Siemens APOGEE MBC is a modular building controller from Siemens (Germany). A buffer overflow vulnerability exists in several Siemens APOGEE MBC products, which can be exploited by remote, unauthenticated attackers to execute arbitrary code on the device with root privileges.