>After initial discovery and creation of the PoCs, we reached out to EA Games in August 2025 to report these issues. EA was helpful but confirmed that the issues were not within scope of their support.
Man, I gotta respect the balls on the author for reaching out to EA, and with a straight face, expecting them to push a bug fix for a ~23 year old game. Someone at EA who got the email probably got a chuckle out of it.
Also happy to see this classic RTS is still being played and even developed by the community. I'd be curious to know what the age of people this invested into the game is, if it's all 30+ year old boomers with nostalgia and knee pain, or if Generals also found its way to the current generation of players. "Can I have some shoes?"
Good, very good! Better to still be able to own it legally in its original form, even if it's not been updated. Because otherwise the alternative for most people would be downloading it from some shady piracy site which would be even more risky.
> Selling games you know have such dangerous security issues is not good.
I assume in the EULA they are selling it "AS IS", so the risks are up to you, especially given that the game does not run on modern OSs out of the box so it's not like your average grandma is gonna get hacked from this. It's a niche product for enthusiasts and tinkerers at this point. Is ID software also pushing security fixes to Doom so you don't get hacked from running a 30 year old piece of SW?
I don't care if it's legal or not. It's unresponsible behavior. At the very minimum they should be adding a disclaimer for the danger of using the software.
OK, let's have the game removed from storefronts so nobody can have it, this way we're keeping the 38 playerbase safe from a potential exploit for malware that doesn't exist in the wild of a 23 year old game.
> Also happy to see this classic RTS is still being played and even developed by the community. I'd be curious to know what the age of people this invested into the game is, if it's all 30+ year old boomers with nostalgia and knee pain
There's enough of a community to support a yearly World Series with $25K cash awards in 2025!
IIRC 25k is not that much by major e-sports standard of today. Do you know if they're playing the original gold release of the game or some modded variant?
It would be a lot more cool if they actually fixed it and showed how they care about their customers even if the games are very old.. it's good PR, compared to eg. the most downvoted reddit comment ever.
>It would be a lot more cool if they actually fixed it
Damned if you do, damned if you don't. Getting hate for stuff like this is why most games companies will just say 'fuck it', and not bother releasing classic games to the public anymore, let alone their source code, if the bar they now have to clear is to also actively supporting their classic games for which their OG devs lave long retired from the company.
How many games companies are actively patching their 23 year old games?
Unlike other people, I don't let perfect be the enemy of good, and I appreciate them giving us the source code, that's already more than most game companies do. The community can take it from there.
This talk was a hit at Districtcon's junkyard talks -- outstanding work; and hilarious to see Doom inside of C&C.
Where did you see doom inside C&C? Article has no mention of it.
https://x.com/rdjgr/status/2015613417785020453
They are conflating two of the Talks. This other one ran Doom inside of Rollercoaster Tycoon with a corrupted saved game
>After initial discovery and creation of the PoCs, we reached out to EA Games in August 2025 to report these issues. EA was helpful but confirmed that the issues were not within scope of their support.
Man, I gotta respect the balls on the author for reaching out to EA, and with a straight face, expecting them to push a bug fix for a ~23 year old game. Someone at EA who got the email probably got a chuckle out of it.
Also happy to see this classic RTS is still being played and even developed by the community. I'd be curious to know what the age of people this invested into the game is, if it's all 30+ year old boomers with nostalgia and knee pain, or if Generals also found its way to the current generation of players. "Can I have some shoes?"
https://store.steampowered.com/app/2229870/Command__Conquer_...
They are still selling it. Selling games you know have such dangerous security issues is not good.
>They are still selling it.
Good, very good! Better to still be able to own it legally in its original form, even if it's not been updated. Because otherwise the alternative for most people would be downloading it from some shady piracy site which would be even more risky.
> Selling games you know have such dangerous security issues is not good.
I assume in the EULA they are selling it "AS IS", so the risks are up to you, especially given that the game does not run on modern OSs out of the box so it's not like your average grandma is gonna get hacked from this. It's a niche product for enthusiasts and tinkerers at this point. Is ID software also pushing security fixes to Doom so you don't get hacked from running a 30 year old piece of SW?
I don't care if it's legal or not. It's unresponsible behavior. At the very minimum they should be adding a disclaimer for the danger of using the software.
OK, let's have the game removed from storefronts so nobody can have it, this way we're keeping the 38 playerbase safe from a potential exploit for malware that doesn't exist in the wild of a 23 year old game.
Better now?
> Also happy to see this classic RTS is still being played and even developed by the community. I'd be curious to know what the age of people this invested into the game is, if it's all 30+ year old boomers with nostalgia and knee pain
There's enough of a community to support a yearly World Series with $25K cash awards in 2025!
IIRC 25k is not that much by major e-sports standard of today. Do you know if they're playing the original gold release of the game or some modded variant?
They have a tendency to rerelease the full stack every few years.
It would be a lot more cool if they actually fixed it and showed how they care about their customers even if the games are very old.. it's good PR, compared to eg. the most downvoted reddit comment ever.
>It would be a lot more cool if they actually fixed it
Damned if you do, damned if you don't. Getting hate for stuff like this is why most games companies will just say 'fuck it', and not bother releasing classic games to the public anymore, let alone their source code, if the bar they now have to clear is to also actively supporting their classic games for which their OG devs lave long retired from the company.
How many games companies are actively patching their 23 year old games?
Unlike other people, I don't let perfect be the enemy of good, and I appreciate them giving us the source code, that's already more than most game companies do. The community can take it from there.
Atredis has detected wormsign
Surprised it took this long for someone to write it up properly