The exploit combines several unpatched holes in Windows 8 and the bundled Internet Explorer 10 browser. It bypasses all of Windows 8’s malware protection features. The exploit may not become available in the foreseeable future. It is only available to paying customers, among them government authorities. The vulnerability is not fixed by the exploit’s release date, but it could be released in the near future as a patch is not available in time for the exploit to be fixed by Microsoft itself. It also bypasses the Data Execution Prevention (DEP)”]
Source: http://www.h-online.com/security/news/item/Vupen-brags-about-Windows-8-hack-1742332.html