PT-2018-12335 · Stex · Stex White List
Publicado
2018-07-16
·
Atualizado
2018-09-12
·
CVE-2018-14088
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
STeX White List (STE(WL)) (affected versions not specified)
Description
An issue was discovered in the smart contract implementation, where an integer overflow occurs. This happens when the owner sets a large value for the
amount variable, causing an overflow in the withdrawToFounders() function due to the calculation amount * 1000000000000000.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Integer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Stex White List