The mintToken function of a smart contract implementation for Virtual Energy Units (VEU) (Contract Name: VEU_TokenERC20), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
References
Link | Resource |
---|---|
https://github.com/BlockChainsSecurity/EtherTokens/blob/master/GEMCHAIN/mint%20integer%20overflow.md | Exploit Third Party Advisory |
https://github.com/BlockChainsSecurity/EtherTokens/tree/master/VEU_TokenERC20 | Third Party Advisory |
https://github.com/BlockChainsSecurity/EtherTokens/blob/master/GEMCHAIN/mint%20integer%20overflow.md | Exploit Third Party Advisory |
https://github.com/BlockChainsSecurity/EtherTokens/tree/master/VEU_TokenERC20 | Third Party Advisory |
Configurations
History
21 Nov 2024, 03:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/BlockChainsSecurity/EtherTokens/blob/master/GEMCHAIN/mint%20integer%20overflow.md - Exploit, Third Party Advisory | |
References | () https://github.com/BlockChainsSecurity/EtherTokens/tree/master/VEU_TokenERC20 - Third Party Advisory |
Information
Published : 2018-07-09 06:29
Updated : 2024-11-21 03:47
NVD link : CVE-2018-13639
Mitre link : CVE-2018-13639
CVE.ORG link : CVE-2018-13639
JSON object : View
Products Affected
veu_tokenerc20_project
- veu_tokenerc20
CWE
CWE-190
Integer Overflow or Wraparound