Yeah, we're seeing a fair amount of scans from the Internet looking for port 5900...no worries though, we dont allow (and dont have open as we audit regulary) VNC over the Internet. Plus we mostly use UltraVNC.

So wonder how long until a network worm is released exploiting this issue.....or existing malware for say botnets get this exploit built into it. sigh