Source1: Jun.19th 2016 Vitalik Buterin blog. https://blog.ethereum.org/2016/06/19/thinking-smart-contract-security/
Source2: Apr.22th 2017 A survey of attacks on Ethereum smart contracts https://eprint.iacr.org/2016/1007.pdf
Source3: 2017 DappGuard : Active Monitoring and Defense for Solidity Smart Contracts https://courses.csail.mit.edu/6.857/2017/project/23.pdf
Contract_Bug_vulnerabilities_classification:
Call_unknown(solidity level) contains:
- The newest Parity attack contract and the bug analysis.
- The DAO attack has this problem, too, but the contract is listed in the Re-entrancy folder.
Gas-limit_Exception(solidity level) contains:
- Government, a ponzi gambling trick.
- KingOfTheEtherThrone.
Re-Entrancy(solidity level) contains:
- The DAO attack contract and bug analysis.
Timestamp_dependence(blockchain level) contains:
- lottopool contract and bug analysis.
Transanction_ordering_Dependence(blockchain level) contains:
- one Sample_contract.
Variable_naming(solidity level) contains:
- Rubixi contract and bug analysis.
- FirePonzi contract and bug analysis.