Monday, February 25, 2013, 11:26 am PT (02:26 pm ET)
Another lockscreen passcode flaw found in Apple's iOS 6.1Another vulnerability has been discovered in iOS 6.1 that could give malicious users access to data on an iPhone with a lockscreen passcode enabled.
The vulnerability, which was highlighted on Monday by Jacqui Cheng of Ars Technica, is similar to one that was recently discovered. But the new exploit can make the iPhone screen go black, and allow an attacker to plug in the device to a computer via USB and potentially access the data stored on the handset.
Like the previous hack, the exploit can be accessed by making and then immediately canceling an emergency call on a passcode-locked device.
Of course, a hacker must have physical access to the device for the exploit to yield any data. But using the method highlighted, data such as contacts and voicemails could be extracted from a stolen iPhone even if a passcode lock were enabled on the device.
The previously highlighted lockscreen bug will be addressed by Apple in a forthcoming software update. A beta version of iOS 6.1.3 that addresses the issue was supplied by Apple to developers for testing last week.
Apple's iOS platform has had a history of lockscreen passcode bugs, as Cheng noted issues have existed in iOS 2.0, iOS 4.1, and now iOS 6.1.
On Topic: iPhone
- Report: iPhone 5s to soon account for 1 in 5 iPhones, 5c growth stagnant
- Russia's Megafon deal with Apple, Inc. guarantees sales of 750k iPhones over 3 years
- Pebble adds eBay, Evernote & Time Warner as latest smart watch app partners
- Apple continues to add share in U.S. smartphone market, now holds 42%
- iPhones much more likely to be stolen, less likely to be broken or need replacement