XRP token is one of the most popular cryptocurrencies in the world. It was rated 6th with a market capitalization of about 40 billion dollars among all crypto currencies. Tokens with a value of billions of dollars are being traded every single day.
In this presentation, we’ll uncover an 8-year-old P2P RCE vulnerability of XRP Ledger which an attacker can leverage to attack node servers of XRP Ledger in low cost and could ideally steal crypto assets from any address on XRP Ledger. The total value of affected crypto assets is over 40 billion dollars. This is one of the most threatening known vulnerabilities against a single type of digital currency assets.
We’ll take you dive into the vulnerability and explore the RCE exploit. Considering the decentralization feature, we’ll explore different ways of gaining profits through blockchain RCE vulnerabilities. Our experiment results prove that this vulnerability allows an attacker to take control of the whole XRPL network. We’ll discuss the experiment and release an attack with demo video.