A new critical security hole has been found in iOS 4 that lets you make calls and access contacts info from a password protected iPhone.The security hole bypasses iPhone’s passcode lock without any hack.
Video and instructions to reproduce it after the jump…
How it works:
- Lock your iPhone with a passcode
- Tap Emergency Call
- Enter a non-emergency number such as ###.
- Next tap the call button and immediately hit the lock button.
It should open up the Phone app where you can see all your contacts, call any number, recent call history, send emails, etc.
Watch the security flaw in action here.
I tried is on iPhone 4 4.1 and 3GS 4.0.1, yes, it works and its scary too. Apple has reportedly fixed the hole in iOS 4.2. via [9to5mac]