An unpatched vulnerability in the Windows kernel could be used by attackers to sidestep an operating system security measure. Microsoft downplays the threat by reminding users that hackers would need a second exploit to launch remote attacks. The bug is in the “win32k file, a part of the kernel, and exists in all versions of Windows. Microsoft’s next regularly-scheduled patch day is Tuesday, Dec. 14, when the company will patch the bug. The vulnerability was disclosed Wednesday, the same day proof-of-concept code went public.”]