The flaw affects a core component of Windows 2000 that can't be disabled, meaning a workaround is unlikely, according to security firm eEye, which discovered the bug.
The company said it won't release details of how the flaw works, until Microsoft has issued a patch. However, it said the vulnerability isn't limited to Windows 2000 alone - Internet Explorer, Windows Server 2003, Windows XP and XP SP1 are all vulnerable, its advisory states.
Downloads and Drivers
From the Forums
Subscribe to TechSpot
Get free exclusive content, learn about new features and breaking tech news.