| Author |
Code Memo Bug (K700/T630) |
viewfinder
Joined: Jan 19, 2005
Posts: 16
From: UK, Herts/Bucks
PM |
There's a little, odd bug in code memo (bear with me here)
Suppose you have an account with NatWest and its PIN is 1234, you enter that into your code memo.
Someone steals your phone, and tries to get your info. Goes into Code memo, enters a passcode but gets it wrong. K700 responds with a random string, but still shows the codes stored - the names are correct, but the codes are wrong.
So, it shows the PIN for NatWest as (say) 8305. Obviously, said thief tries that and it doesn't work (all good so far).
To be a pain, thief then edits the code to 8306 and then (sometime in the future) the phone gets back to you.
In your distraught state at having nearly lost your phone, you forget your PIN, so you consult CodeMemo, which tells you the PIN is 1235. Yup, 1235, not 1234. (What ever the thief "adds" gets added to your pin! So, if he changed 8305 to 8307, your NatWest PIN would show as 1236).
So, if you get a mischeivous theif, or even work/schoolmate, they can change your stored numbers (though they won't know the actual numbers they are changing).
Tested on K700 and T630
Phil |
|
|
masseur
Joined: Jan 03, 2003
Posts: > 500
From: Sydney, London
PM |
firstly the chance of getting a phone back is minimal and secondly I would never rely on just electronic storage that I can't back up anyway. what if you lose the phone and never get it back?
personally I have never used this code memo. wouldn't trust it
|
viewfinder
Joined: Jan 19, 2005
Posts: 16
From: UK, Herts/Bucks
PM |
TBH, I wouldn't trust it either, I was just playing with features I hadn't explored before. |
whizkidd
Joined: May 14, 2004
Posts: > 500
From: India
PM, WWW
|
Er..what is code memo? A software? @ Masseur, did we have a thread about this earlier?
This message was posted from a T230 |
viewfinder
Joined: Jan 19, 2005
Posts: 16
From: UK, Herts/Bucks
PM |
@ Whizkid - I did a search and couldn't find the same thing. There has been talk about Code Memo but not discussing this bug. |
masseur
Joined: Jan 03, 2003
Posts: > 500
From: Sydney, London
PM |
this isn't a bug. its how code memo is designed to work unfortunately
|
blackspot
Joined: Sep 06, 2004
Posts: > 500
From: Philippines
PM |
Yup there was a previous thread about this:
http://www.esato.com/board/viewtopic.php?topic=79505
resistance is futile. |
viewfinder
Joined: Jan 19, 2005
Posts: 16
From: UK, Herts/Bucks
PM |
@masseur - I can't believe it's *designed* to work like that. There's no way the wrong passcode should allow you to change the real data (even if you can't see what it's actually changing).
...and sorry, I didn't find the previous thread when I searched - hardly surprising given the thread title  |
masseur
Joined: Jan 03, 2003
Posts: > 500
From: Sydney, London
PM |
yeah sorry. I meant its designed to show you something even if its the wrong data and its that which we have discussed before. I do agree that you should NOT be able to edit it without the correct code
_________________
Unless I'm very much mistaken...
my reviews: V800 K700i (coming soon: V3, JAM)
[ This Message was edited by: masseur on 2005-02-01 11:47 ] |
govigov
Joined: Jul 30, 2004
Posts: > 500
From: Back home - Cochin
PM |
Yes, heard of it.
This message was posted from a K500 |
|
|
Posted: 2005-02-01 12:06
