EUVD-2018-3442

Malware in sbrugna...

DimonCoin (FUD) Security Breach

DimonCoin FUD is a virtual currency system. A security vulnerability exists in the 'transferFrom' function in the smart contract implementation of DimonCoin FUD, which stems from an error in the computation of the included value. The vulnerability can be exploited by an attacker to steal assets...

DimonCoin(FUD), ERC20 token, allows attackers to steal all victim’s balances (CVE-2018–11411)

Abstract I found a vulnerability of a smart contract for DimonCoinFUD, an Ethereum ERC20 token CVE-2018–114111. This vulnerability is exactly same with the UselessEthereumToken’s vulnerability2, 3. DimonCoin token also has the same vulnerable function which is transferFrom in UET token. Therefore...

DimonCoin (FUD) Information Disclosure Vulnerability

DimonCoin FUD is a virtual currency system. A security vulnerability exists in the 'transferFrom' function of the smart contract implementation in DimonCoin FUD, which stems from an error in the computation of the included value. The vulnerability can be exploited by an attacker to steal assets...

Design/Logic Flaw

The transferFrom function of a smart contract implementation for DimonCoin FUD, an Ethereum ERC20 token, allows attackers to steal assets e.g., transfer all victims' balances into their account because certain computations involving value are incorrect...

CVE-2018-11411

DimonCoin (FUD) ERC20 token vulnerable in transferFrom due to incorrect _value computation, enabling overflow to let an attacker steal victims’ balances; no patch details provided in the available documents.

CVE-2018-11411

The transferFrom function of a smart contract implementation for DimonCoin FUD, an Ethereum ERC20 token, allows attackers to steal assets e.g., transfer all victims' balances into their account because certain computations involving value are incorrect...