VUPEN CEO and head of research Chaouki Bekrar sent out a pair of ominous Tweets yesterday claiming to have developed the first zero-day exploit for Windows 8 and Internet Explorer 10, both released Oct. 26. The exploit is a sandbox bypass for IE10 with ASLR, DEP and anti-ROP mitigations enabled. Windows 8 features several hardware-level security features in addition to Secure Boot which uses UEFI rather than a traditional BIOS and loads the Early Launch Antimalware driver.
Source: https://threatpost.com/vupen-researchers-say-they-have-zero-day-windows-8-exploit-110112/77175/