c4-judge
commented
1 year ago GalloDaSballo marked the issue as unsatisfactory: Insufficient proof
Closed code423n4 closed 1 year ago
c4-judge
commented
1 year ago GalloDaSballo marked the issue as unsatisfactory: Insufficient proof
GalloDaSballo
commented
1 year ago Needs a real attack
Lines of code
https://github.com/code-423n4/2023-01-drips/blob/main/src/Caller.sol#L173
Vulnerability details
Impact
The vulnerability of
block.timestampin smart contracts is related to the fact that the timestamp of a block is provided by the miner who mined the block. As a result, the timestamp is not guaranteed to be accurate or to be the same across different nodes in the network. In particular, an attacker can potentially mine a block with a timestamp that is favorable to them, known as "selective packing".For example, an attacker could mine a block with a timestamp that is slightly in the future, allowing them to bypass a time-based restriction in a smart contract that relies on
block.timestamp. This could potentially allow the attacker to execute a malicious action that would otherwise be blocked by the restriction.Proof of Concept
require(block.timestamp <= deadline, "Execution deadline expired");Tools Used
Recommended Mitigation Steps
Developers should avoid using
block.timestampin their smart contracts and instead use an alternative timestamp source, such as an oracle, that is not susceptible to manipulation by a miner.References: