Continuing its established second-Tuesday-of-the-month release policy regarding security patches, Microsoft today announced two critical patches. One, security bulletin MS06-002, addresses the way Windows renders Web fonts. All versions of Windows are affected by this flaw. Users viewing e-mail or Web sites containing malicious fonts could find their systems compromised. The second patch, security bulletin MS06-003, addresses flaws in the way that Outlook and Exchange Server decode e-mail messages. Affected software includes Office 2000, Office 2002, and Office 2003, plus Exchange Server 5, 5.5, and 2000. Exchange Server 2003 is not affected.