The host is installed with Mozilla Thunderbird before 68.1.1 and is prone to a spoofing attack vulnerability. A flaw is present in the application , whose execution can make incorrect processing of S/MIME messages. Successful exploitation could allow attackers to create a specially crafted message and make it look as it was signed with a valid signature.