A flaw in the Windows 2000 operating system could allow hackers to delete files or run malicious code on users’ machines while they are online.
The security hole has been reported by various security research companies and has been confirmed by Microsoft, although no patch is currently available to fix it.
The Windows 2000 flaw is in the operating system’s Windows Explorer shell interface, used for looking at drive and directory contents and previewing files.
A vulnerability in this interface could allow hackers to perform any action an online user is authorised to carry out on their machine or network.
Microsoft said such a hacking opportunity would rely on significant user interaction, but the company said it would consider issuing a patch against the hole.
No reports of attacks in the wild have been recorded using the vulnerability, according to Microsoft.