Siemens SINEMA Server uses weak permissions for the application folder, which allows local users to gain privileges via unspecified vectors.
https://ics-cert.us-cert.gov/advisories/ICSA-16-215-02
http://www.zerodayinitiative.com/advisories/ZDI-16-478
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-321174.pdf