I know you're trying to help

, But I feel it's not ok to give confusing advice.
I've spent some time analyzing the 4.0.4 kernel. Here's what I found out.
1.With 4.0.4 onwards, google patch the kernel memory vulnerabilities.
What this means is :
Rooting via mempodroid is not possible.
2.Motorola have patching all symlink vulnerabilities that was present in older kernel. They even block shell acess to /data (except for /data/tmp).
What this means is :
Rooting via motofail is not posibble.
3.With tmde 4.0.4 leaks, the "Secure Version" of certificate have been upgraded.
What this means is :
Downgrading via sbf is not posibble.
Hope this will help somebody figuring out of what is happening now.
---------- Post added at 10:26 AM ---------- Previous post was at 09:59 AM ----------
Here's the details of the "Secure Version" upgrade
From ver 2 to 3
- devtree
- devtree_backup
- boot
- recovery
- cdrom
From ver 3 to 4
What is interesting here is:
The "Secure Version" upgrade from 2 to 3 match with XT912 "6.7.1-68_DHD-15_M4-16" ICS leak. The only different is the certificate end bit.
- XT912 ends with "FFFF0200"
- TMDE ends with "FFFF0700"
p/s : I might be wrong on this so please bear with me.