MySQL Authentication bypass through a zero-length password
Summary
It is possible to bypass password authentication for a database user using a crafted authentication packet with a zero-length password
Note: In order to use this script, the MySQL daemon has to allow connection from the scanning IP address