TRON (TRX) has been one of the most innovative and modern projects in the entire crypto/blockchain space, and as such, it received a lot of praise during the past year. However, according to new data delivered by HackerOne, it appears that the network is not as flawless as it first appeared. In fact, the entire network could have been crashed by a single PC.
Bytecode attack that could have crashed the entire network
Since it was discovered, the vulnerability was dubbed the ‘bytecode’ attack. Simply put, this method requires the use of a large piece of bytecode that has the potential to consume TORN network’s resources, and potentially even completely shut it down, thus making it unable to process transactions or smart contracts.
The report claims that a single request to submit a post with a several megabytes-large bytecode, in addition to the CPU-intensive long parsing might have consumed the CPU for 10 minutes, while still holding the bytecode in a heap. The method could have easily led to a DDoS attack.