VulniosVulnios
All Threat Alerts
highCVE Alert
CVE-2009-0238

High Vulnerability: CVE-2009-0238 ā€” microsoft ā€” excel, excel_viewer

CISA Known Exploited Vulnerability ā€” Immediate Action Required

Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1; and Excel in Microsoft Office 2004 and 2008 for Mac allow remote attackers to execute arbitrary code via a crafted Excel document that triggers an access attempt on an invalid object, as exploited in the wild in February 2009 by Trojan.Mdropper.AC.

Tuesday, April 14, 2026microsoftVulnios Threat Intelligence
Share:

Executive Summary

Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1; and Excel in Microsoft Office 2004 and 2008 for Mac allow remote attackers to execute arbitrary code via a crafted Excel document that triggers an access attempt on an invalid object, as exploited in the wild in February 2009 by Trojan.Mdropper.AC.

Why It Matters

CVE-2009-0238 is rated HIGH severity, requiring immediate attention from security teams.

āš ļø This vulnerability is listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, indicating it has been actively exploited in the wild. Federal agencies must remediate by the deadline.

CVSS Base Score: 8.8/10

Affected Technologies

Vendors: microsoft

Products: excel, excel_viewer, office, office_compatibility_pack, office_excel, office_excel_viewer

šŸ›”ļøWhat Defenders Should Check

  • Check if you are affected ā€” Review your asset inventory for products listed in CVE-2009-0238.
  • Apply available patches ā€” Visit vendor advisories for the latest security updates.
  • Monitor for exploitation ā€” Check your SIEM/IDS logs for related indicators.
  • Prioritize remediation ā€” This is a CISA KEV entry. Federal agencies: remediate by the mandated deadline.
  • CISA Deadline: 2026-04-28

    • Use Vulnios to continuously monitor your exposure to CVE-2009-0238 and similar vulnerabilities.

    References & Sources

  • http://blogs.zdnet.com/security/?p=2658
  • http://isc.sans.org/diary.html?storyid=5923
  • http://securitytracker.com/id?1021744
  • http://www.microsoft.com/technet/security/advisory/968272.mspx
  • http://www.securityfocus.com/bid/33870
  • http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-022310-4202-99
  • http://www.us-cert.gov/cas/techalerts/TA09-104A.html
  • http://www.vupen.com/english/advisories/2009/1023
  • https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-009
  • https://exchange.xforce.ibmcloud.com/vulnerabilities/48875

    • AI Security Advisor

    Powered by Gemini

    Get AI-powered security recommendations tailored to this specific threat ā€” including risk assessment, detection guidance, MITRE ATT&CK mapping, and actionable remediation steps.

    Affected Products

    excelexcel_viewerofficeoffice_compatibility_packoffice_exceloffice_excel_viewer

    Sources

    actively_exploitedhigh

    Protect Your Organization

    Monitor CVEs, scan for vulnerabilities, and get real-time threat alerts ā€” all in one platform.

    Get Started FreeFree Security ScanOSINT Dashboard

    Get instant alerts on Telegram

    Join our public channel for real-time critical CVE alerts.

    Follow @vulnios