In this blog post we'll see a technique to gain code execution in SMM from a very limited write primitive.