erc721 safeTransferFrom
may dos claimAuction
#683
Labels
2 (Med Risk)
Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bug
Something isn't working
downgraded by judge
Judge downgraded the risk level of this issue
duplicate-739
partial-50
Incomplete articulation of vulnerability; eligible for partial credit only (50%)
Lines of code
https://github.com/code-423n4/2023-10-nextgen/blob/a6f2397b68ef2865374c1bf7629349f25e71a44d/smart-contracts/AuctionDemo.sol#L112
Vulnerability details
Impact
erc721
safeTransferFrom
may dosclaimAuction
. It is unknown if the receiving address is contract or not and implements the onERC721Received function or not. If it is smart contract, it will dos the claim logicProof of Concept
claimAuction
is to transfer nft to the auction winner. When participating in aution, it never check bidder is eoa or smart-contract.If the winner is smart-contract and do not have
_onERC721Received()
, according to the erc721safeTransferFrom
logic, it will revert. The claim logic, not only contains the transfer logic, but also repay token to other bidder, will dos. I think it's a serious problem.Tools Used
manual
Recommended Mitigation Steps
check bidder in
participateToAuction
, if the bidder is smart contract ,check it has_onERC721Received()
or notAssessed type
ERC721
The text was updated successfully, but these errors were encountered: