search

TH3xACE / SUDO_KILLER

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
MIT License
2.22k stars 254 forks source link

Missing scripts checking out arguments #3

Closed lazytanuki closed 5 years ago

lazytanuki commented 5 years ago

Describe the bug The missing scripts function parses the whole command as one file. If the command is /usr/bin/cat somefile the program will check for the existence of /usr/bin/catsomefile

To Reproduce Steps to reproduce the behavior:

  1. Insert the following command in a sudoer rule : /usr/bin/cat somefile

Expected behavior A clear and concise description of what you expected to happen. I think it would be appropriate to only check if the binary exists except if the binary is an interpreter. in which case the presence of the file should be checked

Side note I want to say that you've done some really great work, thank you ! :)

TH3xACE commented 5 years ago

Hi,

Thank you for the issue. I have currently no access to a PC but I will check it out as soon as I'm back home. I will leave the issue open till then.

Thank you also for your message, I am happy to see that people are interested by the tool and are also contributing to help me improve it. If you have the fix just send a pull request if not will correct it asap.

Regards, Ace.

TH3xACE commented 5 years ago

Bug corrected... Thanks for the issue :)