I thing the better way is, you have user current password in your mysql database then just get the user email address and call your web service.
Now from your service search for email address is exist or not if exist then fetch the password and send email from service and on success/failure/ does not exist user return message to you android as response.
You just need call the service from android only no need to change user password the getting the mail and login it using current credential.
Edited
If you do this then call the web service with passing email address search for the email search for checking if exist or not if exist then create dynamic password string and update the password of that user and also send this password to user email address.