Coming on the heels of a bug that allows partial access to the Galaxy Note II, a new bug has been discovered that provides full access to a device locked with a pin, password, or gesture. The bug was posted on the Full Disclosure mailing list by Sean McMillian and makes use of a variation on the original bug.
ZDNet verified the bug on their Galaxy S III running Android 4.1.2 and note that "the issue is very small and difficult to replicate at first." McMillian's instructions are as follows:
- On the code entry screen, press Emergency Call
- Press Emergency Contacts
- Press the Home button once
- Just after pressing the Home button, press the power button quickly
- If successful, pressing the power button again will bring you to the S3's home screen.
It seems like it's not just Apple that is having security issues stemming from the emergency call function. Samsung has not yet commented on the bug and there is not a current estimate for how long it will take for a fix to be released.
Further Reading: Read and find more Hacking & Security news at our Hacking & Security news index page.