Motorola DROID 2 security flaw allows Voice Actions from passcode-protected state

One of our astute readers let us know about a bug that appears to be present in all stock, unrooted, Motorola DROID 2s (and potentially other Android 2.2 devices with BLUR). The bug allows users to execute Google Voice Actions on their device even when the handset is locked and a passcode is activated. With your DROID 2 locked, and the passcode prompt on the screen, holding the “search” softkey or keyboard-key for four seconds will — without giving the user any feedback — still trigger Google’s Voice Actions. Speaking: “Call 555-555-1234″ or “Call Home” will actually make your DROID 2 do just that (assuming “home” is in your phonebook). We couldn’t make our Nexus One or Captivate replicate the issue, so we’re assuming it is a Motorola/BLUR specific issue. Anyone out there with a DROID X running Android 2.2 able to get their handset to do the same? We’ve reached out to Motorola for comment and will update the post as soon as we hear back. There is a short video demonstrating the issue after the break.

blog comments powered by Disqus