Really?
They're just going to dismiss this? While yes, on its own it would require you to have access, what about when combined with other attacks?
So that's GhostHook and BoundHook open right? Neither patched? Okay, so if another exploit is found, say a remote one, you can get in and then use these to make yourself undetected? Nice!
No matter how large or small or even likely a security bug is, if its known and confirmed then it should be patched regardless, have we learned nothing from the years of exploits being used on unpatched systems to steal data?