iCloud activation bypass succeeded 


Hemanth Joseph revealed in his blog post, that he purchased a used iPad Air for his friend from eBay which had its Activation Lock enabled and when the İPad prompted him to enter a username and password to disable the Activation Lock, he took advantage of Apples unlimited input field to crash the iCloud layer and an iPad Smart Case to lock/unlock the device.

The vulnerability works on any İPhone or iPad running İOS 10.1.1 and he has informed Apple of the vulnerability in early November so it is unlikely to exist in iOS 10.2.