HP Mercury LoadRunner Agent Remote Command Execution
Critical Nessus Plugin ID 46255
It is possible to execute arbitrary commands on the remote system.
The version of the LoadRunner Agent installed on the remote host allows an unauthorized attacker to execute arbitrary commands on the remote system provided 'Secure Channel' is disabled (which is disabled by default).
Upgrade to HP LoadRunner v9.50, and refer to the documentation to enable 'Secure Channel' communication.