The remote host is missing an update to kdelibs, kdelibs-crypto announced via advisory DSA 459-1.

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20459-1

A vulnerability was discovered in KDE where the path restrictions on cookies could be bypassed using encoded relative path components (e.g., /../). This means that a cookie which should only be sent by the browser to an application running at /app1, the browser could inadvertently include it with a request sent to /app2 on the same server. For the current stable distribution (woody) this problem has been fixed in kdelibs version 4:2.2.2-6woody3 and kdelibs-crypto version 4:2.2.2-13.woody.9. For the unstable distribution (sid) this problem was fixed in kdelibs version 4:3.1.3-1. We recommend that you update your kdelibs and kdelibs-crypto packages.