CVE-2010-1549

HP LoadRunner < 9.50 and Performance Center < 9.50 - Remote Code Execution

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2010-1549. PoCs published by Metasploit, Unknown, aushack, including Metasploit module exploits/windows/misc/hp_loadrunner_magentproc_cmdexec.

AI-analyzed exploit summary This Metasploit module exploits a remote command execution vulnerability in HP LoadRunner and Performance Center by sending a crafted packet to the magentproc.exe service on port 54345. It leverages a lack of input validation to execute arbitrary commands on the target system.

Description

Unspecified vulnerability in the Agent in HP LoadRunner before 9.50 and HP Performance Center before 9.50 allows remote attackers to execute arbitrary code via unknown vectors.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/43411

View Code ZIP pw:eip

This Metasploit module exploits a remote command execution vulnerability in HP LoadRunner and Performance Center by sending a crafted packet to the magentproc.exe service on port 54345. It leverages a lack of input validation to execute arbitrary commands on the target system.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP LoadRunner before 9.50, HP Performance Center before 9.50

No auth needed

Prerequisites: Network access to the target system · Secure Channel feature disabled (default)

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC EXCELLENT

by Unknown, aushack · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/hp_loadrunner_magentproc_cmdexec.rb

View Code ZIP pw:eip

This Metasploit module exploits a remote command execution vulnerability in HP LoadRunner before 9.50 and HP Performance Center before 9.50 by sending a crafted packet to the magentproc.exe service on port 54345. The exploit constructs multiple packets to execute arbitrary commands on the target system.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: HP LoadRunner before 9.50, HP Performance Center before 9.50

No auth needed

Prerequisites: Network access to the target system · Secure Channel feature disabled (default)

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vendor-advisory x_refsource_hp

http://www.securityfocus.com/archive/1/511146/100/0/threaded

Mailing List vendor-advisory x_refsource_hp

http://seclists.org/bugtraq/2010/May/69

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/43411/

Scores

EPSS 0.7896

EPSS Percentile 99.5%

Details

Status published

Products (13)

hp/loadrunner 7.0

hp/loadrunner 7.02

hp/loadrunner 7.5

hp/loadrunner 7.6

hp/loadrunner 7.8

hp/loadrunner 7.51

hp/loadrunner 8.0

hp/loadrunner 8.12

hp/loadrunner 8.13

hp/loadrunner 8.14

... and 3 more

Published May 07, 2010

Tracked Since Feb 18, 2026