The users of the iOS devices who were recently affected by a notorious passcode unlock bug took a deep breath of relief Tuesday as Apple released the new iOS 6.1.3 firmware update, claiming to bring a fix for the glitch. But according to a new report, it seems like the old bug had handed over its job to its heir before getting fixed. Putting facts straight, the iOS 6.1.3 has encountered yet another lock screen security flaw.
Reports surfaced in February saying that the unlock feature on the lock screen of devices running iOS 6.1 could be bypassed easily by intruders, allowing full access to the users’ private stuff including iMessages, FaceTime, photos and more. A lot of furor followed thereafter and Apple finally reacted with the release of iOS 6.1.3 and addressed the issue “through improved lock state management.”
However, a Wednesday report from Dutch website iPhoneclub.nl (via iDownloadBlog) has claimed that the iOS 6.1.3 falls prey to an all new lock screen vulnerability that also allows unauthorized users to bypass the passcode and access data within the device.
The website has provided a video showing the flaw and also steps required to perform the hack.
One can hack the device by dialing a number using the Voice Dialing feature (in this case “123”). After the calling information “dialing 123” pops up, the SIM card needs to be removed to quickly end the call.
Once you do this, you will be able to access the recent call history and view photos. You can also browse through the contacts and add a new one. In addition, you can even set picture, either by taking a new one or by selecting an existing one from the photo library on the device.
The new lock screen vulnerability does have some limitations though. You can avoid the flaw by disabling the Voice Dial feature. Moreover, intruders can only access contacts and photos while other apps like Phone and Messages seem to be unaffected.
While the Dutch website’s video does not clarify whether the device shown is in fact running iOS 6.1.3, another website named iPhoneinCanada has tested the flaw on their device on the latest iOS version and has confirmed the bug, iDownloadBlog has reported.
According to iPhoneblog.de, the iPhone 5 is also affected by the exploit. Check out the video.
Having said that, it’s recommended that the owners of older iPhones and iPod touches should disable the Voice Dialing feature by going to Settings > General > Passcode Lock. On the other hand, users of the iPhone 4S and iPhone 5 must disable Siri access from the lock screen.