Skip to main content
Learn

How Can an Underflow Be Exploited to Drain Funds from a Contract?

By causing a zero balance to wrap to the maximum value, the attacker can pass a check and withdraw an unauthorized amount.
Greeks.Live16.11.25

How Can an Underflow Be Exploited to Drain Funds from a Contract?

An underflow can be exploited by an attacker to manipulate a contract's balance checks or withdrawal logic. If a contract subtracts a user's withdrawal amount from their balance without a safe math check, and the balance is zero, the subtraction can underflow, causing the balance to wrap to the maximum possible value (e.g.

2^256 – 1). The contract then incorrectly believes the user has a massive balance, allowing them to withdraw an amount far exceeding their actual deposit, thereby draining the contract's funds.

Provide an Example of How Two Functions Might Share a State That Could Be Exploited
What Happens to My Investment If a Rebase Token’s Smart Contract Is Exploited?
How Does a Reentrancy Attack Relate to the DAO Hack?
What Is an Integer Overflow and How Does It Impact Token Balances?

About

Contact

Editorial Policy

Terms of Service

Privacy Policy

Cookie Policy

© 2025 Greeks.Live

All Rights Reserved

Greeks.Live RFQ

Build by Noo on Engine

Source: The content on this website is produced by Greeks.live's proprietary analysis systems, which utilize advanced Large Language Models (LLMs). This information might not be subject to a full human review before publication and may contain errors.
Responsibility: You should not make any financial decisions based solely on the content presented here. We strongly urge you to conduct your own rigorous due diligence and to consult a qualified, independent financial advisor.
Purpose: All information is intended for informational purposes only. It should not be construed as financial, investment, trading, or any other form of professional advice. News and data are not trading signals.
Risk: The cryptocurrency, derivatives, and options markets are highly volatile and carry significant risk. By using this site, you acknowledge these risks and agree that Greeks.live and its affiliates are not responsible for any financial losses you may incur.