This is the report from a security audit performed on HuobiToken by MrCrambo.
The audit focused primarily on the security of HuobiToken smart contract.
In total, 3 issue was reported including:
-
0 high severity issues.
-
1 medium severity issues.
-
0 owner privilegies issues.
-
2 low severity issues.
-
0 notes.
In functions transfer
and transferFrom
there are returning false instead of throw
when it's not possible to transfer.
Functions transfer
and transferFrom
should throw in case of not possibility of transfer.
- It is possible to double withdrawal attack. More details here
- Lack of transaction handling mechanism issue. More details here
Add into a function transfer(address _to, ... )
following code:
require( _to != address(this) );
There is no zero address checking in functions transfer
and transferFrom
.
Smart contract contains medium severity issues.