thunderbird is vulnerable to phishing attack. The vulnerability exists as thunderbird does noto indicate that only parts of the message are protected when a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part.