The check_scramble_323 function in MySQL 4.1.x prior to 4.1.3, and 5.0, allows remote malicious users to bypass authentication via a zero-length scrambled string.
#!/usr/bin/perl
#
# The script connects to MySQL and attempts to log in using a zero-length password
# Based on the vuln found by NGSSecurity
#
# The following Perl script can be used to test your version of MySQL It will display
# the login packet sent to the server and it's reply
#
# Exploit copyright (c) 2004 by Eli Kara, Beyond Security
# e ...