The Apple Core

Major security hole found in iPhone

Posted in:

Security
Software
iPhone

Gizmodo has unearthed a security flaw in the iPhone OS and boy is it a doozy. According to the post it's simple to access a locked iPhone's address book, Mail, SMS, Contacts, and Safari. The vulnerability works like this on a password protected and locked iPhone:

Then slide to unlock
Tap emergency call
Double tap the home button

This give you access to the iPhone's favorites, the Address Book, the dial keypad and your voice mail. And it gets worse. Tapping on the blue arrows next to the names gives you full access to the information in a favorite. Tapping an email address gives you access to the Mail application. Tapping a URL in a contact provides full access to Safari. Tapping send text message gives access to all your SMS'. Um, this is bad. Especially when the phone is supposed to be locked. Apple, let's get iPhone 2.0.3 out the door ASAP, m'kay?

posted by Jason D. O'Grady
August 27, 2008 @ 7:24 am

Previous Post: Tapulous developer fired
Next Post: Steve Jobs death has been greatly exaggerated

Last 10 posts:

Six updates for your parent's computer over Thanksgiving (11-25)
QuickBooks 2010 for Mac processes credit card transactions (11-25)
1Password is must-have eshopping nirvana (11-24)
Apple's latest TV ads defend AT&T (11-23)
Another Apple Black Friday leak rumor - with prices! (11-23)
Apple to smokers: butt out or void your warranty (11-23)
Apple's Black Friday sale to include online shopping (11-23)
New iPhone worm found in the wild (11-23)
Schiller: App Store isn't broken (11-22)
First serious iPhone app for DJs: Touch DJ (11-20)