Security Advisory

CVE-2004-1611

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-02-20 05:00:00

Last updated 2024-08-08 01:00:36

Assigner mitre

State PUBLISHED

Description

SalesLogix 6.1 does not verify if a user is authenticated before performing sensitive operations, which could allow remote attackers to (1) execute arbitrary SLX commands on the server or spoof the server via a man-in-the-middle (MITM) attack, or (2) obtain the database password via a GetConnection request to TCP port 1707.

← Browse all CVEs View on cve.org ↗