VYPR
Unrated severityNVD Advisory· Published Oct 18, 2004· Updated Jun 16, 2026

CVE-2004-1611

CVE-2004-1611

Description

SalesLogix 6.1 does not verify if a user is authenticated before performing sensitive operations, which could allow remote attackers to (1) execute arbitrary SLX commands on the server or spoof the server via a man-in-the-middle (MITM) attack, or (2) obtain the database password via a GetConnection request to TCP port 1707.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:best_software:saleslogix:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:best_software:saleslogix:*:*:*:*:*:*:*:*
    • cpe:2.3:a:saleslogix_corporation:saleslogix:2000.0:*:*:*:*:*:*:*
    • (no CPE)range: =6.1

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.