cbcvebase.
CVE-2004-1611
published 2004-10-18

CVE-2004-1611: SalesLogix 6.1 does not verify if a user is authenticated before performing sensitive operations, which could allow remote attackers to (1) execute arbitrary…

PriorityP424medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
1.58%
72.5th percentile
SalesLogix 6.1 does not verify if a user is authenticated before performing sensitive operations, which could allow remote attackers to (1) execute arbitrary SLX commands on the server or spoof the server via a man-in-the-middle (MITM) attack, or (2) obtain the database password via a GetConnection request to TCP port 1707.

Affected

1 ranges
VendorProductVersion rangeFixed in
saleslogix_corporationsaleslogix
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.