CVEs-PoC/2018/CVE-2018-11687.md at dc3bd6cd71a486f862e7cf4da52fce4cfeb10e52

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-08 22:35:37 +02:00

Files

T

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

An integer overflow in the distributeBTR function of a smart contract implementation for Bitcoin Red (BTCR), an Ethereum ERC20 token, allows the owner to accomplish an unauthorized increase of digital assets by providing a large address[] array, as exploited in the wild in May 2018, aka the "ownerUnderflow" issue.

POC

Reference

No PoCs from references.

Github

https://github.com/DSKPutra/Buggy-ERC20-Tokens
https://github.com/SruthiPriya11/audit
https://github.com/devmania1223/awesome-buggy-erc20-tokens
https://github.com/mitnickdev/buggy-erc20-standard-token
https://github.com/rjhorniii/DICOM-YARA-rules
https://github.com/sec-bit/awesome-buggy-erc20-tokens

1.0 KiB Raw Blame History

CVE-2018-11687

Description

POC

Reference

Github

1.0 KiB

Raw Blame History