~snip~
There is so much wrong information posted.. i don't even know where to start.. anyways..
I think you are talking about a modem from a PLDT the password comes from the end of modem mac address it isn't the same as a router that mostly password are 12345678 or 1234567890.
No, i am talking about standard home router (which includes a modulator/demodulator; basically a standard device almost everyone has at home).
The password itself depends on how the vendor sets it. But most of them simply use the MAC, pass it into a function and get a 'random'-looking password.
But there are definitely some where the password is the same on all devices shipped.. but it doesn't matter anyway.
Honestly, it's not vulnerability you can still access every ISP/modem if the IP still can be scan through the internet that is why every modem has feature like "TCP/UDP PortScan" disabled or Anti-DDOS attack so that no one will find your IP
A port scan is not the same as an IP scan.
When scanning for open ports (TCP/UDP), a lot of packets on different ports are being sent to one host(IP).
Based on the answer you can determine whether the port is open/closed/filtered (for tcp; udp works slightly different).
Anti DoS is to protect you against a
Denial
of
Service. An attacker, again, needs your IP before starting an DoS.
Both has
nothing to do with 'that no one will find your IP".
By the way.. there are just about 4.000.000.000 IP's world wide.
This number is low enough to scan EVERY IP. And given the fact that you can reduce that number by focusing on a smaller geo location (than just the whole world), this just gets even easier..
Your IP is nothing private and does NOT have to stay private.
because if they can access it they can enable the SSH
If they already can access it, they don't need SSH.
enable the SSH of the modem and send a script where they can retrieve the admin password
If they are logged in as root via SSH, they do no longer need to retrieve the password.
If they are logged in as unprivileged user, they can NOT retrieve the root password (given there are no privilege escalation vulnerabilities).
retrieve the admin password of the ISP to fully control the modem.
There is no admin password of the ISP. There is a local administrator. You don't need any passwort from the Internet service provider...
I have a WiMAX experienced before where we can scan all modem except for dead ports and protected ISP
WiMAX is basically 4g. This has nothing to do with a home router.
Also, ISP's are not protected.. the devices itself are (or aren't).
That is why always enable DOS feature from the modem to prevent other user accessing your modem or change your public IP
As mentioned.. Anti DoS does NOT protect against access.. It protects against DoS..
because if they can access your modem anytime they can remote your PC without knowing.
No. That's not true.
Just because someone has access to one device inside of your local network, this does NOT mean that they have access to all devices.
Your post consisted of so much wrong information.
Please research everything before posting here and spreading misinformation.