Erc20 Race condition #37

code423n4 · 2021-09-08T07:24:29Z

Handle

JMukesh

Vulnerability details

Impact

In nTokenERC20Proxy.sol there is no decreaseAllowance()/ IncreasAllowance() function which make it prone for double spending. A malicious attacker can execute a double-spend attack on an allowance by front-running the
execution of an approve() function that alters the state of a balance

Proof of Concept

https://github.com/code-423n4/2021-08-notional/blob/main/contracts/external/adapters/nTokenERC20Proxy.sol#L100

Tools Used

manula review

Recommended Mitigation Steps

add increaseAllowance()/ decreaseAllowance() functionality

jeffywu · 2021-09-11T17:52:50Z

This is a well known issue with ERC20. The atomic increase and decrease to allowance also do not fully prevent the attack, it is also a very theoretical attack vector. This should be reduced to 0 Non-Critical.

ghoul-sol · 2021-09-15T22:21:18Z

Agree with sponsor

code423n4 added 2 (Med Risk) bug Something isn't working labels Sep 8, 2021

code423n4 added a commit that referenced this issue Sep 8, 2021

JMukesh issue #37

7df01a2

jeffywu added disagree with severity sponsor acknowledged labels Sep 11, 2021

ghoul-sol added 0 (Non-critical) and removed 2 (Med Risk) labels Sep 15, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Erc20 Race condition #37

Erc20 Race condition #37

code423n4 commented Sep 8, 2021

jeffywu commented Sep 11, 2021

ghoul-sol commented Sep 15, 2021

Erc20 Race condition #37

Erc20 Race condition #37

Comments

code423n4 commented Sep 8, 2021

Handle

Vulnerability details

Impact

Proof of Concept

Tools Used

Recommended Mitigation Steps

jeffywu commented Sep 11, 2021

ghoul-sol commented Sep 15, 2021