Updates have been released that resolve these issues. These updates are reportedly available to registered customers through the vendor's support portal. Please see the referenced support page for more information.
SalesLogix contains a flaw that may allow a remote attacker to gain administrative privileges. The issue is due to the server not properly authenticating remote users or track sessions. By editing the values of the server set cookie, an attacker can change their privilege from a regular user to administrater and submit it back to the server.
Currently, there are no known workarounds or upgrades to correct this issue. However, SalesLogix has released a patch to address this vulnerability.