First Flight #2: Puppy Raffle

First Flight #2

Beginner FriendlyFoundryNFT

100 EXP

View results

Previous Next

Submission Details

Severity: medium

Valid

Sending a small amount of ETH causes the winner fees to not be collected

davide

Summary

The PuppyRaffle#withdrawFees() function is using address(this).balance to check if all the fees for the current round have been collected and therefore the round is over, but just a small amount of ETH added to the player fees cause the function to be DoS.

Vulnerability Details

Using address(this).balance and trust that its value will always be synched with the specific smart contract logic is discouraged. In this case using selfdestruct() to send a small amount of ETH to the PuppyRaffle contract can cause the address(this).balance and the totalFees to always be out of sync causing a DoS on the PuppyRaffle#withdrawFees().

Impact

It is impossible for the owner to collect his fees because the PuppyRaffle#withdrawFees() will always revert.

Tools Used

Manual review.

Recommendations

Use a storage variable (bool or enum) to save the start and end of the raffle instead of relying on the fees collected and the balance.

Updates

Lead Judging Commences

Hamiltonite Lead Judge almost 2 years ago

Submission Judgement Published

Validated

Assigned finding tags:

greifers-send-money-to-contract-to-block-withdrawfees

Rewards breakdown

nSLOC

143

This contest has a flat reward structure with the following payouts:

High

100 EXP

Medium

20 EXP

Low

2 EXP

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.