symantec did a good job on vista network stack analysis, see ....

http://www.symantec.com/avcenter/reference/ATR-VistaAttackSurface.pdf



regards, 0xf001