Re: The deveil is in the detail.
Can you come up with a threat model? if anti virus is unaware that code/data has been loaded without any chance for validation for example? mostly it is the API being misused to load whatever wherever without validation because MS have shown they are not great at anticipating/caring about new "feature abuse" until a long time after the addition of said feature
The spectre issue flagged the concept of doing things to gain extra speed at the cost of basic security but since windows cannot be seen as secure anyway then perhaps it is par for the course
