iPhone Vulnerability Makes It Easy to Access Your Pin Protected Data
LIKE
TWEET
SHARE
PIN
SHARE
POST
MAIL
MORE
Posted May 27, 2010 at 11:31am by iClarified
A data protection vulnerability has been discovered with non-jailbroken pin protected 3GS iPhones that bypasses authentication and accesses data
The vulnerability was discovered by Bernd Marienfeldt and applies to various firmware versions.
This data protection flaw exposes music, photos, videos, podcasts, voice recordings, Google safe browsing database, game contents… by in my opinion the quickest compromising read/write access discovered so far, without leaving any track record by the attacker. It's about to imagine how many enterprises (e.g. Fortune 100) actually do rely on the expectation that their iPhone 3GS's whole content is protected by encryption with an PIN code based authentication in place to unlock it.
The contents sample have been collected off a non jail broken iPhone 3GS (with latest iPhone OS installed, all apps fully up to date and immediately PIN lock enabled) by simply connecting it powered off via USB to a Linux Lucid Lynx PC (10.04) and then switched back on – being automatically mounted with given insecurity and never been attached to the PC before.
Merienfeldt believes the allowed write access could also lead into triggering a buffer overflow. Apple thinks they understand why this can happen but cannot provide timing or further details on the release of a fix.
They can close any holes for jailbreak / unlock and leave exposed such info?? They should spend more time to make it safer and not trying to close such holes.
Yes, you can get more security protection for your iPhone by jailbreaking methods. Yeah, I am damn serious, you can ask Steve Jobs for sure. Here is his e-mail: sjobs@apple.com (no longer sjobs@gmail.com after AdMod skirmish)
Um...this isn't news. You've always been able to access the media partition. Just use iFunbox or DiskAid.
And access to the media partition doesn't mean you can run unauthorized code, so I fail to see how a buffer overflow could be possible.
Nothing more than scare tactics here.
![Apple May Equip New iPad Pro With M4 Chip [Gurman]](/images/news/93437/93437/93437-160.jpg "Apple May Equip New iPad Pro With M4 Chip [Gurman]")
![iPhone 16 Expected to Come in Four Different Screen Sizes [Image]](/images/news/93434/93434/93434-160.jpg "iPhone 16 Expected to Come in Four Different Screen Sizes [Image]")
![Apple Shares Official Trailer for 'Hollywood Con Queen' [Video]](/images/news/93432/93432/93432-160.jpg "Apple Shares Official Trailer for 'Hollywood Con Queen' [Video]")
![New 'Beats Solo Buds' Wireless Earbuds and 'Beats Solo 4' Wireless Headphones Leaked [Images]](/images/news/93429/93429/93429-160.jpg "New 'Beats Solo Buds' Wireless Earbuds and 'Beats Solo 4' Wireless Headphones Leaked [Images]")
![Apple Debuts Official Trailer for 'The Big Cigar' [Video]](/images/news/93427/93427/93427-160.jpg "Apple Debuts Official Trailer for 'The Big Cigar' [Video]")
![Apple Watch Series 9 Back On Sale for 25% Off! [Deal]](/images/news/93421/93421/93421-160.jpg "Apple Watch Series 9 Back On Sale for 25% Off! [Deal]")
![New M3 13-inch MacBook Air On Sale for $110 Off! [Lowest Price Ever]](/images/news/93420/93420/93420-160.jpg "New M3 13-inch MacBook Air On Sale for $110 Off! [Lowest Price Ever]")
![New 15-inch M3 MacBook Air On Sale for $149.01 Off! [Lowest Price Ever]](/images/news/93314/93314/93314-160.jpg "New 15-inch M3 MacBook Air On Sale for $149.01 Off! [Lowest Price Ever]")
![Apple 96W USB-C Power Adapter On Sale for 49% Off [Deal]](/images/news/93302/93302/93302-160.jpg "Apple 96W USB-C Power Adapter On Sale for 49% Off [Deal]")
