It’s a piece of cake to replace the owner of an external contract with yourself if the contract is enough vulnerable.
You should use libraries in a deep security consideration, or you will lose your ownership, which means you may lose your money.
The usage of libraries is always vulnerable, because it uses delegatecall in low level.
Let’s see Preservation game.
This contract utilizes a library to store two different times for two different timezones. The constructor creates two instances of the library for each time to be stored. The goal of this game is for you to claim ownership of the instance you are given.
Sorry, the comment form is closed at this time.