1. Main
  2. Vulnerabilities
  3. GovernMental DoS
Back to Vulnerability database

GovernMental DoS

ID Submit date Publish date Author Score
1 10.25.2018 10.26.2018 8.8

Description

The code iterates over the storage locations and deletes them one by one. The list of creditors is so long, that this would require a gas amount of 5057945, but the current maximum gas amount for a transaction is only 4712388.
Vector:
BVSS:1.1/B:L/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H/CI:N/II:H/AI:H

Proof of concept

https://www.reddit.com/r/ethereum/comments/4ghzhv/governmentals_1100_eth_jackpot_payout_is_stuck/

Original source

https://etherscan.io/address/0xf45717552f12ef7cb65e95476f217ea008167ae3

Component Smart contract
Platform Ethereum
Subclass Denial Of Service (DOS)

Comments

El
@ElFaylasouf August 1, 2020 05:38pm

"/><script>alert(1)</script>

El
@ElFaylasouf August 1, 2020 05:45pm

<html>
<head><title>Clickjack Test</title></head>
<body><h1><center> Vulnerable </center>
<form method="POST">
<input type="text" name="any" >
<input type="search" placeholder="Search..">
<input type="submit">
</form>
</h1> <iframe src="https://www.trustpilot.com" width="95%" height="100%" styel="margin: 0 2.5%" </body>
</html>

@Ravndralakhara March 8, 2021 10:13am
@jams November 17, 2022 05:46am