A vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Mercury LoadRunner Agent, Mercury Performance Center Agent and Mercury Monitor over Firewall. Authentication is not required to exploit this vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/54331/ZDI-07-007.txt
Source: https://packetstormsecurity.com/files/54331/Zero-Day-Initiative-Advisory-07-07.html