The Tron Foundation, the organisation behind the cryptocurrency TRON (TRX) and its underlying protocol, has disclosed a vulnerability that could have put the entire Tron network at risk, industry website Cointelegraph has reported.
The foundation published a post on the HackerOne platform on May 2, saying that the network had been vulnerable to Distributed Denial of Service (DDoS) attacks.
“Using a single machine an attacker could send DDOS attack to all or 51% of the SR node and render Tron network unusable or make it unavailable,” the Tron Foundation wrote in a summary of the problem.
“A single request to submit a post to /wallet/deploycontract with several megabytes of bytecode along with CPU intensive long parsing will consume CPU for about 10 minutes while still holding several megabytes of bytecode in heap. With enough requests (let’s say 1K-10K depending upon available memory), it’s enough to use all the available threads to service incoming HTTP request, fill up the memory and render DDOS,” it explained in…