Sun Java System Communications Express contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate input passed in the URL upon submission to the uwc/base/UWCMain script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Currently, there are no known workarounds or upgrades to correct this issue. However, Sun has released a patch (SPARC: 122793-26, Linux: 122795-26, x86: 122794-26)to address this vulnerability.

• CVE ID: 2009-1729 (see also: NVD)
• Secunia Advisory ID: 32474
• Bugtraq ID: 34155
• Related OSVDB ID: 54610
• Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2009-05/0214.html
• Vendor Specific News/Changelog Entry: http://sunsolve.sun.com/search/document.do?assetkey=1-21-122793-26-1
• Vendor Specific Advisory URL: http://sunsolve.sun.com/search/document.do?assetkey=1-66-258068-1
• Other Advisory URL: http://www.coresecurity.com/content/sun-communications-express

• SCS Team - Core Security Technologies