Beedle - Oracle free perpetual lending

Summary

Some ERC20 tokens, such as USDT, allow for charging a fee any time transfer() or transferFrom() is called. If a contract does not allow for amounts to change after transfers, subsequent transfer operations based on the original amount will revert() due to the contract having an insufficient balance. However, a malicious user could also take advantage of this to steal funds from the pool.

Vulnerability Details

Let's take a look at the deposit() and withdraw() functions.

Impact

1. Alice sends 100 of FEE token to the contract when calling addToPool().

2. FEE token contract takes 10% of the tokens (10 FEE).

3. 90 FEE tokens actually get deposit in contract.

4. _updatePoolBalance(poolId, pools[poolId].poolBalance + amount); will equal 100.

5. Attacker then sends 100 FEE tokens to the contract

6. The contract now has 180 FEE tokens but each user has an accounting of 100 FEE.

7. The attacker then tries to redeem his collateral for the full amount 100 FEE tokens.

8. The contract will transfer 100 FEE tokens to Bob taking 10 of Alice's tokens with him.

9. Bob can then deposit back into the pool and repeat this until he drains all of Alice's funds.

10. When Alice attempts to withdraw the transaction will revert due to insufficient funds.

Tools Used

Manual review.

Recommended Steps

Measure the contract balance before and after the call to transfer()/transferFrom() and use the difference between the two as the amount, rather than the amount stated

Note this implementation is vulnerable to reentrancy so be sure to add a reentrancy guard to this function.