A popular ISP issues a router for home users with a DNS rebind vulnerability and default credentials documented on their site. How I found it and what happened.