ALERT: ASP.NET Hack Attempt

I wanted to toss this out there in case there is some new or as of yet unpacthed vulnerability. This morning I had an unusual string of errors whereas someone began trying to supplant the VIEWSTATE into the URL and in turn causing an error.

Like I said, I don't know if this is anything significant but my guess is that someone was trying to get a raw error output instead of the error page.

http://yourwebsite/somepage.aspx?__VIEWSTATE=IAMAHACKERTRYINGTOSCREWYOU

If anyone knows anything about this sort of thing, let me know.

6 Comments

Comments have been disabled for this content.