Siri Vulnerability: Bypassing Lock Screen via Mail.app Voice Commands

Siri Vulnerability: Bypassing Lock Screen via Mail.app Voice Commands

CVE-2012-0645 · LOW Severity

AV:L/AC:H/AU:N/C:N/I:P/A:N

Siri in Apple iOS before 5.1 does not properly restrict the ability of Mail.app to handle voice commands, which allows physically proximate attackers to bypass the locked state via a command that forwards an active e-mail message to an arbitrary recipient.

Learn more about our Cis Benchmark Audit For Apple Ios.