Aplication started before module load have elevated privileges.
vulners.com/securityvulns/securityvulns:doc:7443