sudo: wheel NOPASSWD false positive

liamg / traitor

:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

MIT License

6.68k stars 578 forks source link

sudo: wheel NOPASSWD false positive #30

Open blshkv opened 3 years ago

blshkv commented 3 years ago

Hello, I have sudo with permissive line: %wheel ALL=(ALL) NOPASSWD: ALL

traitor reports false positive on all vulnerable test cases, and even pops a shell. But it can't exploit anything if the line is removed.

dereckson commented 2 years ago

Could make sense to test from a non administrator account not belonging to the wheel group.