blockchains

https://etherscan.io/address/0x9107C1B28d775E59f98BF3f4dE3b959816CF5526#code

    function setPrices(uint256 newSellPrice, uint256 newBuyPrice) onlyOwner public {
        sellPrice = newSellPrice;
        buyPrice = newBuyPrice;
    }
    function sell(uint256 amount) public {
        require(this.balance >= amount * sellPrice);      // checks if the contract has enough ether to buy
        _transfer(msg.sender, this, amount);              // makes the transfers
        msg.sender.transfer(amount * sellPrice);          // sends ether to the seller. It's important to do this last to avoid recursion attacks
    }

This contract could be used to trade tokens. However there exists a integer overflow in function sell().

if owner set the value of sellPrice to a large number like 0x8000000000000000000000000000000000000000000000000000000000000000 in setPrices() and then the "amount * sellPrice" will cause a integer overflow in sell().

Name		Name	Last commit message	Last commit date
Latest commit History 16 Commits
Phishing.md		Phishing.md
README.md		README.md
balance.md		balance.md
delegatecall.md		delegatecall.md
overflow1.md		overflow1.md
overflow2.md		overflow2.md
overflow3.md		overflow3.md
transferFrom.md		transferFrom.md
transferFrom1.md		transferFrom1.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

blockchains

About

Uh oh!

Releases

Packages

hellowuzekai/blockchains

Folders and files

Latest commit

History

Repository files navigation

blockchains

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Packages