Security Update for AT&T Global Network Client (9/12/12)
A security vulnerability identified in versions 8.6 through 9.0.1 of the AT&T Global Network Client has been addressed in Client versions 8.11.2 and 9.0.2 and later.
The vulnerability affects:
- Windows XP environments with the GINA (Microsoft Windows Graphical Identification and Authorization) component installed.
- Vista or Windows 7 environments with the PLAP (Microsoft Windows Pre-Login
Access Provider) component installed.
Note: The PLAP component IS INCLUDED in the default AGN Client installation for Vista and Windows 7.
If exploited, the vulnerability may allow unauthorized access to the local
file system and the network to which the computer is connected. This
vulnerability is only exploitable by someone with physical access to the
To eliminate the security vulnerability, Customers must upgrade the Client to either 8.11.2 (for customers who choose to remain on version 8) or the latest release of version 9.
Standard editions of the 8.11.2 Client are available for download at ftp://ftp.attglobal.net/pub/client/win32/8.11.2/ and standard editions of the version 9 Client are available for download from the AT&T Global Network Client for Windows page.
Customers with customized versions of the Client should contact their AT&T Account Representative in regard to the upgrade options and process.
Refer to the AT&T Global Network Client Domain Logon Guide for detailed information on GINA and PLAP.