There is a vulnerability in IOS 9 which makes it possible to view photos and contacts on a device with a PIN code. The error is even in the new update, iOS 9.0.1, which was released today.
Difficult to exploit
It is not easy to exploit the bug. The attacker must therefore first four times to enter a wrong PIN code. After that it is possible to call from the smart assistant Siri and open the Clock application. That is always possible, even if there is already a password is attached.
iMessage
However, if you open the Clock application after first four times to have an incorrect password is used, it is possible to type a text and share via iMessage. This includes in normal cases sit security where you need a pin code, but that happens in that case is not. You can therefore perform various actions iMessage without entering the PIN.
Photos and contacts
From iMessage is it possible to send messages to other users, but also to see all the contacts. It is also possible to create a new contact and there to hang a picture – making an intruder has access to your Camera Roll
New iOS
It is striking that the problem a few days ago revealed. came, but it is not fixed in the latest version of iOS. iOS 9.0.1 came this morning from
The problem is however easy to solve for iPhone and iPad users:. You need for it in the settings to disable Siri that you can use from your lock screen. As a result, it is not possible to call up the assistant and to come in the clock-app.
Also
No comments:
Post a Comment