3 matches found
EUVD-2018-6009
Malware in sbrugna...
The Asset.lotPrice doubles the oracle timeout in the worst case
Lines of code Vulnerability details When the tryPrice function revert, for example oracle timeout, the Asset.lotPrice will use a decayed historical value: uint48 delta = uint48block.timestamp - lastSave; // s if delta = oracleTimeout + priceTimeout return 0, 0; // no price after full timeout else...
Integer overflow
An issue was discovered in a smart contract implementation for EUC EUC, an Ethereum token. The contract has an integer overflow. If the owner sets the value of buyPrice to a large number in setPrices then the "msg.value buyPrice" will cause an integer overflow in the fallback function...