An iPhone user has found a way to bypass the handset's passcode lock screen and access the phone application.
A few button presses are all that's involved. When faced with the passcode lock screen, tap emergency call, type in a random number, tap the call button, and press the lock button on top of the phone immediately after. Hey presto! You're into the phone application, where you can have a good nose through the call history, voicemails and address book, and make calls too. You can also select a contact in the address book to send emails and MMS messages.
The flaw affects iOS 4.1, an operating system update for the iPhone 4, 3G and 3GS. The issue was discovered by a member of the Mac Rumors forum. A Boy Genius Report video of the flaw can be seen below.
We've tested the vulnerability. It works and it's bad -- but it's not as bad as it could have been. As the home button is inactive, you can't leave the phone application without placing a call. Once you've made a call, you're sent back to the passcode screen. It's not as bad as someone having complete access to the handset, then.
This isn't the first time security issues have affected the iPhone. Last year, researchers demonstrated how an attacker could use special text messages to take complete control of an iPhone. More recently, hackers discovered you could take control of an iPhone 4 by using the same vulnerability that's been used to jailbreak it. The passcode flaw will undoubtedly be fixed via an update soon.
If you have an iPhone, try out the passcode trick and let us know what you make of it in the comments section below.
Image credit: Engadget
Android App 
RSS Feeds 
iPhone App 
Newsletters 
24 month contract
24 month contract
Comments 9
Add your comment
Anonymous 27 October, 2010 10:06
Hi, ive got a iPhone 3GS 16GB iOS 4.1 with new bootrom and not jailbroken.
I've followed the steps exactly, numerous times now and it isnt working for me. When i hit the lock button the screen goes black just as it should. Maybe the issue is more specific to your phone, e.g. only iPhone 4's, or only jailbroken phones. Good find though.
anonymous 27 October, 2010 10:41
does exactly the same on a 3G handset, but you gotta be quick! i have to reboot the phone though, can't get out of the phone app otherwise
Anonymous 27 October, 2010 10:46
Interesting flaw - just tried it on mine (iPhone 4 32GB) - works exactly as you said.
anonymous 27 October, 2010 12:10
I tried to send a txt, and then i was able to 'lock' it again and get out of the phone app.
Anonymous 27 October, 2010 14:20
iPhone 4 IOS4.1, flaw works exactly as described above.
Make a call, end call, drops me back at the screen to enter my passcode
Anonymous 27 October, 2010 15:30
I tried numerous times and can't get it to work on my phone. iphone 4 factory unlocked.
Anonymous 28 October, 2010 10:27
Has anyone else not realized this is not a security issue but a health one. Say your found somewhere unconscious. How would the police or ambulance service know who to call? your phone is locked. This feature is so you can access the contacts and call the I.C.E (in case of emergency contact) number in your contacts list. If you lose your phone and call your provider they can stop anyone making calls if you lose your phone anyway.
Anonymous 28 October, 2010 17:59
Yea... health's definitely the reason for it.
Of course, Apple have known about this all along and put this 'feature' in on purpose... right?
anonymous 29 October, 2010 11:35
I just tried it and couldn't place a call. I get to the phone app but the calls fail and there's no signal. (ios 4.1 locke to 3)