+" sign, followed by the number (ie: +14162345656) to send local text messages. It worked for quite a while before Fido patched it.

    Reply
  11. February 16, 2013 8:24 PM
    JC713
    JC713 said:

    This is very similar to that flaw in ios 5.x.x for the iPad that allowed someone to go to the lock screen, go to the shutdown screen, close the smart cover and get access to the device. Interesting how something similar exists once again.

    Reply
  12. February 17, 2013 2:08 AM
    captaincranky
    captaincranky, TechSpot Addict, said:

    I'm still reasonably sure if you can just get by the lock screen, you're holding it wrong....

    Reply
  13. February 19, 2013 12:17 PM
    adamsmith0123 said:

    Based on the news apple will release the 6.2 update soon to fix this problem.

    Reply

Recently commented stories

Post a new comment

Social Login & Guest Posting TechSpot Members
Login here or sign up for free,
it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.
TechSpot on:

Most Popular

Trending Featured
More Trending Topics

Downloads and Drivers

Downloads   Drivers  

KiTTY 0.62.2.3

mIRC 7.32

Actual Bookmarks 1.2

World of Warcraft Patch 5.3.0

Funny Photo Maker 2.4.1

More Downloads

Latest Discussion

GTX 660 TI VS GTX 660 8 replies on Audio and Video

What is the best graphics card my computer can handle? 6 replies on Audio and Video

The average life of a GPU 17 replies on Audio and Video

Graphics Card Question 9 replies on Audio and Video

Does anyone have experience with iolo System Mechanic? Words of advice? 11 replies on Software Apps

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.