Small width layout Medium width layout Maximum width layout Small text Medium text Large text
     Search
Downloads Downloads Directory Directory Forums Forums Forge Forge Blogs Blogs        Marketplace Marketplace Careers Program Careers
Community › Forums Register  |  

AspDotNetStoreFront
  Ads  
Webhost4Life - $4.95 Windows Hosting
 


  Sponsors  

Meet Our Sponsors

telerik
ExactTarget email software solutions
Merak Mail Server
WebSecureStores -- ASP.NET & DotNetNuke Hosting Solutions
FCKeditor Project
Salaro -- Skins and more
 


DotNetNuke Forums
 
  Forum  General DotNetN...  Chat About It!  Malicious request?
Previous Previous
 
Next Next
New Post 8/21/2008 1:45 PM
Unresolved
User is offline Chris
12 posts
10th Ranked


Malicious request? 

Hello all.  I am getting exceptions in my error log from a suspicious looking request:

/dotnetnuke/linkclick.aspx?tabid=145&link=197'%20and%20user%3E0%20and%20''='

It looks like someone is trying to do something malicious with an encoded query string.  What really gets my attention is that the exception is DotNetNuke.Common.Utilities.FileSystemUtils.DownloadFile which makes me think they are trying to download files off our website.

Does anyone know what is going on here?

AssemblyVersion: 04.06.00
PortalID: 1
PortalName: XXXXXXXX
UserID: -1
UserName:
ActiveTabID: 145
ActiveTabName: XXXXXXXXX
RawURL: /dotnetnuke/linkclick.aspx?tabid=145&link=197'%20and%20user%3E0%20and%20''='
AbsoluteURL: /dotnetnuke/linkclick.aspx
AbsoluteURLReferrer:
UserAgent:
DefaultDataProvider: DotNetNuke.Data.SqlDataProvider, DotNetNuke.SqlDataProvider
ExceptionGUID: d5035688-81e4-441f-98b3-55e9e7dd1ed9
InnerException: Unhandled Error:
FileName:
FileLineNumber: 0
FileColumnNumber: 0
Method: DotNetNuke.Common.Utilities.FileSystemUtils.DownloadFile
StackTrace:
Message: System.Exception: Unhandled Error: ---> System.NullReferenceException: Object reference not set to an instance of an object. at DotNetNuke.Common.Utilities.FileSystemUtils.DownloadFile(Int32 PortalId, Int32 FileId, Boolean ClientCache, Boolean ForceDownload) at DotNetNuke.Services.FileSystem.FileServerHandler.ProcessRequest(HttpContext context) at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) --- End of inner exception stack trace ---
Source:
Server Name: XXXXX
 
New Post 8/21/2008 1:51 PM
User is offline ErikVB
3004 posts
www.apollo-software.nl
4th Ranked










Re: Malicious request? 

you are correct in thinking that the url is suspicious. THey are not trying to download a file, but they are trying to use the linkclick handler to inject sql, which is failing with the error you get.

Erik van Ballegoij,
a view from my attic, my personal blog

The personal blog of Erik van Ballegoij
 
 Page 1 of 1
Previous Previous
 
Next Next
  Forum  General DotNetN...  Chat About It!  Malicious request?
 


Forum Policy

These Discussion Forums are dedicated to the discussion of the DotNetNuke Web Application Framework.

For the benefit of the community and to protect the integrity of the project, please observe the following posting guidelines:

1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DotNetNuke.
2. Discussion or promotion of DotNetNuke product releases under a different brand name are strictly prohibited.
3. No Flaming or Trolling.
4. No Profanity, Racism, or Prejudice.
5. Site Moderators have the final word on approving/removing a thread or post or comment.
6. English language posting only, please.
 


FREE Skins, Modules & Control Panel!
Choose how much you want to pay on our Skins, Modules, Containers and Control Panel - Starting from FREE!
www.dnngroup.com 		Disgrafic
Diseño y creación de portales web dinámicos :: Desarrollo de módulos personalizados :: Soluciones a medida :: Imagen Corporativa :: Tu proveedor DNN en España
www.disgrafic.com 		DM Analytics, LLC
DM Analytics, LLC provides software solutions that facilitate rapid development of independent or dependent datamarts and their associated web-based reporting.
www.dmanalytics.com

DotNetNuke Corporation   Terms Of Use  Privacy Statement
DotNetNuke®, DNN®, and the DotNetNuke logo are trademarks of DotNetNuke Corporation
Hosted by MaximumASP