In the above attack Eve managed to create a valid public key that validates a given signature and message. This is because, as Andrew Ayer wrote:

A digital signature does not uniquely identify a key or a message

source: HN