If less can be run with NOPASSWD via sudo, then getting shell is as simple as !/bin/sh.