TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code execution. This attack appear to be exploitable via network connectivity.
[
{
"product": "TightVNC",
"vendor": "Kaspersky",
"versions": [
{
"status": "affected",
"version": "1.3.10"
}
]
}
]