AFAIK, nobody is making 0 days for 10 year old desktop software that doesn't usually connect to the internet. I guess maybe you could craft a malicious image file and target a specific person's computer if you were a state level actor, but seems rather unlikely.
