KiTTY versions 0.76.1.13 and below suffer from buffer overflows related to ANSI escape sequences. Two exploits are included as proof of concepts as well as a full documented breakdown of the issues.
1f71c297de8e15269afccee5fe50775bb9e2e1ea8407831ab9883313d3078f04