This repository has been archived by the owner on Nov 26, 2023. It is now read-only.
innertia - With an ERC20 token with No Revert on Failure, the token is recognized as withdrawn even though it has not been withdrawn. #53
Comments
github-actions
bot
added
Medium
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
innertia
medium
With an ERC20 token with No Revert on Failure, the token is recognized as withdrawn even though it has not been withdrawn.
Summary
Some tokens do not revert on failure, but instead return
false(e.g. ZRX).If the implementation does not check the return value, processing proceeds as if the transfer succeeded even though it failed.
Vulnerability Detail
In
FootiumPrizeDistributor'sclaimERC20Prize, the token is transferred with_token.transfer(_to, value). However. This does not check the return value, so even if it fails, the process proceeds as if it had succeeded.Impact
The user does not receive the token but is recorded as having received it. It is a substantial loss of funds.
Code Snippet
https://github.com/sherlock-audit/2023-04-footium/blob/main/footium-eth-shareable/contracts/FootiumPrizeDistributor.sol#L130
Tool used
Manual Review
Recommendation
Use
safeTransferDuplicate of #86
The text was updated successfully, but these errors were encountered: