1. Anthony Bouchard's Avatar


    iOS 6.1.3 was released yesterday to address numerous security holes, as well as improve the Maps application in Japan, and fix a lock screen vulnerability that could allow a user to bypass the lock screen passcode.

    Now it seems that the new iOS 6.1.3 release has just introduced yet another lock screen vulnerability allowing the user to bypass the lock screen passcode and have access to the victim's contacts, photos, call history, and more. The glitch involves using a tool to eject the SIM card, such as a SIM eject tool or paperclip, and using the voice dial feature:



    For a mobile-friendly video link that works with our app, tap on the video link below:

    Video Link

    As soon as you eject the SIM card when the phone call is about to go through via voice dial, the iPhone won’t know what to do and the screen will go straight to the Phone application. From here, the victim’s personal information is freely available for viewing by the user.

    As the video explains, disabling the voice dial feature from the Settings application can keep you protected from this glitch; alternatively, you can watch your iPhone like a hawk and make sure no one ever gets the chance to touch your iPhone except for you, but the former is definitely the most efficient way to keep yourself protected.

    Apart from patching exploits used in the evasi0n iOS 6 untethered jailbreak, the additional lock screen vulnerability that came with a firmware update meant to fix another lock screen vulnerability is just yet another reason not to bother updating to the latest firmware.

    Sources: YouTube via iClarified
    Last edited by Anthony Bouchard; 2013-03-20 at 10:44 PM.
    2013-03-20 10:34 PM
  2. IChi1d's Avatar
    Heh.
    2013-03-20 10:41 PM
  3. novadam's Avatar
    how do people figure this stuff out?
    2013-03-20 10:44 PM
  4. Perceptum's Avatar
    how do people figure this stuff out?
    I have no bloody clue!
    2013-03-20 10:48 PM
  5. rvance's Avatar
    how do people figure this stuff out?
    +1 yes, please explain!!
    2013-03-20 10:51 PM
  6. slim.jim's Avatar
    I never have voice dial enabled on the lock screen anyways.
    2013-03-20 11:03 PM
  7. 2k1's Avatar
    how do people figure this stuff out?
    Same thing how they jailbreak phones. Time and alot of smarts lol
    2013-03-20 11:06 PM
  8. slim.jim's Avatar
    Same thing how they jailbreak phones. Time and alot of smarts lol
    I think this is a lot more time than smarts. Jailbreaking requires developer knowledge and this is trial and error.
    2013-03-20 11:17 PM
  9. MPS3's Avatar
    ^^^ this is what happens when you got more time then you know what to do with
    2013-03-20 11:24 PM
  10. tridley68's Avatar
    Heh.
    Crap i just updated all my work stuff yesterday .
    2013-03-20 11:40 PM
  11. nealh's Avatar
    Just remember though Apple is more safe with their firmware and jailbreaking is bad. The reason it's bad is because it causes security problems. Laughing my *** off
    2013-03-20 11:49 PM
  12. jamesgunaca's Avatar
    Hope we didn't just burn another exploit by pointing this out...but other than that seems like NBD.
    Using and jailbreaking iPhones since 2007.
    2013-03-21 12:14 AM
  13. littlelisa63's Avatar
    Typical apple to fix a vulnerability and release a new one anything to spoil the jailbreak...bas****s
    2013-03-21 12:43 AM
  14. Norb's Avatar
    ...and in other news, people have too much time.
    2013-03-21 01:06 AM
  15. feidhlim1986's Avatar
    Wasn't Schiller blabbering on about security recently...
    2013-03-21 01:37 AM
  16. GenesisDH's Avatar
    It seems it only works if Voice Control is enabled and Siri is not...
    So really it's not a usable exploit for anything above a 4, as Siri takes over in the cases of the 4S/5 and related iOS devices.
    Member of the hackint0sh forums.
    HowardForums Member: Haas_Dave
    2013-03-21 01:39 AM
  17. Reymago23's Avatar
    Apple cant get it right!
    what a pity!
    2013-03-21 02:34 AM
  18. ecd5000's Avatar
    how do people figure this stuff out?
    My thoughts exactly
    Hi. Does anyone know is iBlacklist available in the app store? can it only be purchased outside the app store? If so, is it hard to install? Thanks everyone.
    2013-03-21 02:52 AM
  19. slim.jim's Avatar
    It seems it only works if Voice Control is enabled and Siri is not...
    So really it's not a usable exploit for anything above a 4, as Siri takes over in the cases of the 4S/5 and related iOS devices.
    You also have to know a contacts name, while that might not be hard to figure out.
    2013-03-21 03:00 AM
  20. ThatOneProfile's Avatar
    how do people figure this stuff out?
    The same way Jailbreaks are made? Looking for vulns.
    2013-03-21 03:42 AM
37 12
LINK TO POST COPIED TO CLIPBOARD