Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies.
http://www.vupen.com/english/advisories/2005/0994
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972438.htm
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972433.htm
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972340.htm