Bug Allows Lock Screen to be Bypassed on iPhone with iOS 6.1
A bug has been discovered on the iPhone running iOS 6.0.1 and iOS 6.1 which allows users to bypass the lock screen passcode and gain access to a users Contacts and the users Camera roll. The trick only works on iPhones because it uses the Emergency Call button.
Here’s how it works, though we caution against trying this since it does involve a brief dialing of an emergency number. Please follow the directions and immediately cancel those calls. A safer way to test this is to remove the SIM card from the iPhone, preventing any communication with the outside world.
- Tap the “Emergency Call” button, then attempt to turn off the iPhone and tap Cancel
- Attempt to dial an emergency number like 112 and immediately cancel that phone call and go back to the lock screen
- Attempt to unlock the iPhone again, and start holding the power button for 3 seconds, then tap the “Emergency” button again right before the ‘Slide to Power Off’ option appears
- Continue holding Power to keep access to the device
If done properly, the lock screen then seemingly forcibly quits (or crashes) and you are now sitting in the users Phone and Contacts app, with full access to the address book, call log, and even Photos and Camera Roll by way of editing contact information.
If you are concerned about the security implications of this, turning off simple numerical passcodes and using a complex password of multiple character variations is sufficient to prevent the bug from working at all.
The lock screen bypass was originally found in early February by the YouTube video embedded below, which Gizmodo discovered and brought to wider attention:
The Verge offers their own recent video demonstrating the effect:
A very similiar lock screen bypass bug existed a while back in iOS 4.1 for iPhone, it too relied on the Emergency Call button and was patched quickly by Apple in a point release.
This is the third prominent bug to impact iOS 6.1. One effected 3G reception for some iPhone 4S users and was patched by the iOS 6.1.1 update, and another impacts Microsoft Exchange users which causes battery drain and communication issues due to excessive pinging of the remote Exchange servers Calendar function.
Apple will likely release a minor iOS patch update to resolve this problem rather quickly.
Update: Apple has acknowledged this bug, and a patch to iOS (presumably iOS 6.1.2) will be released soon to resolve the problem.
Not working in Myanmar Network…!
A SIM card isn’t required to make an emergency call, so that isn’t a safe way to play with this bug.
If you get stuck on “Searching” or “No Service” I am pretty sure it can’t complete the call, or is that not correct? I mean, how would you connect to any network to make any call if there is no service, right?
The phone wont show any service without a sim. But all phones can call 911 without it. 911 is essentially an unlocked number. You should remove that tip before people call their emergency lines by accident.
As an example. If im with a carrier and im out of their towers range but within a competitors. 911 is the only call that can still go through. Sim or no.
This is correct. Most phones these days just say “no service” but some phones are programmed to say things like “SOS” or “Emergency calls only”
I should also mention, this is a requirement by law (at least, in Canada and the U.S.) and many communities have developed a recycling program where they will give out unused phones that have been turned in, to homeless people or people who couldn’t afford cell phones, just so they can have a phone that will call 911, even without a SIM or an account with any provider.
That is definitely true. I had a SIM tray with cracked contacts and yes, it could still dial 911. But to those of you who say that this is true in America, 911 doesn’t exist outside of the US and Canada. EU uses 112 and 999, I believe.