By using LOAD command it's possible to load dynamic library with server process privileges. Buffer overflow on large cursor's arguments number. Protection bypass on functions execution.
vulners.com/securityvulns/securityvulns:doc:7724