I have been wondering that after pwn-ing a DSL modem or router over a WAN how can it be exploited maliciously. Only thing that comes to my mind is to setup a static routing and do the MITM stuff.

Does anyone else know any details or any other way to exploit a pwned modem.

By the word "exploiting" i didn't mean it in the hacking sense but like in general english.