Enigmail Signature Spoofing Vulnerability
Enigmail is a data encryption and decryption extension for Mozilla Thunderbird and SeaMonkey web packages that provides OpenPGP's email public key encryption and signing capabilities. A signature spoofing vulnerability exists in versions of Enigmail prior to 1.9.9. The vulnerability arises becaus...