CVE-2012-3738

Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 6

Description The issue concerns the Emergency Dialer screen in the Passcode Lock implementation, where it fails to properly limit dialing methods. This allows physically proximate attackers to bypass intended access restrictions. Attackers can make FaceTime calls through Voice Dialing or obtain sensitive contact information by attempting to make a FaceTime call and reading the contact suggestions.

Recommendations For Apple iOS versions prior to 6, update to version 6 or later to resolve the issue. As a temporary workaround, consider disabling Voice Dialing and FaceTime until a patch is available. Restrict access to the Emergency Dialer screen to minimize the risk of exploitation. Avoid using the Emergency Dialer screen for sensitive operations until the issue is resolved.