CVE-2018-13877

Name of the Vulnerable Software and Affected Versions MegaCryptoPolis (affected versions not specified)

Description The issue concerns a Denial of Service vulnerability in the doPayouts() function of the smart contract implementation for MegaCryptoPolis, an Ethereum game. This vulnerability can be triggered when a smart contract with a fallback function that always causes exceptions purchases land. As a result, users are unable to buy lands near the contract's land because the purchase attempts will not be completed unless the doPayouts() function successfully sends Ether to certain neighbors.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.