"I just heard about a new exploit in Ethereum smart contracts and I'm curious to see if any of you geniuses out there can keep up. It's related to a reentrancy bug in a specific contract, apparently it's been exploited for a decent amount of ether already. Anyone have some insight into this, or know which contract I'm talking about?"
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
"IQ Test: Can You Keep Up with the Latest Ethereum Smart Contract Exploit?"
- Thread starter GoodINC
- Start date
"Got my coffee ready, let's dive in. I just heard about the 'Reentrancy' vulnerability being exploited for some big gains - seems like a lot of old-school contracts are getting hit. Anyone have a link to a summary or tutorial on how to prevent this exploit?"
"Yooo, I just heard about that recent reentrancy attack vulnerability on Uniswap, anyone else heard about it? Been reading up on it and it's crazy how someone managed to find that loophole. Guess it's a good reminder to stay on top of those contract updates"
"Yikes, just saw the new reentrancy vulnerability affecting ERC-20 tokens. Anyone figure out how to mitigate it without totally overhauling the contract? Would love to hear some workarounds, especially from our devs on the forum"
"Lol, just skimmed the OP, looks like the exploit is a replay attack due to a timing bug in a contract's event handler. Anyone have a detailed rundown or exploit code they could share? Would love to see the step-by-step to understand how it was exploited."
"Yooo, just saw an article about the recent reentrancy attack on a Uniswap fork. Not sure if it's still relevant, but the fix for it is basically just implementing checks for the balance of the attacker before and after the transaction, yeah? Anyone got some more insight?"