Microsoft has warned that animated cursors could expose system to a serious security risk. Microsoft is investigating reports that animated cursors can make Windows vulnerable to attacks.

Arrow cursor flaw may be exploited whilst surfing the web, reading infected email attachments or running manipulated malicious code. As a result of an attack the Windows system can be hijacked by remote users.

According to Sans Internet Storm Center cybercriminals have been exploiting the flaw for some time now and there have been numerous reports showing that the number of websites that host the malicious code is steadily growing.

The information about the cursor security hole spread across the internet mailing lists and bulletins popular amongst hackers.

A Windows user could call victim of this vulnerability by opening booby-trapped email attachment, infected program or by visiting a manipulated website.

The moment of the system's infection is unnoticeable by a user, but once the computer has been infected the worm can download and run any other software from the internet.

The worm is acting very infectious and even blocking the .ini files that define animated cursor's behaviour will not safeguard the system from a potential threat, because many hackers rename their booby-trapped files to cap their real content.

According to Microsoft, all versions of Windows, including Vista, are affected by this vulnerability.

According to security researchers Windows – Firefox 2.0 / Opera web browser combo should make users stay safe from this flaw.

Windows users are advised to update their security software to prevent the system from being exploited.