Rank: Member
Joined: 3/10/2008(UTC)
Posts: 70
|
Anyone know what this is? It was in the error log over and over. Thanks!
ERROR mscorlib
Invalid character in a Base-64 string.[ at System.Convert.FromBase64String(String s) at System.Web.UI.ObjectStateFormatter.Deserialize(String inputString) at System.Web.UI.ObjectStateFormatter.System.Web.UI.IStateFormatter.Deserialize(String serializedState) at System.Web.UI.Util.DeserializeWithAssert(IStateFormatter formatter, String serializedState) at System.Web.UI.HiddenFieldPageStatePersister.Load() ]
|
|
|
|
|
|
Rank: Member
Joined: 11/5/2003(UTC)
Posts: 2,136
Was thanked: 1 time(s) in 1 post(s)
|
Every ASP.NET page has at least one hidden field named "VIEWSTATE" and several pages have one or two others. If you look at the Page Source in your browser, you will see that the hidden field values are very long strings of gobbledygook. That gobbledygook is Base 64 encoded data. When the page is posted to the server, ASP.NET tries to unencode the string. If the string is corrupted in any way, ASP.NET will record the error you reported.
So the error means that one of the hidden fields is corrupted.
Since the VIEWSTATE hidden field is nearly always the longest string, it is most likely the corrupted string.
My crystal ball is not working, so I can't tell you why the string is corrupted. But my guess is that you have selected the option to move ViewState to the end of the page and people are clicking on an element that posts the page before the VIEWSTATE hidden field is fully rendered. |
|
|
|
|
|
|
Rank: Member
Joined: 3/10/2008(UTC)
Posts: 70
|
Will this bring down the site or show an error page? How can I find that page? Is it in the CSS?
|
|
|
|
|
|
Rank: Member
Joined: 11/5/2003(UTC)
Posts: 2,136
Was thanked: 1 time(s) in 1 post(s)
|
"Will this bring down the site..."
No.
"...or show an error page?"
Probably.
"How can I find that page?"
It can be any page. If you have checked the option to move the ViewState to the bottom of the page, then turn that off. If you did not check that, then talk to your host to see if they have any ideas about what could be causing the problem.
"Is it in the CSS?"
No. |
|
|
|
|
|
|
Rank: Member
Joined: 3/10/2008(UTC)
Posts: 70
|
Thanks Andy - I will ask Brendon and Noah to look into it further as I have not changed anything. We are getting a lot of "visits" to the error redirect page and this may one of the problems.
|
|
|
|
|
|
Rank: Member
Joined: 3/15/2007(UTC)
Posts: 126
|
Marcy, you had the setting selected to move the view state to the bottom of the page. I removed this as it has been known to cause issue. Clear your logs and test to see if it comes back.
Let me know. |
|
|
|
|
|
|
Rank: Member
Joined: 3/10/2008(UTC)
Posts: 70
|
|
|
|
|
|
|
Rank: Member
Joined: 3/15/2007(UTC)
Posts: 126
|
Admin Area > Options > Performance . The item is located towards the bottom of the page. |
|
|
|
|
|
|
Rank: Member
Joined: 3/10/2008(UTC)
Posts: 70
|
It's back - It repeats with this error from scanalert - maybe that will help pin it down.
3/24/2009 10:47:25 PM Error <br>Session:50d9bd55-e289-4919-b0b7-efeecabb2c38<br>To:http://www.kansassampler.com/Default.aspx <br>From:http://www.kansassampler.com/?/../../../../../../../../../etc/passwd<br>User:165.193.42.149(165.193.42.149)<br>Agent:Mozilla/5.0 (compatible; MSIE 7.0; MSIE 6.0; ScanAlert; +http://www.scanalert.com/bot.jsp) Firefox/2.0.0.3
3/24/2009 10:47:25 PM mscorlib Invalid character in a Base-64 string.[ at System.Convert.FromBase64String(String s) at System.Web.UI.ObjectStateFormatter.Deserialize(String inputString) at System.Web.UI.ObjectStateFormatter.System.Web.UI.IStateFormatter.Deserialize(String serializedState) at System.Web.UI.Util.DeserializeWithAssert(IStateFormatter formatter, String serializedState) at System.Web.UI.HiddenFieldPageStatePersister.Load() ]
|
|
|
|
|
|
Rank: Administration
Joined: 4/2/2004(UTC) Posts: 2,393 ![United States]( "United States") Location: Hummelstown, PA Thanks: 6 times
Was thanked: 163 time(s) in 158 post(s)
|
ScanAlert purposefully tries to hack your site and break it in an attempt to find vulnerabilities. It's pretty normal that your event log will be riddled with errors after ScanAlert performs a scan. It's pretty annoying, but there's no harm in it. As long as ScanAlert isn't reporting an vulnerabilities to you in their reports, I wouldn't worry about it. |
Aaron Sherrick
BV Commerce
Toll-free 888-665-8637 - Int'l +1 717-220-0012 |
|
|
|
|
|
Rank: Member
Joined: 3/15/2007(UTC)
Posts: 126
|
|
|
|
|
|
|
|
Forum Jump
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.