From Intel SMEP overview and partial bypass on Windows 8: From An Analysis of A Windows Kernel-Mode Vulnerability (CVE-2014-4113):