A newly exposed architectural weakness in Windows’ RPC system allows attackers to hijack privileges, yet Microsoft declines to patch the threat.