A flaw in the Windows 2000 operating system could allow hackers to delete files or run malicious code on users’ machines while they are online.
The security hole has been reported by various security research companies and has been confirmed by Microsoft, although no patch is currently available to fix it.
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
The Windows 2000 flaw is in the operating system’s Windows Explorer shell interface, used for looking at drive and directory contents and previewing files.
A vulnerability in this interface could allow hackers to perform any action an online user is authorised to carry out on their machine or network.
Microsoft said such a hacking opportunity would rely on significant user interaction, but the company said it would consider issuing a patch against the hole.
No reports of attacks in the wild have been recorded using the vulnerability, according to Microsoft.