TVM Message Replay: Venom Wallet Exposed

This title could be clearer and more informative.Try out Clickbait Shieldfor free (5 uses left this month).

A security vulnerability in Venom Wallet's smart contract implementation allows unlimited message replay attacks. The wallet uses a deprecated contract that calls accept_message() before any state commit, meaning failed transactions drain gas fees but roll back state, leaving the original signed message replayable from public transaction history. An attacker can retrieve the message BOC from the GraphQL API and resubmit it repeatedly without any signing privileges or gas costs. At ~0.0066 Venom per replay on a network capable of 150k TPS, a targeted wallet could lose ~1k Venom per second until the message expires. TON's standard WalletV4 and V5 contracts mitigate this by calling commit() immediately after accept_message() to preserve the incremented sequence number even on failure.

#smart-contracts

Apr 27•8m read time•From coinsbench.com

Table of contents

Background: How Venom Wallet Works TVM Gas Credit Model No Protocol-Level Replay Protection No Preventive State Commit No Low-Level Message Flags Checks Get Stepan Chekhovskoi ’s stories in your inbox Proof of Concept

Comment

Bookmark

Copy

Sort: