Smells like a spam bot to me. They forge user agent strings, and will guess at field values to get their form submitted.
If you don't include the form scope in your error emails, you should consider doing so, as it will give you more insight, no matter what the issue turns out to be. Take Care, Seth On Apr 14, 2009, at 4:43 PM, "Ecung II,Ramon J" <[email protected]> wrote: > Whoops I read that too fast and thought you were using CFINPUT. Sorry. > > > > Yeah you’re right that looks like IE7 on Vista unless it’s a > forged user-agent. > > > > I would say the user either had a cached version of the page that > didn’t have the size/maxlength attributes or a bug in the browser or > something else off the wall. It could be a hack attempt, but there’ > s more interesting things to try than “Colorado”. > > > > > > Ramon Ecung, BS, ACHDS, MCP > > 713-794-4273 | [email protected] | Unit 421 > > > > From: [email protected] [mailto:[email protected]] On > Behalf Of Angeli Wahlstedt > Sent: Tuesday, April 14, 2009 4:38 PM > To: [email protected] > Subject: [houcfug] Re: HTML puzzle > > > > Actually, there’s no Javascript tied to that INPUT tag…besides, > isn’t the SIZE/MAXLENGTH restriction handled by the browser itself, > no matter if Javascript is turned on or off? > > > > Angeli > > > > From: [email protected] [mailto:[email protected]] On > Behalf Of Ecung II,Ramon J > Sent: Tuesday, April 14, 2009 4:34 PM > To: [email protected] > Subject: [houcfug] Re: HTML puzzle > > > > Maybe a user has their javascript turned off? Or they’re running thr > ough some sort of proxy like privoxy that changes the html/javascrip > t code to block ads and such? > > > > Ramon Ecung, BS, ACHDS, MCP > > 713-794-4273 | [email protected] | Unit 421 > > > > From: [email protected] [mailto:[email protected]] On > Behalf Of Angeli Wahlstedt > Sent: Tuesday, April 14, 2009 4:32 PM > To: [email protected] > Subject: [houcfug] HTML puzzle > > > > Okay, this is more of a HTML issue than a Cold Fusion issue (though > it’s being generated by a Cold Fusion page) but I got a head-scratch > er I’d like to run by you folks. > > > > I just got an automatically generated email from one of the sites I > work on, containing a Cold Fusion error. The error was caused by a > CFQUERYPARAM tag trying to save a too-long string to a database. I > went to the original page, thinking that an INPUT tag is missing a > MAXLENGTH attribute somewhere. But it turns out that the INPUT tag > indeed has its both SIZE and MAXLENGTH in place. It works as it > should when I tested it in IE 7.0 and Foxfire. > > > > So, the question is, how did this too-long string (which was the > value “Colorado”) get past a 2-character text box? One > possibility would be a custom-written form outside the web server, b > ut the HTTP_REFERRER variable pointed at the original page on the w > eb server. If it helps anything, the user agent was “Mozilla/4.0 (c > ompatible; MSIE 7.0; Windows NT 6.0; GTB5; SLCC1;.NET CLR 2.0.50727; > .NET CLR 3.0.04506; MS-RTC LM 8” which looks like IE 7.0, if I’m > reading it correctly. > > > > > > Puzzledly yours, > > Angeli Wahlstedt, IdeaSculpt LLC > > > > > > > > > > > > > > > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the "Houston ColdFusion Users' Group" discussion list. To unsubscribe, send email to [email protected] For more options, visit http://groups.google.com/group/houcfug?hl=en -~----------~----~----~----~------~----~------~--~---
