If u know "system" users' password then U know every users password in oracle 11g...

We all know that the fact all the users' passwords are encripted in the oracle database. And that could be decripted if you know the system users' password only .This is due to sys.user$ dectionary has to be queried to get the encripted password.Here we go..

Step 1: Login as a system user.

SQL> conn system/manager@orcl

Step 2: Execute the following query.

SQL> SELECT name,password,spare4
FROM sys.user$
WHERE name ='CRS' ;

Step3 : Download the password cracker

Step4 : Fill the username,OLDSK3WLHASH(ie password) and SPARE4HASH(ie spare4) and press the start button.

Now you will get the exact password. Hope Oracle will come up with new technology where no one can decrypt at all. So guys be carefull with your DBAs.