Until Microsoft works on a final update user are urged to read Security Advisory 2896666 which includes a proactive Fix it workaround for blocking this attack.
Read Security Advisory 2896666 here – https://support.microsoft.com/kb/2896666
Read more here – http://blogs.technet.com/b/srd/archive/2013/11/05/cve-2013-3906-a-graphics-vulnerability-exploited-through-word-documents.aspx