0Xsobky

**Name of the Vulnerable Software and Affected Versions** Thunderbird versions prior to 68.8.0 **Description** The issue is related to errors in processing Unicode characters in the message header, allowing a remote attacker to spoof the sender's email address displayed by Thunderbird. This is achieved by encoding Unicode whitespace characters within the From email header. **Recommendations** For versions prior to 68.8.0, update to version 68.8.0 or later to resolve the issue. As a temporary workaround, consider restricting the display of email headers to minimize the risk of exploitation.