Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • TRADING
  • HACKING
  • SLOT
  • CASINO
  • SUBMIT
Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • TRADING
  • HACKING
  • SLOT
  • CASINO
  • SUBMIT
Crypto Flexs
Home»HACKING NEWS»ReEncy Attack in ERC -777 -Ackee Blockchain
HACKING NEWS

ReEncy Attack in ERC -777 -Ackee Blockchain

By Crypto FlexsApril 25, 20253 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
ReEncy Attack in ERC -777 -Ackee Blockchain
Share
Facebook Twitter LinkedIn Pinterest Email

In this blog, we describe reentrology Attacks in the ERC-777 Standard.

A Hands-on Example Contracts and Descriptions is here, and the executable test is here.

Clone this Repository and Run $wake up. Then, run $wake test tests/test_6_erc777.py To Run on your local environment.

The ERC-777 is a Standard for Fungible tokens with a Transfer Hook. The Exchange Contract Allows users to Exchange ETH to SSSToken at a calculated rate.

The Calculation Uses the Total Amount of SSSToken In the Exchange Contract, The Total Amount of Eth in the Exchange Contract with the Corresponding Token Amount the user wants to Exchange.

Expected Usage

This is a Vulnerable Exchange Contract.

TOKEN CONTRACT

We use MyERC777Token as an ERC-777 token and deploy with the Exchange vault as the defaultOperator. SAME as the Default Usage of ERC-777-This send Confirms that the target controlled ERC-777, so Can Prevent Lockout of the Values.

The ERC777 Feature Enables the Attack. When transferring the token, it does an external call. The target of this external call is the transfer target. This feature is for notifying of balance changes, but this feature is Vulnerable to Reentrology Attacks.

Attack Example

In this case, we can attack the tokenToEthInput Function. It’s alarmy has the external call recipient.callvalue: ethBought(""); at the end of the function. Moreover, Other Computations Are Done Above this Function. THEREFORE, It SEEMS The Checks-Effects-Interactions Prevention is Done.

However, According to the ERC777 Feature, It is Vulnerable to Attack. There is an external call When Transferring the SSSToken. Therefore, We can reenter the contract Without Sending the Eth Value.

So while Re-entering, Exchange.balance IE The Balance of Eth in Exchange Does Not Change. This balance value is used for computing the getInputPrice Function.

In getInputPrice Function, The Calculation is Done by this formula.

ETHVAULT = SSSTOKENVALUE * 997 * ETH_BALANCE_IN_EXCHANGE / (SSSTOKEN_IN_EXCHANGE1000 + SSSTOKENVALUE997)

And the ETH_BALANCE_IN_EXCHANGE is higher Than it should be, and ETHVALUE Is sent to the Attacker.

Attacker Contract

This is the Attack Contract.

EXPLOIT

This is the exploit.

This is the beginning of wake’s output. We exchanged to myerc7777tokeen and we got 90661089388014913158 tokens from 100ETH.

This is how it exchanges for ethys for eth using reentrancy.

This is the ending part of wake’s output. IT SENDS 1.2ETH EVERY TIME from the Exchange Contract to the Attacker.

In the end, The Attacker Received Around 9 eth from this Attack.

Prevention

A Simple Reentrology Guard Wild Prevent this Attack:

Conclusion

The ERC-777 have an external call to the target. IT Breaks the checks-Effects-Interactions Patterns and it can be can Easily be Vulnerable.

We have a reentrology Examples github repository. There are other types of reentrology Attacks, as well as protocol-specific reentrancies.

Check out Our Other Type-specific reentrology blogs Below:

Resources

https://blog.openzeppelin.com/Exploiting-uniswap-from-REENTRANCY-TO-Actual-profit

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Green Hood Contracts Thanksgiving Summary -Ackee Blockchain

September 17, 2025

Binance’s new Defi Initiative sparked Rollish Momentum, and BNB hit a new ATH of more than $ 900.

September 13, 2025

Manual guide: beginner guide

September 11, 2025
Add A Comment

Comments are closed.

Recent Posts

Animation Powerhouse Maggie Kang To Join Programming Lineup

September 18, 2025

MEXC Joins Forces With Lombard Finance (BARD) To Launch $1 Million Prize Pool Extravaganza

September 18, 2025

What is the next after the Fed’s 25bps is cut? Everything you need to know

September 18, 2025

The XRP market value surpasses Shopify, Verizon, and Citigroup. Whales sell 40m coins.

September 18, 2025

Green Hood Contracts Thanksgiving Summary -Ackee Blockchain

September 17, 2025

BetFury Is At SBC Summit Lisbon 2025: Affiliate Growth In Focus

September 17, 2025

FED Mining’s Cloud Mining Platform Is Helping Users Earn $8,800 Per Day, And XRP’s Growth Is Driving Market Enthusiasm.

September 17, 2025

Stablecoin Holdings Drop As Investors Pivot To SOL, XRP, And Altcoins

September 17, 2025

Flipster Partners With WLFI To Advance Global Stablecoin Adoption Through USD1 Integration

September 17, 2025

Zircuit Launches $495K Grants Program To Accelerate Web3 Super Apps

September 16, 2025

Kintsu Launches SHYPE On Hyperliquid

September 16, 2025

Crypto Flexs is a Professional Cryptocurrency News Platform. Here we will provide you only interesting content, which you will like very much. We’re dedicated to providing you the best of Cryptocurrency. We hope you enjoy our Cryptocurrency News as much as we enjoy offering them to you.

Contact Us : Partner(@)Cryptoflexs.com

Top Insights

Animation Powerhouse Maggie Kang To Join Programming Lineup

September 18, 2025

MEXC Joins Forces With Lombard Finance (BARD) To Launch $1 Million Prize Pool Extravaganza

September 18, 2025

What is the next after the Fed’s 25bps is cut? Everything you need to know

September 18, 2025
Most Popular

Zordi has revolutionized strawberry growing by leveraging AI and robotics.

November 29, 2024

Altcoins will bounce back ‘very hard’ from bottom, top trader says Here is his Memecoin.

June 26, 2024

Uniswap founder shares his two cents on good token distribution

May 5, 2024
  • Home
  • About Us
  • Contact Us
  • Disclaimer
  • Privacy Policy
  • Terms and Conditions
© 2025 Crypto Flexs

Type above and press Enter to search. Press Esc to cancel.