This is an nmap (3.50) scan of all 65,535 TCP ports on a default, non-hacked 1.1.3 iPhone. The scan was performed from an OS X system (MacPorts) sitting adjacent to the iPhone on a wireless network.
It appears there’s just one tcpwrapped service, on port 62,078, and Fyodor has evidently already added the requisite fingerprints since nmap’s OS detection pegged it perfectly as an iPhone.
kairin ~ $ sudo nmap -p 1-65535 -sV -O 10.10.126.2
Starting Nmap 4.50 ( http://insecure.org ) at 2008-01-24 20:50 PST
Interesting ports on 10.10.126.2: Not shown: 65534 closed ports PORT STATE SERVICE VERSION 62078/tcp open tcpwrapped
MAC Address: 00:1C:B3:70:6A:DA (Apple) Device type: phone|media device Running: Apple embedded OS details: Apple iPhone mobile phone or iPod Touch (Darwin 9.0.0d1)