A remotely exploitable vulnerability has been discovered in the file parsing engine of Sophos AntiVirus versions prior to 2.48.0. The bug exists during the file parsing of UPX packed files.
f395eb9a9a434a0d7874ad93774918496b0153b1768bc41f0d455f7356e396cc