• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Help URGENT! Code and pattern lock flaw

W

wblaw

Lurker
I dont know if this is just my GS2 but I know this doesnt seem to happen on older phones. Probably an issue with 2.3.4.

If I set a password, code, or pattern on my lockscreen, lock the phone, then press the power button to unlock (it prompts for a code or pattern). If instead of entering code or pattern, I let the screen turn off on its own, then press the power button again, the phone is now unlocked. Pretty huge security flaw. Anyone else see this with GS2 on 2.3.4?
 
wblaw said:
I dont know if this is just my GS2 but I know this doesnt seem to happen on older phones. Probably an issue with 2.3.4.

If I set a password, code, or pattern on my lockscreen, lock the phone, then press the power button to unlock (it prompts for a code or pattern). If instead of entering code or pattern, I let the screen turn off on its own, then press the power button again, the phone is now unlocked. Pretty huge security flaw. Anyone else see this with GS2 on 2.3.4?
Click to expand...

Yes known issue, just set the timeout to immediately LOCK after powering off. If you set it to anything other than immediate, then you get this issue.
 
This information was available like 2 weeks before at&t even released the Samsung Galaxy s2. It was probably mid-September when a YouTube video was released that demonstrated the flaw.

As mentioned above, Samsung and at&t recommended that everyone set the timeout to immediate to temporarily fix the issue.

I think the issue is resolved in 2.3.5, but that version stops jigs from being able to reset our flash counter (a root/custom ROM thing).
 
Gosh, when it said "urgent" I thought it was going to be the problem I had. I tried to set a pattern lock screen. Got it all done. Shut screen off. Turned screen on, and my pattern would not work! (even though you have to do it twice when you set it so you don't mess up). I was FREAKING out. Thought I had locked myself out of my phone for good! Thank goodness for this known flaw (the actual topic of the thread) because it was the only way I could get into my phone and turn the lock off!!
 
Did a search and didnt find anything. I put urgent thinking no one knew about this and one's phone is not secure if the settings are not changed.

Guess its not urgent sorry.
 
You must log in or register to reply here.
Back
Top Bottom