Microsoft has left two publicly known vulnerabilities unpatched in Windows this month. Researchers from ACROS Security have released a temporary “micropatch” for one of them through 0patch, a service that provides in-memory binary patching for zero-day flaws. The second vulnerability allows low-privileged users to overwrite arbitrary files as SYSTEM, potentially leading to arbitrary code execution with the highest possible privilege. Microsoft typically releases out-of-band security patches only if a critical zero day vulnerability is being exploited in widespread attacks.”]