Microsoft today issued an advisory to its users warning them that hackers may pursue a new security flaw in Microsoft Video ActiveX Control in Windows XP and server 2003.

Microsoft further said that an attacker could take control of your PC if you simply view a malicious Web page using Internet Explorer even when you do not click.

Earlier, the company announced vulnerability in May that involves the way DirectX handles QuickTime files.

Microsoft is advising its customers to implement a workaround outlined in the security advisory. Customers can implement the workaround by pursuing directives under "Fix It For Me" in the Knowledge Base article for advisory number 972890 on the Microsoft support site.

Although Windows Vista and Windows Server 2008 are supposed not to be affected by the weakness; yet Microsoft is advising customers using those products to employ the workaround.

Microsoft informed that it was working on a security update and will release it when it is ready for broad distribution.

Microsoft also advises its customers to use a lower privileged account to accomplish routine works.

Symantec, antivirus vendor informed that current flaw has already been exploited in China and other parts of Asia.

Microsoft informed that it was working on a security update and will release it when it is ready for broad distribution.