You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The onCall function refunds gas using payable(sender).call. This refund mechanism is prone to failure, potentially leading to denial-of-service conditions.
Related CVE: CVE-2024-44445: This issue involved state manipulation attacks in a BSC smart contract, where attackers could inflate token balances, leading to increased profits without cost.
The text was updated successfully, but these errors were encountered:
0xM3R
changed the title
Gas refund logic may lead to DDoS condition in the smart contract
Gas refund logic may lead to DDoS condition in the UninversalNFT contract
Dec 11, 2024
0xM3R
changed the title
Gas refund logic may lead to DDoS condition in the UninversalNFT contract
Gas refund logic may lead to DDoS condition in the smart contracts
Dec 11, 2024
Vulnerability Details
The
onCall
function refunds gas usingpayable(sender).call
. This refund mechanism is prone to failure, potentially leading to denial-of-service conditions.Related CVE:
CVE-2024-44445: This issue involved state manipulation attacks in a BSC smart contract, where attackers could inflate token balances, leading to increased profits without cost.
Analysis
The vulnerable implementation
standard-contracts/contracts/nft/contracts/evm/UniversalNFT.sol
Line 119 in a08166a
How It Can Be Harmful
PoC Code
Simulate a refund failure by sending funds to a contract with a rejecting fallback:
How to Mitigate the Issue
Log refund failures instead of reverting:
Remove the refund mechanism entirely to simplify contract logic.
References
The text was updated successfully, but these errors were encountered: