473,408 Members | 2,477 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > asp.net > questions > invalid_viewstate exception with invalid character in a base-64 st

Join Bytes to post your question to a community of 473,408 software developers and data experts.

Invalid_Viewstate exception with Invalid character in a Base-64 st

I have read many things about this but I haven't got a clear vision on what
to do if anything about this.

I have a system that tries to find holes in my web site. One of the things
it has found and has been sent to me is

an Invalid_Viewstate exception. I will provide the stack trace below. If
you read down the stack trace it talks about "Invalid chararcter in a base-64
string" error. After reading much about this have not found any resolution.
I did read where one person said that people hit sites that require
information and they sending bad or spam in hopes the site will forward the
information on to an email and my site is capturing that because they also
are changing the hidden field _VIEWSTATE which in turn causes this exception.
I also read that the data that is being entered is not passing validation
and there is a need to trap for it.

so I still don't know what is exactly causing this error and should I worry
about it.

Here is the stack trace

The error description is as follows :

System.Web.HttpUnhandledException: Exception of type
System.Web.HttpUnhandledException was thrown. ---System.Web.HttpException:
Invalid_Viewstate

Client IP: 64.14.3.222

Port: 40520

User-Agent: Mozilla/5.0 (compatible; MSIE 7.0; MSIE 6.0; ScanAlert;
+http://www.scanalert.com/bot.jsp) Firefox/2.0.0.3

ViewState: ("blah blah blah" a bunch of encrypted data or something that I
am just going to leave out)

Http-Referer:

Path: /folder/myGatherInformationPage.aspx. ---System.FormatException:
Invalid character in a Base-64 string.

at System.Convert.FromBase64String(String s)

at System.Web.UI.LosFormatter.Deserialize(String input)

at System.Web.UI.Page.LoadPageStateFromPersistenceMed ium()

--- End of inner exception stack trace ---

at System.Web.UI.Page.LoadPageStateFromPersistenceMed ium()

at System.Web.UI.Page.LoadPageViewState()

at System.Web.UI.Page.ProcessRequestMain()

--- End of inner exception stack trace ---

at System.Web.UI.Page.HandleError(Exception e)

at System.Web.UI.Page.ProcessRequestMain()

at System.Web.UI.Page.ProcessRequest()

at System.Web.UI.Page.ProcessRequest(HttpContext context)

at
System.Web.CallHandlerExecutionStep.System.Web.Htt pApplication+IExecutionStep.Execute()

at System.Web.HttpApplication.ExecuteStep(IExecutionS tep step, Boolean&
completedSynchronously)

Any help would greatly be appreciated.

PaulP

MCP
Nov 2 '07 #1
1 2345
Unless you get that same error when human submits the page, I would
ignore it. ScanAlert is sending a bot to the page trying to break it (as
you said) and .NET is making sure that it can't.

-----Original Message-----
From: Paul Phillips [mailto:Pa**********@discussions.microsoft.com]
Posted At: Friday, November 02, 2007 9:37 AM
Posted To: microsoft.public.dotnet.framework.aspnet
Conversation: Invalid_Viewstate exception with Invalid character in a
Base-64 st
Subject: Invalid_Viewstate exception with Invalid character in a Base-64
st

I have read many things about this but I haven't got a clear vision on
what
to do if anything about this.

I have a system that tries to find holes in my web site. One of the
things
it has found and has been sent to me is

an Invalid_Viewstate exception. I will provide the stack trace below. If
you read down the stack trace it talks about "Invalid chararcter in a
base-64
string" error. After reading much about this have not found any
resolution.
I did read where one person said that people hit sites that require
information and they sending bad or spam in hopes the site will forward
the
information on to an email and my site is capturing that because they also
are changing the hidden field _VIEWSTATE which in turn causes this
exception.
I also read that the data that is being entered is not passing validation
and there is a need to trap for it.

so I still don't know what is exactly causing this error and should I
worry
about it.

Here is the stack trace

The error description is as follows :

System.Web.HttpUnhandledException: Exception of type
System.Web.HttpUnhandledException was thrown. --->
System.Web.HttpException:
Invalid_Viewstate

Client IP: 64.14.3.222

Port: 40520

User-Agent: Mozilla/5.0 (compatible; MSIE 7.0; MSIE 6.0; ScanAlert;
+http://www.scanalert.com/bot.jsp) Firefox/2.0.0.3

ViewState: ("blah blah blah" a bunch of encrypted data or something that I
am just going to leave out)

Http-Referer:

Path: /folder/myGatherInformationPage.aspx. ---System.FormatException:
Invalid character in a Base-64 string.

at System.Convert.FromBase64String(String s)

at System.Web.UI.LosFormatter.Deserialize(String input)

at System.Web.UI.Page.LoadPageStateFromPersistenceMed ium()

--- End of inner exception stack trace ---

at System.Web.UI.Page.LoadPageStateFromPersistenceMed ium()

at System.Web.UI.Page.LoadPageViewState()

at System.Web.UI.Page.ProcessRequestMain()

--- End of inner exception stack trace ---

at System.Web.UI.Page.HandleError(Exception e)

at System.Web.UI.Page.ProcessRequestMain()

at System.Web.UI.Page.ProcessRequest()

at System.Web.UI.Page.ProcessRequest(HttpContext context)

at
System.Web.CallHandlerExecutionStep.System.Web.Htt pApplication+IExecutionStep.Execute()

at System.Web.HttpApplication.ExecuteStep(IExecutionS tep step, Boolean&
completedSynchronously)

Any help would greatly be appreciated.

PaulP

MCP
Nov 2 '07 #2
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

28
8 years of C++ Exception Handling
by: Frank Puck | last post by:
Meanwhile there are at least 8 years that compilers exist, which provide a working implementation of C++ Exception Handling. Has anything changed meanwhile? From my point of view nothing has...
C / C++
13
conversion: errno => exception
by: Markus Elfring | last post by:
Do you know a class library that can convert the error/return codes that are listed in the standard header file "errno.h" into a well-known exception hierarchy? Did anybody derive it from...
C / C++
5
Invalid Cast Exception Calling Bsse Class Method
by: Nick Flandry | last post by:
I'm running into an Invalid Cast Exception on an ASP.NET application that runs fine in my development environment (Win2K server running IIS 5) and a test environment (also Win2K server running IIS...
ASP.NET
7
Help please: Exception when with <input type="file"> but not with Textbox
by: Drew Berkemeyer | last post by:
I've encounted a pretty strange problem and I'm not quite sure what to make of it. I have a web service that consumes an XML file as well as a few other parameters. This web service works fine...
ASP.NET
29
Invalid_Viewstate
by: Chris Sutton | last post by:
I have a production asp.net application that is getting seemingly random Viewstate errors. It is a single server, so there isn't any issue with posting viewstate to a different server that what...
ASP.NET
1
System.Web.HttpException: Invalid_Viewstate
by: dima | last post by:
Hi All, I know some of you had this problem in production. Did anyone find out how to fix this problem or what is the cause of it? System.Web.HttpException: Invalid_Viewstate ...
ASP.NET
2
Invalid_Viewstate - Please help!
by: InnoCreate | last post by:
Hi Everyone, Occasionally i'm getting the following error logged. I've heard this can be caused by proxy servers. Does anyone know anyways to resolve the issue or anything else that could cause...
ASP.NET
1
Invalid_Viewstate error with email in the message - second post
by: Bill Sempf | last post by:
Trying again on this forum to see if anyone has seen this error: I am receiving an Invalid_Viewstate error on one of my sites, and the error message content has SMTP Mail header text in it! Here...
ASP.NET
1
OutOfMemoryException Invalid_Viewstate
by: netwapps | last post by:
I have: Application Type: Web application with VB.net 1.1 WebServer: IIS6 Machine Server: Windows 2003 The User opens 4-5 browsers connecting to the application and clicks on the Autorefresh...
.NET Framework
1
Puzzling Exception ("Invalid parameter") Thrown by MeasureCharacterRanges
by: eBob.com | last post by:
I have some code which is trying to determine where text will wrap in a custom text box (which Inherits from Control). It determines the number of characters which will fit in the first line, but...
Visual Basic .NET
0
How to turn on java script in a villaon keypad mobile phone
by: Charles Arthur | last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
Java
0
Migrating Website to Cloud - Emmanuel Katto
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
General
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
1
Is that possible of reading the .csv file in column wise and the column have different lengths ?
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
C / C++
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing
0
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
Career Advice

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!