Very interesting, it has been a while since I read about a kernel exploit being used successfully. The question remains if this exploit could also bypass HIPS and third party sandboxes like Sandboxie. And it's likely that anti-executable and anti-exploit tools would prevent the attack in stage one, since they block the initial payload from running.