Security Update for AT&T Global Network Client

Security Update for AT&T Global Network Client (9/12/12)

A security vulnerability identified in versions 8.6 through 9.0.1 of the AT&T Global Network Client has been addressed in Client versions 8.11.2 and 9.0.2 and later.

The vulnerability affects:

1. Windows XP environments with the GINA (Microsoft Windows Graphical Identification and Authorization) component installed.
2. Vista or Windows 7 environments with the PLAP (Microsoft Windows Pre-Login Access Provider) component installed.
   Note: The PLAP component IS INCLUDED in the default AGN Client installation for Vista and Windows 7.

If exploited, the vulnerability may allow unauthorized access to the local file system and the network to which the computer is connected. This vulnerability is only exploitable by someone with physical access to the computer.

Action Required:

To eliminate the security vulnerability, Customers must upgrade the Client to either 8.11.2 (for customers who choose to remain on version 8) or the latest release of version 9.

Standard editions of the 8.11.2 Client are available for download at ftp://ftp.attglobal.net/pub/client/win32/8.11.2/ and standard editions of the version 9 Client are available for download from the AT&T Global Network Client for Windows page.

Customers with customized versions of the Client should contact their
AT&T Account Representative in regard to the upgrade options and process.

References
Refer to the AT&T Global Network Client Domain Logon Guide for detailed information on GINA and PLAP.