Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
code423n4Code4renaCODE423N4:2023-07-MOONWELL-FINDINGS-ISSUES-229
HistoryJul 31, 2023 - 12:00 a.m.

Reentrancy Vulnerability in MErc20Delegate.sol

2023-07-3100:00:00
Code4rena
github.com
10
merc20delegate
delegatecall
reentrant calls
malicious actions
nonreentrant modifier
reentrancy guard
JSON

Lines of code

Vulnerability details

Impact

The fallback function delegates calls to the implementation contract using delegatecall. This allows the implementation contract to call back into MErc20Delegate before the original delegatecall completes. An attacker could exploit this vulnerability to perform reentrant calls, potentially leading to malicious actions, such as stealing funds or manipulating contract state.

function fallback() external payable {
implementation.delegatecall(msg.data);
}
An attacker could repeatedly trigger the fallback function while it is still executing, causing unexpected behavior and allowing the attacker to perform unauthorized actions within the contract.

Proof of Concept

The attacker could deploy a malicious implementation contract that includes reentrant calls to the MErc20Delegate contract’s functions during the fallback execution.

contract MaliciousImplementation {
function reentrantCall() external payable {
MErc20Delegate.fallback();
MErc20Delegate.withdraw(msg.value);
}
}

Tools Used

manual code review were used.

Recommended Mitigation Steps

Consider using the nonReentrant modifier or a reentrancy guard in the fallback function to prevent reentrant calls.
Ensure that any external contract calls are made after internal state updates to minimize the impact of reentrancy.

Assessed type

Reentrancy

The text was updated successfully, but these errors were encountered:

All reactions

JSON