2 matches found
Malicious user can permanently break InterchainProposalExecutor#_executeProposal by returning huge amounts of data
Lines of code Vulnerability details Impact InterchainProposalExecutorexecuteProposal makes a call to interchaincall to send the value. It then stores the return data of the call in memory. A malicious user could set the interchaincall target to a malicious contract that would return an extremely...
Unsafe use of .transfer
Lines of code Vulnerability details Impact User funds can be locked by using a smart contract wallet with inefficient callback, or by future hardforks that change the gas consumption. address.transfer has been suggested to deprecate by most auditors, because of the potential OOG error. However,...