Siemens SPC controllers SPC4000, SPC5000, and SPC6000 before 3.6.0 allow remote attackers to cause a denial of service (device restart) via crafted packets.
http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-335471.pdf