This Metasploit module exploits a remote command execution vulnerability in HP LoadRunner before 9.50 and also HP Performance Center before 9.50. HP LoadRunner 12.53 and other versions are also most likely vulnerable if the (non-default) SSL option is turned off. By sending a specially crafted packet, an attacker can execute commands remotely. The service is vulnerable provided the Secure Channel feature is disabled (default).
Source: HP Mercury LoadRunner Agent magentproc.exe Remote Command Execution
The post HP Mercury LoadRunner Agent magentproc.exe Remote Command Execution appeared first on MondoUnix.