You can test a MySQL client’s vulnerability by setting up a Python rogue server:
Execute arbitrary operating system commands with the privileges of the MySQL service user. Why It Matters Today mysql 5.0.12 exploit
If the initial exploit doesn't yield desired access levels, consider techniques to escalate privileges. You can test a MySQL client’s vulnerability by
SELECT @@version;
In the pantheon of database vulnerabilities, few have sparked as much quiet panic among system administrators as the privilege escalation attack against . Released in 2005, this version of the world’s most popular open-source database contained a flaw in its User Defined Function (UDF) component that turned a standard SQL injection vulnerability into full operating system compromise. Released in 2005, this version of the world’s
: User Defined Function (UDF) Dynamic Library Injection. Conditions :
Execution of arbitrary OS commands with the permissions of the MySQL < 5.0.25 / 5.1.12 Privilege Escalation - Tenable