Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens (Germany). An out-of-bounds write vulnerability exists in versions prior to Siemens Tecnomatix Plant Simulation 2201.0006, which stems from an out-of-bounds write beyond the end of the allocated buffer when parsing a specially crafted SPP file. An attacker could exploit this vulnerability to execute code in the context of the current process.