Check out the new Microsoft patches for Microsoft Exchange, Flash and Windows.

Microsoft released three patches — two deemed critical — covering vulnerabilities in Microsoft Exchange, Flash and Windows.

Topping the list of security bulletins released as part of the software giant’s monthly “patch Tuesday” was a vulnerability in Microsoft Exchange Server.

The MS06-019 patch focuses on what Amol Sarwate, vulnerability manager for managed security firm Qualys, called an “old-school vulnerability,” able to skim e-mail addresses and propagate a worm.

The vulnerability could give attackers complete control of systems using Microsoft Exchange Server 2000 with the Exchange 2000 Post-Service Pack 3 Update Rollup and Microsoft Exchange Server 2003 with Service Pack 1 and 2.

New Microsoft patches for Microsoft Exchange, Flash and Windows

The latest patches can be downloaded at www.microsoft.com/security